dec974f46b1f20065377419c3b906066be1ee32abfab8f8cb187c9c4662f638c

Analysis

max time kernel
60s
max time network
142s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
27/10/2022, 13:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

4916-136-0x0000000001150000-0x0000000001179000-memory.dll
Size

164KB
MD5

46cde508fd9f00e0201d230cb49eeb8c
SHA1

07370e7d1f9b59aa0dec9f5d126941aec50d20d2
SHA256

dec974f46b1f20065377419c3b906066be1ee32abfab8f8cb187c9c4662f638c
SHA512

7b0682fb000644e444f97ef4f999595576bbb494f8d363b3566679740c764a6a4f848188680c1d933a070199fc3dfb86059ad8e3aa88a0da13f6a5aa1e55a52f
SSDEEP

3072:bzQazYYCn1fU6IABVJ2z/DjTBf5gyHeO/ya:/zZCn1PN/Je/DjTBxfHB/

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3276 wrote to memory of 1796	3276	rundll32.exe	82
PID 3276 wrote to memory of 1796	3276	rundll32.exe	82
PID 3276 wrote to memory of 1796	3276	rundll32.exe	82
PID 1796 wrote to memory of 3252	1796	rundll32.exe	83
PID 1796 wrote to memory of 3252	1796	rundll32.exe	83
PID 1796 wrote to memory of 3252	1796	rundll32.exe	83
PID 3252 wrote to memory of 4324	3252	rundll32.exe	84
PID 3252 wrote to memory of 4324	3252	rundll32.exe	84
PID 3252 wrote to memory of 4324	3252	rundll32.exe	84
PID 4324 wrote to memory of 1580	4324	rundll32.exe	85
PID 4324 wrote to memory of 1580	4324	rundll32.exe	85
PID 4324 wrote to memory of 1580	4324	rundll32.exe	85
PID 1580 wrote to memory of 5080	1580	rundll32.exe	86
PID 1580 wrote to memory of 5080	1580	rundll32.exe	86
PID 1580 wrote to memory of 5080	1580	rundll32.exe	86
PID 5080 wrote to memory of 4696	5080	rundll32.exe	87
PID 5080 wrote to memory of 4696	5080	rundll32.exe	87
PID 5080 wrote to memory of 4696	5080	rundll32.exe	87
PID 4696 wrote to memory of 4744	4696	rundll32.exe	88
PID 4696 wrote to memory of 4744	4696	rundll32.exe	88
PID 4696 wrote to memory of 4744	4696	rundll32.exe	88
PID 4744 wrote to memory of 4672	4744	rundll32.exe	89
PID 4744 wrote to memory of 4672	4744	rundll32.exe	89
PID 4744 wrote to memory of 4672	4744	rundll32.exe	89
PID 4672 wrote to memory of 5008	4672	rundll32.exe	90
PID 4672 wrote to memory of 5008	4672	rundll32.exe	90
PID 4672 wrote to memory of 5008	4672	rundll32.exe	90
PID 5008 wrote to memory of 2224	5008	rundll32.exe	92
PID 5008 wrote to memory of 2224	5008	rundll32.exe	92
PID 5008 wrote to memory of 2224	5008	rundll32.exe	92
PID 2224 wrote to memory of 4428	2224	rundll32.exe	91
PID 2224 wrote to memory of 4428	2224	rundll32.exe	91
PID 2224 wrote to memory of 4428	2224	rundll32.exe	91
PID 4428 wrote to memory of 4732	4428	rundll32.exe	93
PID 4428 wrote to memory of 4732	4428	rundll32.exe	93
PID 4428 wrote to memory of 4732	4428	rundll32.exe	93
PID 4732 wrote to memory of 3256	4732	rundll32.exe	94
PID 4732 wrote to memory of 3256	4732	rundll32.exe	94
PID 4732 wrote to memory of 3256	4732	rundll32.exe	94
PID 3256 wrote to memory of 3308	3256	rundll32.exe	95
PID 3256 wrote to memory of 3308	3256	rundll32.exe	95
PID 3256 wrote to memory of 3308	3256	rundll32.exe	95
PID 3308 wrote to memory of 2896	3308	rundll32.exe	96
PID 3308 wrote to memory of 2896	3308	rundll32.exe	96
PID 3308 wrote to memory of 2896	3308	rundll32.exe	96
PID 2896 wrote to memory of 388	2896	rundll32.exe	97
PID 2896 wrote to memory of 388	2896	rundll32.exe	97
PID 2896 wrote to memory of 388	2896	rundll32.exe	97
PID 388 wrote to memory of 1812	388	rundll32.exe	98
PID 388 wrote to memory of 1812	388	rundll32.exe	98
PID 388 wrote to memory of 1812	388	rundll32.exe	98
PID 1812 wrote to memory of 4908	1812	rundll32.exe	99
PID 1812 wrote to memory of 4908	1812	rundll32.exe	99
PID 1812 wrote to memory of 4908	1812	rundll32.exe	99
PID 4908 wrote to memory of 1888	4908	rundll32.exe	100
PID 4908 wrote to memory of 1888	4908	rundll32.exe	100
PID 4908 wrote to memory of 1888	4908	rundll32.exe	100
PID 1888 wrote to memory of 868	1888	rundll32.exe	101
PID 1888 wrote to memory of 868	1888	rundll32.exe	101
PID 1888 wrote to memory of 868	1888	rundll32.exe	101
PID 868 wrote to memory of 1712	868	rundll32.exe	102
PID 868 wrote to memory of 1712	868	rundll32.exe	102
PID 868 wrote to memory of 1712	868	rundll32.exe	102
PID 1712 wrote to memory of 1568	1712	rundll32.exe	103

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:3276
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:1796
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:3252
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:4324
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:1580
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:5080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:4696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:4744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:4672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:5008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:2224

C:\Windows\SysWOW64\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:4428
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:4732
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:3256
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:3308
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:2896
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:1812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:4908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:1888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:1712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        12⤵
        
        PID:1568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        13⤵
        
        PID:540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        14⤵
        
        PID:4292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        15⤵
        
        PID:2944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        16⤵
        
        PID:176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        17⤵
        
        PID:4016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        18⤵
        
        PID:208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        19⤵
        
        PID:4028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        20⤵
        
        PID:4008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        21⤵
        
        PID:4964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        22⤵
        
        PID:4256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        23⤵
        
        PID:4304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        24⤵
        
        PID:1224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        25⤵
        
        PID:3748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        26⤵
        
        PID:4856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        27⤵
        
        PID:3880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        28⤵
        
        PID:4372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        29⤵
        
        PID:4680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        30⤵
        
        PID:3268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        31⤵
        
        PID:1788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        32⤵
        
        PID:1852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        33⤵
        
        PID:1980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        34⤵
        
        PID:4968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        35⤵
        
        PID:4228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        36⤵
        
        PID:4912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        37⤵
        
        PID:3776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        38⤵
        
        PID:3096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        39⤵
        
        PID:3784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        40⤵
        
        PID:1908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        41⤵
        
        PID:1308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        42⤵
        
        PID:2996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        43⤵
        
        PID:1700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        44⤵
        
        PID:3636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        45⤵
        
        PID:3356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        46⤵
        
        PID:3108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        47⤵
        
        PID:1008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        48⤵
        
        PID:1204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        49⤵
        
        PID:1464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        50⤵
        
        PID:1452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        51⤵
        
        PID:3296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        52⤵
        
        PID:4088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        53⤵
        
        PID:4220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        54⤵
        
        PID:4204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        55⤵
        
        PID:3324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        56⤵
        
        PID:2324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        57⤵
        
        PID:2352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        58⤵
        
        PID:4616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        59⤵
        
        PID:2252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        60⤵
        
        PID:1304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        61⤵
        
        PID:1492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        62⤵
        
        PID:2480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        63⤵
        
        PID:3028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        64⤵
        
        PID:2356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        65⤵
        
        PID:3956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        66⤵
        
        PID:1832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        67⤵
        
        PID:4144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        68⤵
        
        PID:2740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        69⤵
        
        PID:4360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        70⤵
        
        PID:3908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        71⤵
        
        PID:3980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        72⤵
        
        PID:900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        73⤵
        
        PID:908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        74⤵
        
        PID:1664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        75⤵
        
        PID:4752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        76⤵
        
        PID:4660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        77⤵
        
        PID:4592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        78⤵
        
        PID:3008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        79⤵
        
        PID:4048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        80⤵
        
        PID:4548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        81⤵
        
        PID:3840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        82⤵
        
        PID:1916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        83⤵
        
        PID:3952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        84⤵
        
        PID:1648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        85⤵
        
        PID:1968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        86⤵
        
        PID:3196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        87⤵
        
        PID:4208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        88⤵
        
        PID:4528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        89⤵
        
        PID:3944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        90⤵
        
        PID:1228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        91⤵
        
        PID:3564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        92⤵
        
        PID:4404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        93⤵
        
        PID:1320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        94⤵
        
        PID:5132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        95⤵
        
        PID:5144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        96⤵
        
        PID:5160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        97⤵
        
        PID:5176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        98⤵
        
        PID:5192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        99⤵
        
        PID:5204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        100⤵
        
        PID:5220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        101⤵
        
        PID:5232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        102⤵
        
        PID:5244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        103⤵
        
        PID:5256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        104⤵
        
        PID:5276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        105⤵
        
        PID:5288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        106⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        107⤵
        
        PID:5316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        108⤵
        
        PID:5332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        109⤵
        
        PID:5352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        110⤵
        
        PID:5368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        111⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        112⤵
        
        PID:5412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        113⤵
        
        PID:5428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        114⤵
        
        PID:5444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        115⤵
        
        PID:5456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        116⤵
        
        PID:5472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        117⤵
        
        PID:5500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        118⤵
        
        PID:5528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        119⤵
        
        PID:5544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        120⤵
        
        PID:5572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        121⤵
        
        PID:5600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        122⤵
        
        PID:5616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        123⤵
        
        PID:5636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        124⤵
        
        PID:5652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        125⤵
        
        PID:5668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        126⤵
        
        PID:5684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        127⤵
        
        PID:5700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        128⤵
        
        PID:5720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        129⤵
        
        PID:5744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        130⤵
        
        PID:5764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        131⤵
        
        PID:5780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        132⤵
        
        PID:5796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        133⤵
        
        PID:5812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        134⤵
        
        PID:5832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        135⤵
        
        PID:5848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        136⤵
        
        PID:5864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        137⤵
        
        PID:5880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        138⤵
        
        PID:5896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        139⤵
        
        PID:5916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        140⤵
        
        PID:5936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        141⤵
        
        PID:5964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        142⤵
        
        PID:5976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        143⤵
        
        PID:5992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        144⤵
        
        PID:6008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        145⤵
        
        PID:6024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        146⤵
        
        PID:6040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        147⤵
        
        PID:6052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        148⤵
        
        PID:6068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        149⤵
        
        PID:6084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        150⤵
        
        PID:6100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        151⤵
        
        PID:6112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        152⤵
        
        PID:6132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        153⤵
        
        PID:2132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        154⤵
        
        PID:6156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        155⤵
        
        PID:6168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        156⤵
        
        PID:6180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        157⤵
        
        PID:6196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        158⤵
        
        PID:6208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        159⤵
        
        PID:6224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        160⤵
        
        PID:6236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        161⤵
        
        PID:6248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        162⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        163⤵
        
        PID:6272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        164⤵
        
        PID:6284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        165⤵
        
        PID:6300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        166⤵
        
        PID:6316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        167⤵
        
        PID:6328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        168⤵
        
        PID:6344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        169⤵
        
        PID:6364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        170⤵
        
        PID:6380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        171⤵
        
        PID:6392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        172⤵
        
        PID:6408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        173⤵
        
        PID:6424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        174⤵
        
        PID:6440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        175⤵
        
        PID:6460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        176⤵
        
        PID:6476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        177⤵
        
        PID:6492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        178⤵
        
        PID:6508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        179⤵
        
        PID:6520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        180⤵
        
        PID:6536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        181⤵
        
        PID:6556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        182⤵
        
        PID:6568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        183⤵
        
        PID:6584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        184⤵
        
        PID:6600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        185⤵
        
        PID:6612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        186⤵
        
        PID:6628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        187⤵
        
        PID:6640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        188⤵
        
        PID:6652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        189⤵
        
        PID:6668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        190⤵
        
        PID:6684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        191⤵
        
        PID:6696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        192⤵
        
        PID:6712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        193⤵
        
        PID:6724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        194⤵
        
        PID:6740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        195⤵
        
        PID:6752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        196⤵
        
        PID:6772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        197⤵
        
        PID:6784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        198⤵
        
        PID:6800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        199⤵
        
        PID:6816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        200⤵
        
        PID:6832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        201⤵
        
        PID:6844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        202⤵
        
        PID:6860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        203⤵
        
        PID:6880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        204⤵
        
        PID:6896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        205⤵
        
        PID:6916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        206⤵
        
        PID:6932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        207⤵
        
        PID:6944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        208⤵
        
        PID:6960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        209⤵
        
        PID:6976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        210⤵
        
        PID:6996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        211⤵
        
        PID:7008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        212⤵
        
        PID:7024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        213⤵
        
        PID:7036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        214⤵
        
        PID:7048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        215⤵
        
        PID:7068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        216⤵
        
        PID:7080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        217⤵
        
        PID:7096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        218⤵
        
        PID:7112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        219⤵
        
        PID:7124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        220⤵
        
        PID:7144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        221⤵
        
        PID:7160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        222⤵
        
        PID:416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        223⤵
        
        PID:1380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        224⤵
        
        PID:440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        225⤵
        
        PID:4200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        226⤵
        
        PID:7188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        227⤵
        
        PID:7220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        228⤵
        
        PID:7236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        229⤵
        
        PID:7252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        230⤵
        
        PID:7272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        231⤵
        
        PID:7288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        232⤵
        
        PID:7304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        233⤵
        
        PID:7320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        234⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        235⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        236⤵
        
        PID:7368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        237⤵
        
        PID:7384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        238⤵
        
        PID:7396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        239⤵
        
        PID:7412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        240⤵
        
        PID:7428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        241⤵
        
        PID:7440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        242⤵
        
        PID:7460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        243⤵
        
        PID:7476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        244⤵
        
        PID:7488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        245⤵
        
        PID:7504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        246⤵
        
        PID:7520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        247⤵
        
        PID:7532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        248⤵
        
        PID:7544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        249⤵
        
        PID:7556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        250⤵
        
        PID:7572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        251⤵
        
        PID:7588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        252⤵
        
        PID:7600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        253⤵
        
        PID:7616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        254⤵
        
        PID:7632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        255⤵
        
        PID:7648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        256⤵
        
        PID:7664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        257⤵
        
        PID:7676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        258⤵
        
        PID:7688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        259⤵
        
        PID:7704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        260⤵
        
        PID:7720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        261⤵
        
        PID:7736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        262⤵
        
        PID:7748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        263⤵
        
        PID:7768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        264⤵
        
        PID:7784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        265⤵
        
        PID:7800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        266⤵
        
        PID:7816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        267⤵
        
        PID:7832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        268⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        269⤵
        
        PID:7864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        270⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        271⤵
        
        PID:7896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        272⤵
        
        PID:7908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        273⤵
        
        PID:7924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        274⤵
        
        PID:7936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        275⤵
        
        PID:7948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        276⤵
        
        PID:7964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        277⤵
        
        PID:7980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        278⤵
        
        PID:7992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        279⤵
        
        PID:8008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        280⤵
        
        PID:8020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        281⤵
        
        PID:8036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        282⤵
        
        PID:8052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        283⤵
        
        PID:8068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        284⤵
        
        PID:8084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        285⤵
        
        PID:8096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        286⤵
        
        PID:8116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        287⤵
        
        PID:8132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        288⤵
        
        PID:8148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        289⤵
        
        PID:8164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        290⤵
        
        PID:8176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        291⤵
        
        PID:8188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        292⤵
        
        PID:5092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        293⤵
        
        PID:1732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        294⤵
        
        PID:1044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        295⤵
        
        PID:1136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        296⤵
        
        PID:1840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        297⤵
        
        PID:1456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        298⤵
        
        PID:1244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        299⤵
        
        PID:1296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        300⤵
        
        PID:1516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        301⤵
        
        PID:8200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        302⤵
        
        PID:8216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        303⤵
        
        PID:8228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        304⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        305⤵
        
        PID:8256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        306⤵
        
        PID:8272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        307⤵
        
        PID:8284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        308⤵
        
        PID:8300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        309⤵
        
        PID:8316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        310⤵
        
        PID:8332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        311⤵
        
        PID:8348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        312⤵
        
        PID:8364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        313⤵
        
        PID:8376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        314⤵
        
        PID:8396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        315⤵
        
        PID:8412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        316⤵
        
        PID:8424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        317⤵
        
        PID:8440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        318⤵
        
        PID:8464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        319⤵
        
        PID:8492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        320⤵
        
        PID:8540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        321⤵
        
        PID:8564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        322⤵
        
        PID:8608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        323⤵
        
        PID:8632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        324⤵
        
        PID:8652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        325⤵
        
        PID:8688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        326⤵
        
        PID:8704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        327⤵
        
        PID:8720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        328⤵
        
        PID:8736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        329⤵
        
        PID:8752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        330⤵
        
        PID:8768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        331⤵
        
        PID:8792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        332⤵
        
        PID:8808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        333⤵
        
        PID:8824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        334⤵
        
        PID:8840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        335⤵
        
        PID:8860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        336⤵
        
        PID:8876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        337⤵
        
        PID:8892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        338⤵
        
        PID:8908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        339⤵
        
        PID:8924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        340⤵
        
        PID:8936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        341⤵
        
        PID:8956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        342⤵
        
        PID:8968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        343⤵
        
        PID:8984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        344⤵
        
        PID:9000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        345⤵
        
        PID:9016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        346⤵
        
        PID:9028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        347⤵
        
        PID:9044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        348⤵
        
        PID:9056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        349⤵
        
        PID:9072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        350⤵
        
        PID:9088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        351⤵
        
        PID:9100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        352⤵
        
        PID:9116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        353⤵
        
        PID:9132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        354⤵
        
        PID:9144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        355⤵
        
        PID:9164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        356⤵
        
        PID:9176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        357⤵
        
        PID:9196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        358⤵
        
        PID:9212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        359⤵
        
        PID:1672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        360⤵
        
        PID:1448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        361⤵
        
        PID:9224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        362⤵
        
        PID:9244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        363⤵
        
        PID:9256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        364⤵
        
        PID:9268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        365⤵
        
        PID:9284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        366⤵
        
        PID:9296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        367⤵
        
        PID:9308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        368⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        369⤵
        
        PID:9344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        370⤵
        
        PID:9360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        371⤵
        
        PID:9372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        372⤵
        
        PID:9384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        373⤵
        
        PID:9404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        374⤵
        
        PID:9420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        375⤵
        
        PID:9436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        376⤵
        
        PID:9448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        377⤵
        
        PID:9468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        378⤵
        
        PID:9480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        379⤵
        
        PID:9496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        380⤵
        
        PID:9520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        381⤵
        
        PID:9536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        382⤵
        
        PID:9552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        383⤵
        
        PID:9568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        384⤵
        
        PID:9580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        385⤵
        
        PID:9600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        386⤵
        
        PID:9628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        387⤵
        
        PID:9644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        388⤵
        
        PID:9660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        389⤵
        
        PID:9676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        390⤵
        
        PID:9696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        391⤵
        
        PID:9708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        392⤵
        
        PID:9724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        393⤵
        
        PID:9740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        394⤵
        
        PID:9756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        395⤵
        
        PID:9772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        396⤵
        
        PID:9784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        397⤵
        
        PID:9800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        398⤵
        
        PID:9812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        399⤵
        
        PID:9832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        400⤵
        
        PID:9844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        401⤵
        
        PID:9860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        402⤵
        
        PID:9876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        403⤵
        
        PID:9892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        404⤵
        
        PID:9904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        405⤵
        
        PID:9920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        406⤵
        
        PID:9936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        407⤵
        
        PID:9952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        408⤵
        
        PID:9968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        409⤵
        
        PID:9984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        410⤵
        
        PID:10004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        411⤵
        
        PID:10016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        412⤵
        
        PID:10032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        413⤵
        
        PID:10048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        414⤵
        
        PID:10068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        415⤵
        
        PID:10088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        416⤵
        
        PID:10100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        417⤵
        
        PID:10120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        418⤵
        
        PID:10136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        419⤵
        
        PID:10152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        420⤵
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        421⤵
        
        PID:10180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        422⤵
        
        PID:10200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        423⤵
        
        PID:10216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        424⤵
        
        PID:10232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        425⤵
        
        PID:10080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        426⤵
        
        PID:10252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        427⤵
        
        PID:10272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        428⤵
        
        PID:10288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        429⤵
        
        PID:10300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        430⤵
        
        PID:10320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        431⤵
        
        PID:10336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        432⤵
        
        PID:10352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        433⤵
        
        PID:10364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        434⤵
        
        PID:10384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        435⤵
        
        PID:10400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        436⤵
        
        PID:10420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        437⤵
        
        PID:10440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        438⤵
        
        PID:10460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        439⤵
        
        PID:10476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        440⤵
        
        PID:10492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        441⤵
        
        PID:10508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        442⤵
        
        PID:10524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        443⤵
        
        PID:10540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        444⤵
        
        PID:10556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        445⤵
        
        PID:10572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        446⤵
        
        PID:10588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        447⤵
        
        PID:10608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        448⤵
        
        PID:10628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        449⤵
        
        PID:10652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        450⤵
        
        PID:10668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        451⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        452⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        453⤵
        
        PID:10712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        454⤵
        
        PID:10728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        455⤵
        
        PID:10744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        456⤵
        
        PID:10756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        457⤵
        
        PID:10772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        458⤵
        
        PID:10788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        459⤵
        
        PID:10804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        460⤵
        
        PID:10816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        461⤵
        
        PID:10828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        462⤵
        
        PID:10840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        463⤵
        
        PID:10856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        464⤵
        
        PID:10868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        465⤵
        
        PID:10888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        466⤵
        
        PID:10904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        467⤵
        
        PID:10920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        468⤵
        
        PID:10936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        469⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        470⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        471⤵
        
        PID:10984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        472⤵
        
        PID:11000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        473⤵
        
        PID:11016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        474⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        475⤵
        
        PID:11048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        476⤵
        
        PID:11064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        477⤵
        
        PID:11080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        478⤵
        
        PID:11092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        479⤵
        
        PID:11112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        480⤵
        
        PID:11128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        481⤵
        
        PID:11144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        482⤵
        
        PID:11160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        483⤵
        
        PID:11176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        484⤵
        
        PID:11192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        485⤵
        
        PID:11208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        486⤵
        
        PID:11224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        487⤵
        
        PID:11240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        488⤵
        
        PID:11256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        489⤵
        
        PID:10408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        490⤵
        
        PID:5404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        491⤵
        
        PID:2080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        492⤵
        
        PID:1960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        493⤵
        
        PID:10452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        494⤵
        
        PID:4328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        495⤵
        
        PID:11280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        496⤵
        
        PID:11296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        497⤵
        
        PID:11312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        498⤵
        
        PID:11328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        499⤵
        
        PID:11344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        500⤵
        
        PID:11360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        501⤵
        
        PID:11376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        502⤵
        
        PID:11392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        503⤵
        
        PID:11408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        504⤵
        
        PID:11424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        505⤵
        
        PID:11440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        506⤵
        
        PID:11456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        507⤵
        
        PID:11472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        508⤵
        
        PID:11488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        509⤵
        
        PID:11504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        510⤵
        
        PID:11520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        511⤵
        
        PID:11536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        512⤵
        
        PID:11552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        513⤵
        
        PID:11568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        514⤵
        
        PID:11584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        515⤵
        
        PID:11600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        516⤵
        
        PID:11616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        517⤵
        
        PID:11632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        518⤵
        
        PID:11648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        519⤵
        
        PID:11664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        520⤵
        
        PID:11680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        521⤵
        
        PID:11696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        522⤵
        
        PID:11712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        523⤵
        
        PID:11728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        524⤵
        
        PID:11744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        525⤵
        
        PID:11756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        526⤵
        
        PID:11776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        527⤵
        
        PID:11792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        528⤵
        
        PID:11808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        529⤵
        
        PID:11820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        530⤵
        
        PID:11836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        531⤵
        
        PID:11852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        532⤵
        
        PID:11868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        533⤵
        
        PID:11880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        534⤵
        
        PID:11896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        535⤵
        
        PID:11908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        536⤵
        
        PID:11924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        537⤵
        
        PID:11940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        538⤵
        
        PID:11956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        539⤵
        
        PID:11972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        540⤵
        
        PID:11984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        541⤵
        
        PID:12000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        542⤵
        
        PID:12016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        543⤵
        
        PID:12032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        544⤵
        
        PID:12048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        545⤵
        
        PID:12064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        546⤵
        
        PID:12080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        547⤵
        
        PID:12096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        548⤵
        
        PID:12108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        549⤵
        
        PID:12124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        550⤵
        
        PID:12140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        551⤵
        
        PID:12156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        552⤵
        
        PID:12172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        553⤵
        
        PID:12188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        554⤵
        
        PID:12200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        555⤵
        
        PID:12220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        556⤵
        
        PID:12232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        557⤵
        
        PID:12248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        558⤵
        
        PID:12260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        559⤵
        
        PID:12276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        560⤵
        
        PID:1884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        561⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        562⤵
        
        PID:12308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        563⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        564⤵
        
        PID:12340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        565⤵
        
        PID:12352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        566⤵
        
        PID:12372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        567⤵
        
        PID:12384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        568⤵
        
        PID:12404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        569⤵
        
        PID:12420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        570⤵
        
        PID:12432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        571⤵
        
        PID:12448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        572⤵
        
        PID:12460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        573⤵
        
        PID:12476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        574⤵
        
        PID:12488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        575⤵
        
        PID:12508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        576⤵
        
        PID:12524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        577⤵
        
        PID:12540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        578⤵
        
        PID:12556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        579⤵
        
        PID:12572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        580⤵
        
        PID:12584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        581⤵
        
        PID:12600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        582⤵
        
        PID:12612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        583⤵
        
        PID:12628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        584⤵
        
        PID:12644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        585⤵
        
        PID:12660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        586⤵
        
        PID:12676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        587⤵
        
        PID:12692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        588⤵
        
        PID:12704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        589⤵
        
        PID:12716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        590⤵
        
        PID:12732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        591⤵
        
        PID:12748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        592⤵
        
        PID:12760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        593⤵
        
        PID:12776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        594⤵
        
        PID:12792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        595⤵
        
        PID:12808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        596⤵
        
        PID:12824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        597⤵
        
        PID:12840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        598⤵
        
        PID:12856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        599⤵
        
        PID:12872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        600⤵
        
        PID:12888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        601⤵
        
        PID:12900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        602⤵
        
        PID:12912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        603⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        604⤵
        
        PID:12944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        605⤵
        
        PID:12960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        606⤵
        
        PID:12972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        607⤵
        
        PID:12984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        608⤵
        
        PID:13004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        609⤵
        
        PID:13020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        610⤵
        
        PID:13032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        611⤵
        
        PID:13044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        612⤵
        
        PID:13060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        613⤵
        
        PID:13076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        614⤵
        
        PID:13092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        615⤵
        
        PID:13108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        616⤵
        
        PID:13120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        617⤵
        
        PID:13136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        618⤵
        
        PID:13152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        619⤵
        
        PID:13168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        620⤵
        
        PID:13184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        621⤵
        
        PID:13200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        622⤵
        
        PID:13216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        623⤵
        
        PID:13232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        624⤵
        
        PID:13248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        625⤵
        
        PID:13264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        626⤵
        
        PID:13276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        627⤵
        
        PID:13292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        628⤵
        
        PID:13304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        629⤵
        
        PID:13320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        630⤵
        
        PID:13332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        631⤵
        
        PID:13348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        632⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        633⤵
        
        PID:13380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        634⤵
        
        PID:13396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        635⤵
        
        PID:13408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        636⤵
        
        PID:13424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        637⤵
        
        PID:13436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        638⤵
        
        PID:13456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        639⤵
        
        PID:13468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        640⤵
        
        PID:13484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        641⤵
        
        PID:13496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        642⤵
        
        PID:13512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        643⤵
        
        PID:13524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        644⤵
        
        PID:13536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        645⤵
        
        PID:13556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        646⤵
        
        PID:13572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        647⤵
        
        PID:13588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        648⤵
        
        PID:13600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        649⤵
        
        PID:13616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        650⤵
        
        PID:13632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        651⤵
        
        PID:13648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        652⤵
        
        PID:13664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        653⤵
        
        PID:13680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        654⤵
        
        PID:13692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        655⤵
        
        PID:13708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        656⤵
        
        PID:13724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        657⤵
        
        PID:13736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        658⤵
        
        PID:13752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        659⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        660⤵
        
        PID:13780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        661⤵
        
        PID:13796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        662⤵
        
        PID:13808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        663⤵
        
        PID:13828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        664⤵
        
        PID:13840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        665⤵
        
        PID:13860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        666⤵
        
        PID:13872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        667⤵
        
        PID:13888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        668⤵
        
        PID:13900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        669⤵
        
        PID:13920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        670⤵
        
        PID:13936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        671⤵
        
        PID:13952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        672⤵
        
        PID:13968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        673⤵
        
        PID:13980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        674⤵
        
        PID:13996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        675⤵
        
        PID:14008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        676⤵
        
        PID:14024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        677⤵
        
        PID:14036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        678⤵
        
        PID:14052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        679⤵
        
        PID:14064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        680⤵
        
        PID:14080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        681⤵
        
        PID:14096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        682⤵
        
        PID:14108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        683⤵
        
        PID:14128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        684⤵
        
        PID:14144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        685⤵
        
        PID:14160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        686⤵
        
        PID:14176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        687⤵
        
        PID:14192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        688⤵
        
        PID:14208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        689⤵
        
        PID:14224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        690⤵
        
        PID:14240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        691⤵
        
        PID:14256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        692⤵
        
        PID:14268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        693⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        694⤵
        
        PID:14300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        695⤵
        
        PID:14316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        696⤵
        
        PID:14332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        697⤵
        
        PID:14348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        698⤵
        
        PID:14364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        699⤵
        
        PID:14380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        700⤵
        
        PID:14396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        701⤵
        
        PID:14408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        702⤵
        
        PID:14428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        703⤵
        
        PID:14444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        704⤵
        
        PID:14456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        705⤵
        
        PID:14472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        706⤵
        
        PID:14488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        707⤵
        
        PID:14500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        708⤵
        
        PID:14520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        709⤵
        
        PID:14536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        710⤵
        
        PID:14548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        711⤵
        
        PID:14564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        712⤵
        
        PID:14580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        713⤵
        
        PID:14596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        714⤵
        
        PID:14612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        715⤵
        
        PID:14628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        716⤵
        
        PID:14644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        717⤵
        
        PID:14660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        718⤵
        
        PID:14676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        719⤵
        
        PID:14692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        720⤵
        
        PID:14708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        721⤵
        
        PID:14720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        722⤵
        
        PID:14736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        723⤵
        
        PID:14748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        724⤵
        
        PID:14764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        725⤵
        
        PID:14780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        726⤵
        
        PID:14792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        727⤵
        
        PID:14808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        728⤵
        
        PID:14824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        729⤵
        
        PID:14840

C:\Windows\SysWOW64\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
1⤵
PID:14856
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
  2⤵
  PID:14872
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
    3⤵
    PID:14884
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
      4⤵
      PID:14900
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        5⤵
        
        PID:14916
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        6⤵
        
        PID:14932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        7⤵
        
        PID:14944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        8⤵
        
        PID:14960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        9⤵
        
        PID:14976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        10⤵
        
        PID:14992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        11⤵
        
        PID:15004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        12⤵
        
        PID:15020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        13⤵
        
        PID:15036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        14⤵
        
        PID:15048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        15⤵
        
        PID:15068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        16⤵
        
        PID:15084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        17⤵
        
        PID:15096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        18⤵
        
        PID:15108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        19⤵
        
        PID:15124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        20⤵
        
        PID:15140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        21⤵
        
        PID:15156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        22⤵
        
        PID:15172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        23⤵
        
        PID:15184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        24⤵
        
        PID:15200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        25⤵
        
        PID:15216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        26⤵
        
        PID:15232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        27⤵
        
        PID:15248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        28⤵
        
        PID:15264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        29⤵
        
        PID:15280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        30⤵
        
        PID:15296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        31⤵
        
        PID:15308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        32⤵
        
        PID:15324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        33⤵
        
        PID:15336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        34⤵
        
        PID:15352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        35⤵
        
        PID:15372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        36⤵
        
        PID:15388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        37⤵
        
        PID:15404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        38⤵
        
        PID:15420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        39⤵
        
        PID:15436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        40⤵
        
        PID:15448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        41⤵
        
        PID:15468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        42⤵
        
        PID:15480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        43⤵
        
        PID:15496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        44⤵
        
        PID:15508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        45⤵
        
        PID:15528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        46⤵
        
        PID:15540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        47⤵
        
        PID:15556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        48⤵
        
        PID:15572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        49⤵
        
        PID:15588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        50⤵
        
        PID:15604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        51⤵
        
        PID:15620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        52⤵
        
        PID:15636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        53⤵
        
        PID:15652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        54⤵
        
        PID:15664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        55⤵
        
        PID:15680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        56⤵
        
        PID:15696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        57⤵
        
        PID:15708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        58⤵
        
        PID:15724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        59⤵
        
        PID:15740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        60⤵
        
        PID:15756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        61⤵
        
        PID:15772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        62⤵
        
        PID:15788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        63⤵
        
        PID:15804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        64⤵
        
        PID:15820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        65⤵
        
        PID:15836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        66⤵
        
        PID:15848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        67⤵
        
        PID:15864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        68⤵
        
        PID:15880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        69⤵
        
        PID:15896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        70⤵
        
        PID:15908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        71⤵
        
        PID:15924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        72⤵
        
        PID:15940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        73⤵
        
        PID:15952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        74⤵
        
        PID:15972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        75⤵
        
        PID:15988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        76⤵
        
        PID:16000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        77⤵
        
        PID:16020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        78⤵
        
        PID:16036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        79⤵
        
        PID:16052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        80⤵
        
        PID:16068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        81⤵
        
        PID:16084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        82⤵
        
        PID:16100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        83⤵
        
        PID:16116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        84⤵
        
        PID:16132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        85⤵
        
        PID:16148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        86⤵
        
        PID:16164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        87⤵
        
        PID:16180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        88⤵
        
        PID:16196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        89⤵
        
        PID:16208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        90⤵
        
        PID:16224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        91⤵
        
        PID:16240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        92⤵
        
        PID:16252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        93⤵
        
        PID:16264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        94⤵
        
        PID:16280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        95⤵
        
        PID:16292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        96⤵
        
        PID:16312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        97⤵
        
        PID:16328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        98⤵
        
        PID:16340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        99⤵
        
        PID:16360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        100⤵
        
        PID:16372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        101⤵
        
        PID:1668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        102⤵
        
        PID:16396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        103⤵
        
        PID:16412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        104⤵
        
        PID:16424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        105⤵
        
        PID:16440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        106⤵
        
        PID:16456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        107⤵
        
        PID:16468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        108⤵
        
        PID:16484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        109⤵
        
        PID:16500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        110⤵
        
        PID:16516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        111⤵
        
        PID:16532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        112⤵
        
        PID:16548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        113⤵
        
        PID:16564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        114⤵
        
        PID:16580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        115⤵
        
        PID:16600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        116⤵
        
        PID:16616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        117⤵
        
        PID:16632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        118⤵
        
        PID:16648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        119⤵
        
        PID:16660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        120⤵
        
        PID:16676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        121⤵
        
        PID:16692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        122⤵
        
        PID:16712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        123⤵
        
        PID:16732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        124⤵
        
        PID:16744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        125⤵
        
        PID:16764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        126⤵
        
        PID:16780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        127⤵
        
        PID:16796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        128⤵
        
        PID:16812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        129⤵
        
        PID:16828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        130⤵
        
        PID:16844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        131⤵
        
        PID:16864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        132⤵
        
        PID:16884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        133⤵
        
        PID:16896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        134⤵
        
        PID:16916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        135⤵
        
        PID:16932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        136⤵
        
        PID:16948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        137⤵
        
        PID:16964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        138⤵
        
        PID:16980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        139⤵
        
        PID:16996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\4916-136-0x0000000001150000-0x0000000001179000-memory.dll,#1
        140⤵
        
        PID:17012

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads