e3e189c953ccb6f7140e66436f4f2799c99ae7f6928e4db134f7eed7091e16ed

Analysis

max time kernel
149s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
06/03/2024, 14:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

b79b9033afc3db8109bb0bd86abc7185.dll
Size

184KB
MD5

b79b9033afc3db8109bb0bd86abc7185
SHA1

b3089901c5e0f7089ab732aacd67ea22b46ff072
SHA256

e3e189c953ccb6f7140e66436f4f2799c99ae7f6928e4db134f7eed7091e16ed
SHA512

199191eddcc523ff185d1f7e7ca39fc7f3ac802697d0095f70a5b3574c927708c7a7b032199d531da1c7e91d8a110877d8e1a393266069507d1e7079a6ae8a2c
SSDEEP

3072:KEVDSrpqhHl78xVFhRxc4SXOSKw1m9Cv1Ig0Y2jgcoX/otaOde2:5VDS9qhF7exG4SXH1kCvGnDogtaYZ

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3364 wrote to memory of 380	3364	rundll32.exe	87
PID 3364 wrote to memory of 380	3364	rundll32.exe	87
PID 3364 wrote to memory of 380	3364	rundll32.exe	87
PID 380 wrote to memory of 4244	380	rundll32.exe	88
PID 380 wrote to memory of 4244	380	rundll32.exe	88
PID 380 wrote to memory of 4244	380	rundll32.exe	88
PID 4244 wrote to memory of 1196	4244	rundll32.exe	89
PID 4244 wrote to memory of 1196	4244	rundll32.exe	89
PID 4244 wrote to memory of 1196	4244	rundll32.exe	89
PID 1196 wrote to memory of 3040	1196	rundll32.exe	90
PID 1196 wrote to memory of 3040	1196	rundll32.exe	90
PID 1196 wrote to memory of 3040	1196	rundll32.exe	90
PID 3040 wrote to memory of 1568	3040	rundll32.exe	91
PID 3040 wrote to memory of 1568	3040	rundll32.exe	91
PID 3040 wrote to memory of 1568	3040	rundll32.exe	91
PID 1568 wrote to memory of 1584	1568	rundll32.exe	92
PID 1568 wrote to memory of 1584	1568	rundll32.exe	92
PID 1568 wrote to memory of 1584	1568	rundll32.exe	92
PID 1584 wrote to memory of 2288	1584	rundll32.exe	93
PID 1584 wrote to memory of 2288	1584	rundll32.exe	93
PID 1584 wrote to memory of 2288	1584	rundll32.exe	93
PID 2288 wrote to memory of 796	2288	rundll32.exe	94
PID 2288 wrote to memory of 796	2288	rundll32.exe	94
PID 2288 wrote to memory of 796	2288	rundll32.exe	94
PID 796 wrote to memory of 3412	796	rundll32.exe	95
PID 796 wrote to memory of 3412	796	rundll32.exe	95
PID 796 wrote to memory of 3412	796	rundll32.exe	95
PID 3412 wrote to memory of 460	3412	rundll32.exe	96
PID 3412 wrote to memory of 460	3412	rundll32.exe	96
PID 3412 wrote to memory of 460	3412	rundll32.exe	96
PID 460 wrote to memory of 3284	460	rundll32.exe	97
PID 460 wrote to memory of 3284	460	rundll32.exe	97
PID 460 wrote to memory of 3284	460	rundll32.exe	97
PID 3284 wrote to memory of 1004	3284	rundll32.exe	98
PID 3284 wrote to memory of 1004	3284	rundll32.exe	98
PID 3284 wrote to memory of 1004	3284	rundll32.exe	98
PID 1004 wrote to memory of 1920	1004	rundll32.exe	99
PID 1004 wrote to memory of 1920	1004	rundll32.exe	99
PID 1004 wrote to memory of 1920	1004	rundll32.exe	99
PID 1920 wrote to memory of 2776	1920	rundll32.exe	100
PID 1920 wrote to memory of 2776	1920	rundll32.exe	100
PID 1920 wrote to memory of 2776	1920	rundll32.exe	100
PID 2776 wrote to memory of 2140	2776	rundll32.exe	101
PID 2776 wrote to memory of 2140	2776	rundll32.exe	101
PID 2776 wrote to memory of 2140	2776	rundll32.exe	101
PID 2140 wrote to memory of 436	2140	rundll32.exe	102
PID 2140 wrote to memory of 436	2140	rundll32.exe	102
PID 2140 wrote to memory of 436	2140	rundll32.exe	102
PID 436 wrote to memory of 4876	436	rundll32.exe	103
PID 436 wrote to memory of 4876	436	rundll32.exe	103
PID 436 wrote to memory of 4876	436	rundll32.exe	103
PID 4876 wrote to memory of 396	4876	rundll32.exe	104
PID 4876 wrote to memory of 396	4876	rundll32.exe	104
PID 4876 wrote to memory of 396	4876	rundll32.exe	104
PID 396 wrote to memory of 2336	396	rundll32.exe	105
PID 396 wrote to memory of 2336	396	rundll32.exe	105
PID 396 wrote to memory of 2336	396	rundll32.exe	105
PID 2336 wrote to memory of 960	2336	rundll32.exe	106
PID 2336 wrote to memory of 960	2336	rundll32.exe	106
PID 2336 wrote to memory of 960	2336	rundll32.exe	106
PID 960 wrote to memory of 2620	960	rundll32.exe	107
PID 960 wrote to memory of 2620	960	rundll32.exe	107
PID 960 wrote to memory of 2620	960	rundll32.exe	107
PID 2620 wrote to memory of 3100	2620	rundll32.exe	108

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:3364
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:380
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:4244
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:1196
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:3040
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:1568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:1584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:2288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:3412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:3284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:1004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:1920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:2776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:2140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:4876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:2336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:2620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        23⤵
        
        PID:3100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        24⤵
        
        PID:3944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        25⤵
        
        PID:3136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        26⤵
        
        PID:824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        27⤵
        
        PID:4400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        28⤵
        
        PID:3208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        29⤵
        
        PID:2760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        30⤵
        
        PID:5044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        31⤵
        
        PID:4788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        32⤵
        
        PID:1284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        33⤵
        
        PID:4608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        34⤵
        
        PID:4576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        35⤵
        
        PID:4272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        36⤵
        
        PID:1980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        37⤵
        
        PID:3984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        38⤵
        
        PID:3244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        39⤵
        
        PID:2496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        40⤵
        
        PID:4004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        41⤵
        
        PID:4432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        42⤵
        
        PID:5012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        43⤵
        
        PID:4744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        44⤵
        
        PID:724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        45⤵
        
        PID:3016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        46⤵
        
        PID:224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        47⤵
        
        PID:1904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        48⤵
        
        PID:4308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        49⤵
        
        PID:2668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        50⤵
        
        PID:2384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        51⤵
        
        PID:4348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        52⤵
        
        PID:5036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        53⤵
        
        PID:4856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        54⤵
        
        PID:3028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        55⤵
        
        PID:4544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        56⤵
        
        PID:228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        57⤵
        
        PID:2068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        58⤵
        
        PID:2960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        59⤵
        
        PID:3212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        60⤵
        
        PID:4256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        61⤵
        
        PID:4064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        62⤵
        
        PID:4652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        63⤵
        
        PID:3096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        64⤵
        
        PID:3276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        65⤵
        
        PID:4828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        66⤵
        
        PID:1728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        67⤵
        
        PID:4424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        68⤵
        
        PID:2780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        69⤵
        
        PID:4708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        70⤵
        
        PID:2420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        71⤵
        
        PID:2320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        72⤵
        
        PID:3656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        73⤵
        
        PID:3460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        74⤵
        
        PID:4404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        75⤵
        
        PID:3916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        76⤵
        
        PID:3312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        77⤵
        
        PID:2308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        78⤵
        
        PID:3948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        79⤵
        
        PID:2824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        80⤵
        
        PID:3724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        81⤵
        
        PID:5052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        82⤵
        
        PID:5068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        83⤵
        
        PID:2740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        84⤵
        
        PID:2724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        85⤵
        
        PID:1612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        86⤵
        
        PID:1052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        87⤵
        
        PID:592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        88⤵
        
        PID:4380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        89⤵
        
        PID:3272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        90⤵
        
        PID:1060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        91⤵
        
        PID:4516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        92⤵
        
        PID:2464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        93⤵
        
        PID:3620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        94⤵
        
        PID:3664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        95⤵
        
        PID:2480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        96⤵
        
        PID:5028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        97⤵
        
        PID:1892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        98⤵
        
        PID:5132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        99⤵
        
        PID:5148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        100⤵
        
        PID:5168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        101⤵
        
        PID:5180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        102⤵
        
        PID:5200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        103⤵
        
        PID:5216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        104⤵
        
        PID:5236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        105⤵
        
        PID:5248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        106⤵
        
        PID:5268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        107⤵
        
        PID:5288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        108⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        109⤵
        
        PID:5320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        110⤵
        
        PID:5336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        111⤵
        
        PID:5352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        112⤵
        
        PID:5368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        113⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        114⤵
        
        PID:5400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        115⤵
        
        PID:5416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        116⤵
        
        PID:5428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        117⤵
        
        PID:5448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        118⤵
        
        PID:5464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        119⤵
        
        PID:5480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        120⤵
        
        PID:5496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        121⤵
        
        PID:5512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        122⤵
        
        PID:5528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        123⤵
        
        PID:5540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        124⤵
        
        PID:5556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        125⤵
        
        PID:5572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        126⤵
        
        PID:5588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        127⤵
        
        PID:5600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        128⤵
        
        PID:5620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        129⤵
        
        PID:5636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        130⤵
        
        PID:5652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        131⤵
        
        PID:5668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        132⤵
        
        PID:5680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        133⤵
        
        PID:5696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        134⤵
        
        PID:5712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        135⤵
        
        PID:5728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        136⤵
        
        PID:5740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        137⤵
        
        PID:5752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        138⤵
        
        PID:5768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        139⤵
        
        PID:5784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        140⤵
        
        PID:5800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        141⤵
        
        PID:5816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        142⤵
        
        PID:5832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        143⤵
        
        PID:5844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        144⤵
        
        PID:5864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        145⤵
        
        PID:5876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        146⤵
        
        PID:5892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        147⤵
        
        PID:5908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        148⤵
        
        PID:5928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        149⤵
        
        PID:5948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        150⤵
        
        PID:5964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        151⤵
        
        PID:5980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        152⤵
        
        PID:5996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        153⤵
        
        PID:6012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        154⤵
        
        PID:6028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        155⤵
        
        PID:6044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        156⤵
        
        PID:6060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        157⤵
        
        PID:6076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        158⤵
        
        PID:6100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        159⤵
        
        PID:6112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        160⤵
        
        PID:6124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        161⤵
        
        PID:6136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        162⤵
        
        PID:2980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        163⤵
        
        PID:6152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        164⤵
        
        PID:6164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        165⤵
        
        PID:6180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        166⤵
        
        PID:6196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        167⤵
        
        PID:6212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        168⤵
        
        PID:6228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        169⤵
        
        PID:6244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        170⤵
        
        PID:6256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        171⤵
        
        PID:6276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        172⤵
        
        PID:6288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        173⤵
        
        PID:6300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        174⤵
        
        PID:6320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        175⤵
        
        PID:6336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        176⤵
        
        PID:6352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        177⤵
        
        PID:6368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        178⤵
        
        PID:6380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        179⤵
        
        PID:6396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        180⤵
        
        PID:6412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        181⤵
        
        PID:6428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        182⤵
        
        PID:6440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        183⤵
        
        PID:6456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        184⤵
        
        PID:6472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        185⤵
        
        PID:6488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        186⤵
        
        PID:6504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        187⤵
        
        PID:6520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        188⤵
        
        PID:6536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        189⤵
        
        PID:6552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        190⤵
        
        PID:6568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        191⤵
        
        PID:6584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        192⤵
        
        PID:6600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        193⤵
        
        PID:6616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        194⤵
        
        PID:6632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        195⤵
        
        PID:6644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        196⤵
        
        PID:6660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        197⤵
        
        PID:6676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        198⤵
        
        PID:6688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        199⤵
        
        PID:6704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        200⤵
        
        PID:6720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        201⤵
        
        PID:6736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        202⤵
        
        PID:6752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        203⤵
        
        PID:6768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        204⤵
        
        PID:6784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        205⤵
        
        PID:6800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        206⤵
        
        PID:6816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        207⤵
        
        PID:6832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        208⤵
        
        PID:6848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        209⤵
        
        PID:6864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        210⤵
        
        PID:6880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        211⤵
        
        PID:6892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        212⤵
        
        PID:6908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        213⤵
        
        PID:6924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        214⤵
        
        PID:6940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        215⤵
        
        PID:6952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        216⤵
        
        PID:6968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        217⤵
        
        PID:6988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        218⤵
        
        PID:7004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        219⤵
        
        PID:7016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        220⤵
        
        PID:7044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        221⤵
        
        PID:7060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        222⤵
        
        PID:7076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        223⤵
        
        PID:7092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        224⤵
        
        PID:7108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        225⤵
        
        PID:7124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        226⤵
        
        PID:7140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        227⤵
        
        PID:7160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        228⤵
        
        PID:7172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        229⤵
        
        PID:7192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        230⤵
        
        PID:7208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        231⤵
        
        PID:7224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        232⤵
        
        PID:7240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        233⤵
        
        PID:7256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        234⤵
        
        PID:7272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        235⤵
        
        PID:7288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        236⤵
        
        PID:7300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        237⤵
        
        PID:7312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        238⤵
        
        PID:7328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        239⤵
        
        PID:7344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        240⤵
        
        PID:7356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        241⤵
        
        PID:7368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        242⤵
        
        PID:7384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        243⤵
        
        PID:7400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        244⤵
        
        PID:7416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        245⤵
        
        PID:7432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        246⤵
        
        PID:7444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        247⤵
        
        PID:7464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        248⤵
        
        PID:7476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        249⤵
        
        PID:7492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        250⤵
        
        PID:7508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        251⤵
        
        PID:7524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        252⤵
        
        PID:7540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        253⤵
        
        PID:7556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        254⤵
        
        PID:7572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        255⤵
        
        PID:7584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        256⤵
        
        PID:7600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        257⤵
        
        PID:7616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        258⤵
        
        PID:7632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        259⤵
        
        PID:7648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        260⤵
        
        PID:7664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        261⤵
        
        PID:7676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        262⤵
        
        PID:7692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        263⤵
        
        PID:7708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        264⤵
        
        PID:7724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        265⤵
        
        PID:7740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        266⤵
        
        PID:7752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        267⤵
        
        PID:7768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        268⤵
        
        PID:7784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        269⤵
        
        PID:7796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        270⤵
        
        PID:7812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        271⤵
        
        PID:7828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        272⤵
        
        PID:7844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        273⤵
        
        PID:7860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        274⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        275⤵
        
        PID:7896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        276⤵
        
        PID:7912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        277⤵
        
        PID:7928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        278⤵
        
        PID:7944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        279⤵
        
        PID:7960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        280⤵
        
        PID:7976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        281⤵
        
        PID:7992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        282⤵
        
        PID:8004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        283⤵
        
        PID:8020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        284⤵
        
        PID:8036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        285⤵
        
        PID:8048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        286⤵
        
        PID:8064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        287⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        288⤵
        
        PID:8088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        289⤵
        
        PID:8108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        290⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        291⤵
        
        PID:8136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        292⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        293⤵
        
        PID:8164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        294⤵
        
        PID:8184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        295⤵
        
        PID:8200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        296⤵
        
        PID:8216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        297⤵
        
        PID:8232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        298⤵
        
        PID:8248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        299⤵
        
        PID:8260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        300⤵
        
        PID:8280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        301⤵
        
        PID:8300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        302⤵
        
        PID:8316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        303⤵
        
        PID:8328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        304⤵
        
        PID:8344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        305⤵
        
        PID:8360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        306⤵
        
        PID:8376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        307⤵
        
        PID:8388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        308⤵
        
        PID:8404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        309⤵
        
        PID:8420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        310⤵
        
        PID:8436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        311⤵
        
        PID:8452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        312⤵
        
        PID:8468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        313⤵
        
        PID:8480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        314⤵
        
        PID:8496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        315⤵
        
        PID:8512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        316⤵
        
        PID:8528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        317⤵
        
        PID:8540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        318⤵
        
        PID:8560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        319⤵
        
        PID:8572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        320⤵
        
        PID:8588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        321⤵
        
        PID:8604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        322⤵
        
        PID:8616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        323⤵
        
        PID:8636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        324⤵
        
        PID:8652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        325⤵
        
        PID:8668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        326⤵
        
        PID:8684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        327⤵
        
        PID:8700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        328⤵
        
        PID:8712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        329⤵
        
        PID:8728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        330⤵
        
        PID:8744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        331⤵
        
        PID:8756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        332⤵
        
        PID:8776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        333⤵
        
        PID:8792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        334⤵
        
        PID:8808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        335⤵
        
        PID:8824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        336⤵
        
        PID:8840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        337⤵
        
        PID:8856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        338⤵
        
        PID:8872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        339⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        340⤵
        
        PID:8904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        341⤵
        
        PID:8920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        342⤵
        
        PID:8932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        343⤵
        
        PID:8952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        344⤵
        
        PID:8968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        345⤵
        
        PID:8980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        346⤵
        
        PID:8996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        347⤵
        
        PID:9008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        348⤵
        
        PID:9028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        349⤵
        
        PID:9040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        350⤵
        
        PID:9056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        351⤵
        
        PID:9072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        352⤵
        
        PID:9088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        353⤵
        
        PID:9104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        354⤵
        
        PID:9120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        355⤵
        
        PID:9136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        356⤵
        
        PID:9152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        357⤵
        
        PID:9172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        358⤵
        
        PID:9184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        359⤵
        
        PID:9200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        360⤵
        
        PID:8296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        361⤵
        
        PID:9232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        362⤵
        
        PID:9248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        363⤵
        
        PID:9264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        364⤵
        
        PID:9276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        365⤵
        
        PID:9288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        366⤵
        
        PID:9300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        367⤵
        
        PID:9312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        368⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        369⤵
        
        PID:9340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        370⤵
        
        PID:9360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        371⤵
        
        PID:9376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        372⤵
        
        PID:9388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        373⤵
        
        PID:9404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        374⤵
        
        PID:9420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        375⤵
        
        PID:9436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        376⤵
        
        PID:9452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        377⤵
        
        PID:9468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        378⤵
        
        PID:9480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        379⤵
        
        PID:9496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        380⤵
        
        PID:9512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        381⤵
        
        PID:9528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        382⤵
        
        PID:9540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        383⤵
        
        PID:9552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        384⤵
        
        PID:9572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        385⤵
        
        PID:9588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        386⤵
        
        PID:9604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        387⤵
        
        PID:9616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        388⤵
        
        PID:9628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        389⤵
        
        PID:9644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        390⤵
        
        PID:9656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        391⤵
        
        PID:9672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        392⤵
        
        PID:9688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        393⤵
        
        PID:9704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        394⤵
        
        PID:9720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        395⤵
        
        PID:9736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        396⤵
        
        PID:9752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        397⤵
        
        PID:9764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        398⤵
        
        PID:9780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        399⤵
        
        PID:9796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        400⤵
        
        PID:9812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        401⤵
        
        PID:9828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        402⤵
        
        PID:9840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        403⤵
        
        PID:9852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        404⤵
        
        PID:9868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        405⤵
        
        PID:9884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        406⤵
        
        PID:9896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        407⤵
        
        PID:9908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        408⤵
        
        PID:9920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        409⤵
        
        PID:9936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        410⤵
        
        PID:9952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        411⤵
        
        PID:9968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        412⤵
        
        PID:9980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        413⤵
        
        PID:10000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        414⤵
        
        PID:10016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        415⤵
        
        PID:10036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        416⤵
        
        PID:10052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        417⤵
        
        PID:10064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        418⤵
        
        PID:10080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        419⤵
        
        PID:10096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        420⤵
        
        PID:10112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        421⤵
        
        PID:10128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        422⤵
        
        PID:10144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        423⤵
        
        PID:10156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        424⤵
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        425⤵
        
        PID:10184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        426⤵
        
        PID:10200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        427⤵
        
        PID:10212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        428⤵
        
        PID:10228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        429⤵
        
        PID:3328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        430⤵
        
        PID:10252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        431⤵
        
        PID:10272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        432⤵
        
        PID:10288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        433⤵
        
        PID:10304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        434⤵
        
        PID:10320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        435⤵
        
        PID:10332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        436⤵
        
        PID:10348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        437⤵
        
        PID:10360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        438⤵
        
        PID:10372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        439⤵
        
        PID:10392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        440⤵
        
        PID:10408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        441⤵
        
        PID:10424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        442⤵
        
        PID:10444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        443⤵
        
        PID:10460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        444⤵
        
        PID:10472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        445⤵
        
        PID:10484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        446⤵
        
        PID:10504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        447⤵
        
        PID:10520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        448⤵
        
        PID:10532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        449⤵
        
        PID:10548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        450⤵
        
        PID:10564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        451⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        452⤵
        
        PID:10596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        453⤵
        
        PID:10608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        454⤵
        
        PID:10628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        455⤵
        
        PID:10644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        456⤵
        
        PID:10656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        457⤵
        
        PID:10676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        458⤵
        
        PID:10688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        459⤵
        
        PID:10704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        460⤵
        
        PID:10724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        461⤵
        
        PID:10740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        462⤵
        
        PID:10756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        463⤵
        
        PID:10772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        464⤵
        
        PID:10792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        465⤵
        
        PID:10812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        466⤵
        
        PID:10824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        467⤵
        
        PID:10844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        468⤵
        
        PID:10860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        469⤵
        
        PID:10880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        470⤵
        
        PID:10896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        471⤵
        
        PID:10920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        472⤵
        
        PID:10936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        473⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        474⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        475⤵
        
        PID:10980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        476⤵
        
        PID:11000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        477⤵
        
        PID:11020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        478⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        479⤵
        
        PID:11044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        480⤵
        
        PID:11060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        481⤵
        
        PID:11076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        482⤵
        
        PID:11092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        483⤵
        
        PID:11108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        484⤵
        
        PID:11124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        485⤵
        
        PID:11140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        486⤵
        
        PID:11156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        487⤵
        
        PID:11176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        488⤵
        
        PID:11188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        489⤵
        
        PID:11200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        490⤵
        
        PID:11240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        491⤵
        
        PID:10268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        492⤵
        
        PID:11276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        493⤵
        
        PID:11288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        494⤵
        
        PID:11316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        495⤵
        
        PID:11336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        496⤵
        
        PID:11356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        497⤵
        
        PID:11376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        498⤵
        
        PID:11388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        499⤵
        
        PID:11404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        500⤵
        
        PID:11420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        501⤵
        
        PID:11440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        502⤵
        
        PID:11452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        503⤵
        
        PID:11472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        504⤵
        
        PID:11484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        505⤵
        
        PID:11500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        506⤵
        
        PID:11516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        507⤵
        
        PID:11532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        508⤵
        
        PID:11548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        509⤵
        
        PID:11564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        510⤵
        
        PID:11580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        511⤵
        
        PID:11596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        512⤵
        
        PID:11612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        513⤵
        
        PID:11628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        514⤵
        
        PID:11640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        515⤵
        
        PID:11656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        516⤵
        
        PID:11676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        517⤵
        
        PID:11696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        518⤵
        
        PID:11712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        519⤵
        
        PID:11724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        520⤵
        
        PID:11744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        521⤵
        
        PID:11760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        522⤵
        
        PID:11776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        523⤵
        
        PID:11792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        524⤵
        
        PID:11808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        525⤵
        
        PID:11824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        526⤵
        
        PID:11840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        527⤵
        
        PID:11852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        528⤵
        
        PID:11868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        529⤵
        
        PID:11888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        530⤵
        
        PID:11904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        531⤵
        
        PID:11924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        532⤵
        
        PID:11940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        533⤵
        
        PID:11960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        534⤵
        
        PID:11972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        535⤵
        
        PID:11988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        536⤵
        
        PID:12004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        537⤵
        
        PID:12020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        538⤵
        
        PID:12036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        539⤵
        
        PID:12052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        540⤵
        
        PID:12068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        541⤵
        
        PID:12080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        542⤵
        
        PID:12100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        543⤵
        
        PID:12116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        544⤵
        
        PID:12128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        545⤵
        
        PID:12148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        546⤵
        
        PID:12164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        547⤵
        
        PID:12180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        548⤵
        
        PID:12196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        549⤵
        
        PID:12212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        550⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        551⤵
        
        PID:12244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        552⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        553⤵
        
        PID:12272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        554⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        555⤵
        
        PID:12300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        556⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        557⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        558⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        559⤵
        
        PID:12360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        560⤵
        
        PID:12376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        561⤵
        
        PID:12388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        562⤵
        
        PID:12400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        563⤵
        
        PID:12412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        564⤵
        
        PID:12428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        565⤵
        
        PID:12444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        566⤵
        
        PID:12460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        567⤵
        
        PID:12476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        568⤵
        
        PID:12492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        569⤵
        
        PID:12504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        570⤵
        
        PID:12520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        571⤵
        
        PID:12532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        572⤵
        
        PID:12544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        573⤵
        
        PID:12556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        574⤵
        
        PID:12572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        575⤵
        
        PID:12588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        576⤵
        
        PID:12604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        577⤵
        
        PID:12620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        578⤵
        
        PID:12636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        579⤵
        
        PID:12652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        580⤵
        
        PID:12668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        581⤵
        
        PID:12684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        582⤵
        
        PID:12700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        583⤵
        
        PID:12720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        584⤵
        
        PID:12736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        585⤵
        
        PID:12752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        586⤵
        
        PID:12768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        587⤵
        
        PID:12784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        588⤵
        
        PID:12800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        589⤵
        
        PID:12816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        590⤵
        
        PID:12832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        591⤵
        
        PID:12848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        592⤵
        
        PID:12864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        593⤵
        
        PID:12880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        594⤵
        
        PID:12896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        595⤵
        
        PID:12912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        596⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        597⤵
        
        PID:12940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        598⤵
        
        PID:12952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        599⤵
        
        PID:12968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        600⤵
        
        PID:12984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        601⤵
        
        PID:13000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        602⤵
        
        PID:13016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        603⤵
        
        PID:13040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        604⤵
        
        PID:13064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        605⤵
        
        PID:13076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        606⤵
        
        PID:13100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        607⤵
        
        PID:13116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        608⤵
        
        PID:13132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        609⤵
        
        PID:13148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        610⤵
        
        PID:13164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        611⤵
        
        PID:13180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        612⤵
        
        PID:13192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        613⤵
        
        PID:13208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        614⤵
        
        PID:13220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        615⤵
        
        PID:13232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        616⤵
        
        PID:13244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        617⤵
        
        PID:13264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        618⤵
        
        PID:13280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        619⤵
        
        PID:13296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        620⤵
        
        PID:13308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        621⤵
        
        PID:3624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        622⤵
        
        PID:3852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        623⤵
        
        PID:3420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        624⤵
        
        PID:5072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        625⤵
        
        PID:3652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        626⤵
        
        PID:3976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        627⤵
        
        PID:13320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        628⤵
        
        PID:13336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        629⤵
        
        PID:13352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        630⤵
        
        PID:13368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        631⤵
        
        PID:13384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        632⤵
        
        PID:13400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        633⤵
        
        PID:13412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        634⤵
        
        PID:13428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        635⤵
        
        PID:13444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        636⤵
        
        PID:13460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        637⤵
        
        PID:13476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        638⤵
        
        PID:13488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        639⤵
        
        PID:13508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        640⤵
        
        PID:13524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        641⤵
        
        PID:13540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        642⤵
        
        PID:13556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        643⤵
        
        PID:13572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        644⤵
        
        PID:13588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        645⤵
        
        PID:13604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        646⤵
        
        PID:13624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        647⤵
        
        PID:13640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        648⤵
        
        PID:13664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        649⤵
        
        PID:13680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        650⤵
        
        PID:13692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        651⤵
        
        PID:13712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        652⤵
        
        PID:13724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        653⤵
        
        PID:13744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        654⤵
        
        PID:13760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        655⤵
        
        PID:13776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        656⤵
        
        PID:13792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        657⤵
        
        PID:13808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        658⤵
        
        PID:13820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        659⤵
        
        PID:13836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        660⤵
        
        PID:13852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        661⤵
        
        PID:13868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        662⤵
        
        PID:13880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        663⤵
        
        PID:13892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        664⤵
        
        PID:13908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        665⤵
        
        PID:13920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        666⤵
        
        PID:13932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        667⤵
        
        PID:13948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        668⤵
        
        PID:13964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        669⤵
        
        PID:13980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        670⤵
        
        PID:13996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        671⤵
        
        PID:14012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        672⤵
        
        PID:14024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        673⤵
        
        PID:14036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        674⤵
        
        PID:14052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        675⤵
        
        PID:14068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        676⤵
        
        PID:14084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        677⤵
        
        PID:14100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        678⤵
        
        PID:14112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        679⤵
        
        PID:14124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        680⤵
        
        PID:14140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        681⤵
        
        PID:14156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        682⤵
        
        PID:14172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        683⤵
        
        PID:14188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        684⤵
        
        PID:14204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        685⤵
        
        PID:14216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        686⤵
        
        PID:14232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        687⤵
        
        PID:14248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        688⤵
        
        PID:14260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        689⤵
        
        PID:14276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        690⤵
        
        PID:14292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        691⤵
        
        PID:14308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        692⤵
        
        PID:14324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        693⤵
        
        PID:13452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        694⤵
        
        PID:14352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        695⤵
        
        PID:14364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        696⤵
        
        PID:14388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        697⤵
        
        PID:14412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        698⤵
        
        PID:14424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        699⤵
        
        PID:14444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        700⤵
        
        PID:14460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        701⤵
        
        PID:14476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        702⤵
        
        PID:14492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        703⤵
        
        PID:14504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        704⤵
        
        PID:14520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        705⤵
        
        PID:14536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        706⤵
        
        PID:14552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        707⤵
        
        PID:14568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        708⤵
        
        PID:14584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        709⤵
        
        PID:14596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        710⤵
        
        PID:14616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        711⤵
        
        PID:14628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        712⤵
        
        PID:14644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        713⤵
        
        PID:14656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        714⤵
        
        PID:14672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        715⤵
        
        PID:14688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        716⤵
        
        PID:14700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        717⤵
        
        PID:14716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        718⤵
        
        PID:14732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        719⤵
        
        PID:14748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        720⤵
        
        PID:14764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        721⤵
        
        PID:14784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        722⤵
        
        PID:14808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        723⤵
        
        PID:14824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        724⤵
        
        PID:14840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        725⤵
        
        PID:14856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        726⤵
        
        PID:14868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        727⤵
        
        PID:14892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        728⤵
        
        PID:14908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        729⤵
        
        PID:14920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        730⤵
        
        PID:14936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        731⤵
        
        PID:14952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        732⤵
        
        PID:14968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        733⤵
        
        PID:14980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        734⤵
        
        PID:14992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        735⤵
        
        PID:15008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        736⤵
        
        PID:15020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        737⤵
        
        PID:15036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        738⤵
        
        PID:15048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        739⤵
        
        PID:15064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        740⤵
        
        PID:15080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        741⤵
        
        PID:15096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        742⤵
        
        PID:15112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        743⤵
        
        PID:15128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        744⤵
        
        PID:15144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        745⤵
        
        PID:15160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        746⤵
        
        PID:15176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        747⤵
        
        PID:15188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        748⤵
        
        PID:15204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        749⤵
        
        PID:15220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        750⤵
        
        PID:15232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        751⤵
        
        PID:15248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        752⤵
        
        PID:15260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        753⤵
        
        PID:15280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        754⤵
        
        PID:15296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        755⤵
        
        PID:15312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        756⤵
        
        PID:15328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        757⤵
        
        PID:15344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        758⤵
        
        PID:15356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        759⤵
        
        PID:15372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        760⤵
        
        PID:15388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        761⤵
        
        PID:15404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        762⤵
        
        PID:15420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        763⤵
        
        PID:15436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        764⤵
        
        PID:15452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        765⤵
        
        PID:15468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        766⤵
        
        PID:15480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        767⤵
        
        PID:15496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        768⤵
        
        PID:15508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        769⤵
        
        PID:15524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        770⤵
        
        PID:15540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        771⤵
        
        PID:15560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        772⤵
        
        PID:15572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        773⤵
        
        PID:15584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        774⤵
        
        PID:15600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        775⤵
        
        PID:15616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        776⤵
        
        PID:15632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        777⤵
        
        PID:15648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        778⤵
        
        PID:15664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        779⤵
        
        PID:15676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        780⤵
        
        PID:15692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        781⤵
        
        PID:15704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        782⤵
        
        PID:15724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        783⤵
        
        PID:15740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        784⤵
        
        PID:15752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        785⤵
        
        PID:15772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        786⤵
        
        PID:15784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        787⤵
        
        PID:15808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        788⤵
        
        PID:15824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        789⤵
        
        PID:15840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        790⤵
        
        PID:15852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        791⤵
        
        PID:15864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        792⤵
        
        PID:15884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        793⤵
        
        PID:15900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        794⤵
        
        PID:15916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        795⤵
        
        PID:15928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        796⤵
        
        PID:15948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        797⤵
        
        PID:15960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        798⤵
        
        PID:15980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        799⤵
        
        PID:15996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        800⤵
        
        PID:16012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        801⤵
        
        PID:16028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        802⤵
        
        PID:16044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        803⤵
        
        PID:16060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        804⤵
        
        PID:16076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        805⤵
        
        PID:16092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        806⤵
        
        PID:16108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        807⤵
        
        PID:16124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        808⤵
        
        PID:16140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        809⤵
        
        PID:16156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        810⤵
        
        PID:16172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        811⤵
        
        PID:16184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        812⤵
        
        PID:16200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        813⤵
        
        PID:16216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        814⤵
        
        PID:16232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        815⤵
        
        PID:16248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        816⤵
        
        PID:16264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        817⤵
        
        PID:16280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        818⤵
        
        PID:16292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        819⤵
        
        PID:16304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        820⤵
        
        PID:16320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        821⤵
        
        PID:16336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        822⤵
        
        PID:16352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        823⤵
        
        PID:16364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        824⤵
        
        PID:16380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        825⤵
        
        PID:15800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        826⤵
        
        PID:2964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        827⤵
        
        PID:2432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        828⤵
        
        PID:14880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        829⤵
        
        PID:16396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        830⤵
        
        PID:16412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        831⤵
        
        PID:16428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        832⤵
        
        PID:16444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        833⤵
        
        PID:16460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        834⤵
        
        PID:16476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        835⤵
        
        PID:16492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        836⤵
        
        PID:16504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        837⤵
        
        PID:16516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        838⤵
        
        PID:16532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        839⤵
        
        PID:16544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        840⤵
        
        PID:16560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        841⤵
        
        PID:16576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        842⤵
        
        PID:16592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        843⤵
        
        PID:16608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        844⤵
        
        PID:16624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        845⤵
        
        PID:16636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        846⤵
        
        PID:16648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        847⤵
        
        PID:16664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        848⤵
        
        PID:16676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        849⤵
        
        PID:16696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        850⤵
        
        PID:16708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        851⤵
        
        PID:16736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        852⤵
        
        PID:16752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        853⤵
        
        PID:16768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        854⤵
        
        PID:16784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        855⤵
        
        PID:16800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        856⤵
        
        PID:16812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        857⤵
        
        PID:16828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        858⤵
        
        PID:16844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        859⤵
        
        PID:16860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        860⤵
        
        PID:16884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        861⤵
        
        PID:16900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        862⤵
        
        PID:16916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        863⤵
        
        PID:16932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        864⤵
        
        PID:16948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        865⤵
        
        PID:16964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        866⤵
        
        PID:16980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        867⤵
        
        PID:16996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        868⤵
        
        PID:17008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        869⤵
        
        PID:17024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        870⤵
        
        PID:17040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        871⤵
        
        PID:17052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        872⤵
        
        PID:17072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        873⤵
        
        PID:17084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        874⤵
        
        PID:17100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        875⤵
        
        PID:17112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        876⤵
        
        PID:17128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        877⤵
        
        PID:17144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        878⤵
        
        PID:17160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\b79b9033afc3db8109bb0bd86abc7185.dll,#1
        879⤵
        
        PID:17176

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads