965616976ed28bffd24f8316ba6bad5d6008dc511c757643f038bc6c57c37e2b

Analysis

max time kernel
104s
max time network
116s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
18/04/2024, 21:44

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

cdrecord.exe
Size

134KB
MD5

597e917a40119d09cc5c68c5a9fc920a
SHA1

c9aa9498ccf4ff9b52c28f367a7f927ba7df9f88
SHA256

8da95200d274b49e7fa51da24d3896db9f899e1e02f4accc2b99837a033632d8
SHA512

3204d03d0a17bc9b6d49fcd1fe30ded59fe5cc0bf4e16cacf6cee1847a6fd2f1cfd299cffeaa2b807ba14c9677ced0581dcfa4fce21cf98ba5966a42c08373f0
SSDEEP

3072:NaSsjz4X5TsG/OGJtNZPjcbZKPQk0aum8iJ2/GNbCYJBExyWcUi+:Ntsjz4JmGTAEoBaum8iUGN3jLJ

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 13 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
behavioral16/memory/4280-0-0x0000000000400000-0x0000000000459000-memory.dmp	upx
behavioral16/memory/4280-1-0x0000000061000000-0x000000006126B000-memory.dmp	upx
behavioral16/memory/4856-2-0x0000000061000000-0x000000006126B000-memory.dmp	upx
behavioral16/memory/4932-3-0x0000000000400000-0x0000000000459000-memory.dmp	upx
behavioral16/memory/3116-4-0x0000000061000000-0x000000006126B000-memory.dmp	upx
behavioral16/memory/2084-5-0x0000000061000000-0x000000006126B000-memory.dmp	upx
behavioral16/memory/5096-6-0x0000000061000000-0x000000006126B000-memory.dmp	upx
behavioral16/memory/5636-7-0x0000000061000000-0x000000006126B000-memory.dmp	upx
behavioral16/memory/6720-8-0x0000000061000000-0x000000006126B000-memory.dmp	upx
behavioral16/memory/6920-9-0x0000000061000000-0x000000006126B000-memory.dmp	upx
behavioral16/memory/7432-10-0x0000000061000000-0x000000006126B000-memory.dmp	upx
behavioral16/memory/9584-11-0x0000000061000000-0x000000006126B000-memory.dmp	upx
behavioral16/memory/14436-76-0x0000000061000000-0x000000006126B000-memory.dmp	upx

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4280 wrote to memory of 4856	4280	cdrecord.exe	85
PID 4280 wrote to memory of 4856	4280	cdrecord.exe	85
PID 4280 wrote to memory of 4856	4280	cdrecord.exe	85
PID 4856 wrote to memory of 4840	4856	cdrecord.exe	86
PID 4856 wrote to memory of 4840	4856	cdrecord.exe	86
PID 4856 wrote to memory of 4840	4856	cdrecord.exe	86
PID 4840 wrote to memory of 4932	4840	cdrecord.exe	87
PID 4840 wrote to memory of 4932	4840	cdrecord.exe	87
PID 4840 wrote to memory of 4932	4840	cdrecord.exe	87
PID 4932 wrote to memory of 3192	4932	cdrecord.exe	88
PID 4932 wrote to memory of 3192	4932	cdrecord.exe	88
PID 4932 wrote to memory of 3192	4932	cdrecord.exe	88
PID 3192 wrote to memory of 3116	3192	cdrecord.exe	89
PID 3192 wrote to memory of 3116	3192	cdrecord.exe	89
PID 3192 wrote to memory of 3116	3192	cdrecord.exe	89
PID 3116 wrote to memory of 3536	3116	cdrecord.exe	90
PID 3116 wrote to memory of 3536	3116	cdrecord.exe	90
PID 3116 wrote to memory of 3536	3116	cdrecord.exe	90
PID 3536 wrote to memory of 2340	3536	cdrecord.exe	91
PID 3536 wrote to memory of 2340	3536	cdrecord.exe	91
PID 3536 wrote to memory of 2340	3536	cdrecord.exe	91
PID 2340 wrote to memory of 5024	2340	cdrecord.exe	92
PID 2340 wrote to memory of 5024	2340	cdrecord.exe	92
PID 2340 wrote to memory of 5024	2340	cdrecord.exe	92
PID 5024 wrote to memory of 4940	5024	cdrecord.exe	93
PID 5024 wrote to memory of 4940	5024	cdrecord.exe	93
PID 5024 wrote to memory of 4940	5024	cdrecord.exe	93
PID 4940 wrote to memory of 4912	4940	cdrecord.exe	94
PID 4940 wrote to memory of 4912	4940	cdrecord.exe	94
PID 4940 wrote to memory of 4912	4940	cdrecord.exe	94
PID 4912 wrote to memory of 2084	4912	cdrecord.exe	95
PID 4912 wrote to memory of 2084	4912	cdrecord.exe	95
PID 4912 wrote to memory of 2084	4912	cdrecord.exe	95
PID 2084 wrote to memory of 3324	2084	cdrecord.exe	96
PID 2084 wrote to memory of 3324	2084	cdrecord.exe	96
PID 2084 wrote to memory of 3324	2084	cdrecord.exe	96
PID 3324 wrote to memory of 1944	3324	cdrecord.exe	97
PID 3324 wrote to memory of 1944	3324	cdrecord.exe	97
PID 3324 wrote to memory of 1944	3324	cdrecord.exe	97
PID 1944 wrote to memory of 2536	1944	cdrecord.exe	98
PID 1944 wrote to memory of 2536	1944	cdrecord.exe	98
PID 1944 wrote to memory of 2536	1944	cdrecord.exe	98
PID 2536 wrote to memory of 1144	2536	cdrecord.exe	99
PID 2536 wrote to memory of 1144	2536	cdrecord.exe	99
PID 2536 wrote to memory of 1144	2536	cdrecord.exe	99
PID 1144 wrote to memory of 3560	1144	cdrecord.exe	100
PID 1144 wrote to memory of 3560	1144	cdrecord.exe	100
PID 1144 wrote to memory of 3560	1144	cdrecord.exe	100
PID 3560 wrote to memory of 2772	3560	cdrecord.exe	101
PID 3560 wrote to memory of 2772	3560	cdrecord.exe	101
PID 3560 wrote to memory of 2772	3560	cdrecord.exe	101
PID 2772 wrote to memory of 3360	2772	cdrecord.exe	102
PID 2772 wrote to memory of 3360	2772	cdrecord.exe	102
PID 2772 wrote to memory of 3360	2772	cdrecord.exe	102
PID 3360 wrote to memory of 2624	3360	cdrecord.exe	103
PID 3360 wrote to memory of 2624	3360	cdrecord.exe	103
PID 3360 wrote to memory of 2624	3360	cdrecord.exe	103
PID 2624 wrote to memory of 4920	2624	cdrecord.exe	104
PID 2624 wrote to memory of 4920	2624	cdrecord.exe	104
PID 2624 wrote to memory of 4920	2624	cdrecord.exe	104
PID 4920 wrote to memory of 2968	4920	cdrecord.exe	105
PID 4920 wrote to memory of 2968	4920	cdrecord.exe	105
PID 4920 wrote to memory of 2968	4920	cdrecord.exe	105
PID 2968 wrote to memory of 1572	2968	cdrecord.exe	106

C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
"C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:4280
- C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
  "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:4856
- - C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
    "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:4840
  - - C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
      "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
      4⤵
      Suspicious use of WriteProcessMemory
      PID:4932
    - - C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:3192
      - C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:3116
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:3536
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:2340
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:5024
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:4940
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:4912
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:2084
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:3324
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:1944
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:2536
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:1144
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:3560
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:2772
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:3360
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:2624
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:4920
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:2968
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        23⤵
        
        PID:1572
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        24⤵
        
        PID:840
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        25⤵
        
        PID:4536
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        26⤵
        
        PID:404
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        27⤵
        
        PID:1640
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        28⤵
        
        PID:3968
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        29⤵
        
        PID:396
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        30⤵
        
        PID:668
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        31⤵
        
        PID:2620
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        32⤵
        
        PID:60
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        33⤵
        
        PID:3424
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        34⤵
        
        PID:4372
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        35⤵
        
        PID:1668
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        36⤵
        
        PID:1748
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        37⤵
        
        PID:3960
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        38⤵
        
        PID:4408
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        39⤵
        
        PID:528
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        40⤵
        
        PID:4964
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        41⤵
        
        PID:3412
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        42⤵
        
        PID:2672
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        43⤵
        
        PID:2044
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        44⤵
        
        PID:4468
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        45⤵
        
        PID:544
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        46⤵
        
        PID:1108
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        47⤵
        
        PID:412
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        48⤵
        
        PID:3768
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        49⤵
        
        PID:1724
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        50⤵
        
        PID:3604
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        51⤵
        
        PID:1612
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        52⤵
        
        PID:4076
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        53⤵
        
        PID:464
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        54⤵
        
        PID:3652
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        55⤵
        
        PID:3684
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        56⤵
        
        PID:2024
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        57⤵
        
        PID:2468
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        58⤵
        
        PID:2716
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        59⤵
        
        PID:2228
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        60⤵
        
        PID:1084
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        61⤵
        
        PID:1728
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        62⤵
        
        PID:976
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        63⤵
        
        PID:5036
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        64⤵
        
        PID:4728
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        65⤵
        
        PID:5096
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        66⤵
        
        PID:3716
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        67⤵
        
        PID:3488
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        68⤵
        
        PID:5040
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        69⤵
        
        PID:2020
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        70⤵
        
        PID:2792
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        71⤵
        
        PID:1764
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        72⤵
        
        PID:3448
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        73⤵
        
        PID:116
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        74⤵
        
        PID:1676
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        75⤵
        
        PID:1664
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        76⤵
        
        PID:3548
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        77⤵
        
        PID:3728
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        78⤵
        
        PID:4028
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        79⤵
        
        PID:4444
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        80⤵
        
        PID:2076
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        81⤵
        
        PID:3248
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        82⤵
        
        PID:3996
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        83⤵
        
        PID:4796
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        84⤵
        
        PID:4316
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        85⤵
        
        PID:4312
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        86⤵
        
        PID:4168
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        87⤵
        
        PID:4304
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        88⤵
        
        PID:3720
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        89⤵
        
        PID:4364
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        90⤵
        
        PID:3244
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        91⤵
        
        PID:5124
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        92⤵
        
        PID:5148
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        93⤵
        
        PID:5168
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        94⤵
        
        PID:5188
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        95⤵
        
        PID:5204
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        96⤵
        
        PID:5224
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        97⤵
        
        PID:5236
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        98⤵
        
        PID:5256
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        99⤵
        
        PID:5268
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        100⤵
        
        PID:5284
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        101⤵
        
        PID:5300
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        102⤵
        
        PID:5320
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        103⤵
        
        PID:5332
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        104⤵
        
        PID:5352
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        105⤵
        
        PID:5368
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        106⤵
        
        PID:5384
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        107⤵
        
        PID:5400
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        108⤵
        
        PID:5428
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        109⤵
        
        PID:5440
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        110⤵
        
        PID:5456
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        111⤵
        
        PID:5472
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        112⤵
        
        PID:5488
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        113⤵
        
        PID:5504
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        114⤵
        
        PID:5524
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        115⤵
        
        PID:5540
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        116⤵
        
        PID:5552
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        117⤵
        
        PID:5568
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        118⤵
        
        PID:5584
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        119⤵
        
        PID:5604
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        120⤵
        
        PID:5620
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        121⤵
        
        PID:5636
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        122⤵
        
        PID:5652
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        123⤵
        
        PID:5676
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        124⤵
        
        PID:5692
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        125⤵
        
        PID:5704
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        126⤵
        
        PID:5720
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        127⤵
        
        PID:5740
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        128⤵
        
        PID:5752
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        129⤵
        
        PID:5768
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        130⤵
        
        PID:5784
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        131⤵
        
        PID:5804
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        132⤵
        
        PID:5820
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        133⤵
        
        PID:5836
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        134⤵
        
        PID:5852
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        135⤵
        
        PID:5868
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        136⤵
        
        PID:5884
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        137⤵
        
        PID:5904
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        138⤵
        
        PID:5916
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        139⤵
        
        PID:5932
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        140⤵
        
        PID:5948
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        141⤵
        
        PID:5964
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        142⤵
        
        PID:5980
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        143⤵
        
        PID:5996
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        144⤵
        
        PID:6012
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        145⤵
        
        PID:6028
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        146⤵
        
        PID:6044
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        147⤵
        
        PID:6060
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        148⤵
        
        PID:6076
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        149⤵
        
        PID:6092
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        150⤵
        
        PID:6112
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        151⤵
        
        PID:6124
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        152⤵
        
        PID:6140
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        153⤵
        
        PID:1320
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        154⤵
        
        PID:5672
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        155⤵
        
        PID:6164
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        156⤵
        
        PID:6176
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        157⤵
        
        PID:6192
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        158⤵
        
        PID:6208
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        159⤵
        
        PID:6224
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        160⤵
        
        PID:6240
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        161⤵
        
        PID:6256
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        162⤵
        
        PID:6272
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        163⤵
        
        PID:6288
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        164⤵
        
        PID:6304
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        165⤵
        
        PID:6320
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        166⤵
        
        PID:6336
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        167⤵
        
        PID:6352
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        168⤵
        
        PID:6368
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        169⤵
        
        PID:6384
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        170⤵
        
        PID:6404
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        171⤵
        
        PID:6416
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        172⤵
        
        PID:6432
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        173⤵
        
        PID:6448
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        174⤵
        
        PID:6464
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        175⤵
        
        PID:6480
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        176⤵
        
        PID:6496
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        177⤵
        
        PID:6512
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        178⤵
        
        PID:6528
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        179⤵
        
        PID:6544
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        180⤵
        
        PID:6560
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        181⤵
        
        PID:6576
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        182⤵
        
        PID:6592
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        183⤵
        
        PID:6612
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        184⤵
        
        PID:6624
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        185⤵
        
        PID:6644
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        186⤵
        
        PID:6656
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        187⤵
        
        PID:6672
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        188⤵
        
        PID:6688
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        189⤵
        
        PID:6704
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        190⤵
        
        PID:6720
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        191⤵
        
        PID:6736
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        192⤵
        
        PID:6756
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        193⤵
        
        PID:6772
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        194⤵
        
        PID:6788
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        195⤵
        
        PID:6804
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        196⤵
        
        PID:6820
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        197⤵
        
        PID:6840
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        198⤵
        
        PID:6856
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        199⤵
        
        PID:6872
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        200⤵
        
        PID:6888
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        201⤵
        
        PID:6904
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        202⤵
        
        PID:6920
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        203⤵
        
        PID:6936
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        204⤵
        
        PID:6956
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        205⤵
        
        PID:6980
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        206⤵
        
        PID:6996
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        207⤵
        
        PID:7012
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        208⤵
        
        PID:7040
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        209⤵
        
        PID:7064
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        210⤵
        
        PID:7080
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        211⤵
        
        PID:7096
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        212⤵
        
        PID:7112
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        213⤵
        
        PID:7128
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        214⤵
        
        PID:7144
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        215⤵
        
        PID:7160
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        216⤵
        
        PID:7172
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        217⤵
        
        PID:7188
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        218⤵
        
        PID:7204
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        219⤵
        
        PID:7220
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        220⤵
        
        PID:7236
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        221⤵
        
        PID:7252
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        222⤵
        
        PID:7268
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        223⤵
        
        PID:7284
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        224⤵
        
        PID:7300
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        225⤵
        
        PID:7316
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        226⤵
        
        PID:7332
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        227⤵
        
        PID:7348
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        228⤵
        
        PID:7364
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        229⤵
        
        PID:7380
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        230⤵
        
        PID:7400
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        231⤵
        
        PID:7416
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        232⤵
        
        PID:7432
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        233⤵
        
        PID:7448
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        234⤵
        
        PID:7468
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        235⤵
        
        PID:7484
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        236⤵
        
        PID:7500
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        237⤵
        
        PID:7520
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        238⤵
        
        PID:7532
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        239⤵
        
        PID:7548
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        240⤵
        
        PID:7564
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        241⤵
        
        PID:7580
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        242⤵
        
        PID:7596
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        243⤵
        
        PID:7612
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        244⤵
        
        PID:7628
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        245⤵
        
        PID:7644
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        246⤵
        
        PID:7660
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        247⤵
        
        PID:7676
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        248⤵
        
        PID:7692
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        249⤵
        
        PID:7708
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        250⤵
        
        PID:7724
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        251⤵
        
        PID:7740
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        252⤵
        
        PID:7756
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        253⤵
        
        PID:7772
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        254⤵
        
        PID:7788
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        255⤵
        
        PID:7804
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        256⤵
        
        PID:7824
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        257⤵
        
        PID:7836
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        258⤵
        
        PID:7852
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        259⤵
        
        PID:7868
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        260⤵
        
        PID:7884
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        261⤵
        
        PID:7900
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        262⤵
        
        PID:7916
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        263⤵
        
        PID:7932
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        264⤵
        
        PID:7948
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        265⤵
        
        PID:7964
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        266⤵
        
        PID:7980
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        267⤵
        
        PID:7996
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        268⤵
        
        PID:8012
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        269⤵
        
        PID:8028
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        270⤵
        
        PID:8044
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        271⤵
        
        PID:8060
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        272⤵
        
        PID:8076
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        273⤵
        
        PID:8092
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        274⤵
        
        PID:8108
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        275⤵
        
        PID:8128
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        276⤵
        
        PID:8144
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        277⤵
        
        PID:8160
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        278⤵
        
        PID:8176
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        279⤵
        
        PID:7460
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        280⤵
        
        PID:8204
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        281⤵
        
        PID:8220
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        282⤵
        
        PID:8236
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        283⤵
        
        PID:8252
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        284⤵
        
        PID:8268
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        285⤵
        
        PID:8284
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        286⤵
        
        PID:8300
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        287⤵
        
        PID:8320
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        288⤵
        
        PID:8332
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        289⤵
        
        PID:8348
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        290⤵
        
        PID:8364
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        291⤵
        
        PID:8380
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        292⤵
        
        PID:8396
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        293⤵
        
        PID:8412
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        294⤵
        
        PID:8428
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        295⤵
        
        PID:8444
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        296⤵
        
        PID:8460
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        297⤵
        
        PID:8476
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        298⤵
        
        PID:8492
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        299⤵
        
        PID:8508
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        300⤵
        
        PID:8524
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        301⤵
        
        PID:8540
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        302⤵
        
        PID:8556
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        303⤵
        
        PID:8572
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        304⤵
        
        PID:8588
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        305⤵
        
        PID:8604
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        306⤵
        
        PID:8620
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        307⤵
        
        PID:8636
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        308⤵
        
        PID:8652
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        309⤵
        
        PID:8668
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        310⤵
        
        PID:8684
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        311⤵
        
        PID:8700
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        312⤵
        
        PID:8716
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        313⤵
        
        PID:8732
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        314⤵
        
        PID:8748
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        315⤵
        
        PID:8764
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        316⤵
        
        PID:8780
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        317⤵
        
        PID:8796
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        318⤵
        
        PID:8812
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        319⤵
        
        PID:8828
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        320⤵
        
        PID:8844
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        321⤵
        
        PID:8860
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        322⤵
        
        PID:8876
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        323⤵
        
        PID:8892
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        324⤵
        
        PID:8908
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        325⤵
        
        PID:8924
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        326⤵
        
        PID:8940
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        327⤵
        
        PID:8956
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        328⤵
        
        PID:8972
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        329⤵
        
        PID:8988
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        330⤵
        
        PID:9004
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        331⤵
        
        PID:9020
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        332⤵
        
        PID:9040
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        333⤵
        
        PID:9056
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        334⤵
        
        PID:9072
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        335⤵
        
        PID:9092
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        336⤵
        
        PID:9104
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        337⤵
        
        PID:9120
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        338⤵
        
        PID:9136
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        339⤵
        
        PID:9152
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        340⤵
        
        PID:9168
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        341⤵
        
        PID:9184
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        342⤵
        
        PID:9200
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        343⤵
        
        PID:8120
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        344⤵
        
        PID:9232
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        345⤵
        
        PID:9248
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        346⤵
        
        PID:9264
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        347⤵
        
        PID:9280
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        348⤵
        
        PID:9296
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        349⤵
        
        PID:9312
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        350⤵
        
        PID:9332
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        351⤵
        
        PID:9344
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        352⤵
        
        PID:9360
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        353⤵
        
        PID:9376
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        354⤵
        
        PID:9392
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        355⤵
        
        PID:9408
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        356⤵
        
        PID:9424
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        357⤵
        
        PID:9440
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        358⤵
        
        PID:9456
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        359⤵
        
        PID:9476
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        360⤵
        
        PID:9488
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        361⤵
        
        PID:9504
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        362⤵
        
        PID:9520
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        363⤵
        
        PID:9536
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        364⤵
        
        PID:9552
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        365⤵
        
        PID:9568
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        366⤵
        
        PID:9584
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        367⤵
        
        PID:9600
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        368⤵
        
        PID:9620
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        369⤵
        
        PID:9640
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        370⤵
        
        PID:9668
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        371⤵
        
        PID:9692
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        372⤵
        
        PID:9704
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        373⤵
        
        PID:9724
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        374⤵
        
        PID:9760
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        375⤵
        
        PID:9792
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        376⤵
        
        PID:9812
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        377⤵
        
        PID:9824
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        378⤵
        
        PID:9848
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        379⤵
        
        PID:9860
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        380⤵
        
        PID:9876
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        381⤵
        
        PID:9900
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        382⤵
        
        PID:9916
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        383⤵
        
        PID:9928
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        384⤵
        
        PID:9956
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        385⤵
        
        PID:9996
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        386⤵
        
        PID:10024
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        387⤵
        
        PID:10040
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        388⤵
        
        PID:10052
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        389⤵
        
        PID:10084
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        390⤵
        
        PID:10100
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        391⤵
        
        PID:10120
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        392⤵
        
        PID:10140
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        393⤵
        
        PID:10156
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        394⤵
        
        PID:10184
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        395⤵
        
        PID:10212
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        396⤵
        
        PID:7032
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        397⤵
        
        PID:9680
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        398⤵
        
        PID:10080
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        399⤵
        
        PID:10252
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        400⤵
        
        PID:10272
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        401⤵
        
        PID:10288
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        402⤵
        
        PID:10312
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        403⤵
        
        PID:10332
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        404⤵
        
        PID:10348
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        405⤵
        
        PID:10368
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        406⤵
        
        PID:10384
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        407⤵
        
        PID:10404
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        408⤵
        
        PID:10424
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        409⤵
        
        PID:10440
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        410⤵
        
        PID:10460
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        411⤵
        
        PID:10472
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        412⤵
        
        PID:10500
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        413⤵
        
        PID:10520
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        414⤵
        
        PID:10536
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        415⤵
        
        PID:10548
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        416⤵
        
        PID:10568
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        417⤵
        
        PID:10580
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        418⤵
        
        PID:10600
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        419⤵
        
        PID:10616
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        420⤵
        
        PID:10636
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        421⤵
        
        PID:10656
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        422⤵
        
        PID:10668
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        423⤵
        
        PID:10684
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        424⤵
        
        PID:10704
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        425⤵
        
        PID:10720
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        426⤵
        
        PID:10736
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        427⤵
        
        PID:10748
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        428⤵
        
        PID:10768
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        429⤵
        
        PID:10784
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        430⤵
        
        PID:10800
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        431⤵
        
        PID:10812
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        432⤵
        
        PID:10832
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        433⤵
        
        PID:10852
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        434⤵
        
        PID:10872
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        435⤵
        
        PID:10884
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        436⤵
        
        PID:10904
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        437⤵
        
        PID:10920
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        438⤵
        
        PID:10936
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        439⤵
        
        PID:10956
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        440⤵
        
        PID:10980
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        441⤵
        
        PID:10996
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        442⤵
        
        PID:11012
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        443⤵
        
        PID:11032
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        444⤵
        
        PID:11044
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        445⤵
        
        PID:11072
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        446⤵
        
        PID:11084
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        447⤵
        
        PID:11104
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        448⤵
        
        PID:11120
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        449⤵
        
        PID:11132
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        450⤵
        
        PID:11152
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        451⤵
        
        PID:11168
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        452⤵
        
        PID:11184
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        453⤵
        
        PID:11196
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        454⤵
        
        PID:11220
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        455⤵
        
        PID:11236
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        456⤵
        
        PID:11252
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        457⤵
        
        PID:10324
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        458⤵
        
        PID:10492
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        459⤵
        
        PID:10228
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        460⤵
        
        PID:7048
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        461⤵
        
        PID:10164
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        462⤵
        
        PID:11268
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        463⤵
        
        PID:11284
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        464⤵
        
        PID:11296
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        465⤵
        
        PID:11316
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        466⤵
        
        PID:11332
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        467⤵
        
        PID:11348
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        468⤵
        
        PID:11368
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        469⤵
        
        PID:11396
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        470⤵
        
        PID:11428
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        471⤵
        
        PID:11460
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        472⤵
        
        PID:11484
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        473⤵
        
        PID:11504
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        474⤵
        
        PID:11524
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        475⤵
        
        PID:11556
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        476⤵
        
        PID:11576
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        477⤵
        
        PID:11600
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        478⤵
        
        PID:11628
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        479⤵
        
        PID:11652
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        480⤵
        
        PID:11676
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        481⤵
        
        PID:11696
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        482⤵
        
        PID:11720
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        483⤵
        
        PID:11740
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        484⤵
        
        PID:11764
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        485⤵
        
        PID:11792
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        486⤵
        
        PID:11820
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        487⤵
        
        PID:11840
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        488⤵
        
        PID:11864
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        489⤵
        
        PID:11888
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        490⤵
        
        PID:11908
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        491⤵
        
        PID:11936
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        492⤵
        
        PID:11956
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        493⤵
        
        PID:11980
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        494⤵
        
        PID:12004
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        495⤵
        
        PID:12028
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        496⤵
        
        PID:12052
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        497⤵
        
        PID:12072
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        498⤵
        
        PID:12104
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        499⤵
        
        PID:12132
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        500⤵
        
        PID:12156
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        501⤵
        
        PID:12176
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        502⤵
        
        PID:12196
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        503⤵
        
        PID:12220
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        504⤵
        
        PID:12240
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        505⤵
        
        PID:12256
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        506⤵
        
        PID:12272
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        507⤵
        
        PID:11360
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        508⤵
        
        PID:11444
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        509⤵
        
        PID:11532
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        510⤵
        
        PID:11584
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        511⤵
        
        PID:11640
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        512⤵
        
        PID:11688
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        513⤵
        
        PID:11748
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        514⤵
        
        PID:11780
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        515⤵
        
        PID:11828
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        516⤵
        
        PID:11900
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        517⤵
        
        PID:11964
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        518⤵
        
        PID:12020
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        519⤵
        
        PID:12064
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        520⤵
        
        PID:12112
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        521⤵
        
        PID:12148
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        522⤵
        
        PID:12212
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        523⤵
        
        PID:12304
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        524⤵
        
        PID:12316
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        525⤵
        
        PID:12340
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        526⤵
        
        PID:12356
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        527⤵
        
        PID:12372
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        528⤵
        
        PID:12388
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        529⤵
        
        PID:12404
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        530⤵
        
        PID:12416
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        531⤵
        
        PID:12436
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        532⤵
        
        PID:12452
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        533⤵
        
        PID:12472
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        534⤵
        
        PID:12500
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        535⤵
        
        PID:12532
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        536⤵
        
        PID:12548
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        537⤵
        
        PID:12564
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        538⤵
        
        PID:12580
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        539⤵
        
        PID:12596
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        540⤵
        
        PID:12612
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        541⤵
        
        PID:12628
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        542⤵
        
        PID:12644
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        543⤵
        
        PID:12660
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        544⤵
        
        PID:12672
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        545⤵
        
        PID:12688
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        546⤵
        
        PID:12708
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        547⤵
        
        PID:12720
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        548⤵
        
        PID:12740
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        549⤵
        
        PID:12756
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        550⤵
        
        PID:12780
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        551⤵
        
        PID:12792
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        552⤵
        
        PID:12824
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        553⤵
        
        PID:12852
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        554⤵
        
        PID:12872
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        555⤵
        
        PID:12888
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        556⤵
        
        PID:12904
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        557⤵
        
        PID:12916
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        558⤵
        
        PID:12936
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        559⤵
        
        PID:12952
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        560⤵
        
        PID:12972
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        561⤵
        
        PID:12988
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        562⤵
        
        PID:13004
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        563⤵
        
        PID:13016
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        564⤵
        
        PID:13032
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        565⤵
        
        PID:13048
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        566⤵
        
        PID:13068
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        567⤵
        
        PID:13084
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        568⤵
        
        PID:13096
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        569⤵
        
        PID:13112
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        570⤵
        
        PID:13132
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        571⤵
        
        PID:13152
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        572⤵
        
        PID:13164
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        573⤵
        
        PID:13184
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        574⤵
        
        PID:13196
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        575⤵
        
        PID:13216
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        576⤵
        
        PID:13228
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        577⤵
        
        PID:13244
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        578⤵
        
        PID:13264
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        579⤵
        
        PID:13284
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        580⤵
        
        PID:13300
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        581⤵
        
        PID:12088
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        582⤵
        
        PID:11424
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        583⤵
        
        PID:11996
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        584⤵
        
        PID:11380
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        585⤵
        
        PID:12836
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        586⤵
        
        PID:12772
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        587⤵
        
        PID:13316
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        588⤵
        
        PID:13336
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        589⤵
        
        PID:13356
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        590⤵
        
        PID:13372
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        591⤵
        
        PID:13388
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        592⤵
        
        PID:13404
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        593⤵
        
        PID:13420
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        594⤵
        
        PID:13436
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        595⤵
        
        PID:13452
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        596⤵
        
        PID:13464
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        597⤵
        
        PID:13484
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        598⤵
        
        PID:13500
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        599⤵
        
        PID:13512
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        600⤵
        
        PID:13528
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        601⤵
        
        PID:13544
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        602⤵
        
        PID:13560
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        603⤵
        
        PID:13580
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        604⤵
        
        PID:13596
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        605⤵
        
        PID:13612
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        606⤵
        
        PID:13628
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        607⤵
        
        PID:13644
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        608⤵
        
        PID:13656
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        609⤵
        
        PID:13676
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        610⤵
        
        PID:13692
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        611⤵
        
        PID:13708
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        612⤵
        
        PID:13724
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        613⤵
        
        PID:13740
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        614⤵
        
        PID:13760
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        615⤵
        
        PID:13776
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        616⤵
        
        PID:13792
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        617⤵
        
        PID:13808
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        618⤵
        
        PID:13824
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        619⤵
        
        PID:13836
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        620⤵
        
        PID:13856
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        621⤵
        
        PID:13872
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        622⤵
        
        PID:13888
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        623⤵
        
        PID:13904
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        624⤵
        
        PID:13920
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        625⤵
        
        PID:13936
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        626⤵
        
        PID:13952
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        627⤵
        
        PID:13968
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        628⤵
        
        PID:13984
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        629⤵
        
        PID:14000
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        630⤵
        
        PID:14016
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        631⤵
        
        PID:14032
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        632⤵
        
        PID:14048
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        633⤵
        
        PID:14064
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        634⤵
        
        PID:14080
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        635⤵
        
        PID:14096
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        636⤵
        
        PID:14112
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        637⤵
        
        PID:14128
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        638⤵
        
        PID:14144
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        639⤵
        
        PID:14160
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        640⤵
        
        PID:14176
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        641⤵
        
        PID:14192
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        642⤵
        
        PID:14208
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        643⤵
        
        PID:14224
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        644⤵
        
        PID:14240
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        645⤵
        
        PID:14256
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        646⤵
        
        PID:14272
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        647⤵
        
        PID:14288
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        648⤵
        
        PID:14304
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        649⤵
        
        PID:14320
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        650⤵
        
        PID:3788
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        651⤵
        
        PID:3704
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        652⤵
        
        PID:1348
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        653⤵
        
        PID:3028
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        654⤵
        
        PID:10064
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        655⤵
        
        PID:4948
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        656⤵
        
        PID:440
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        657⤵
        
        PID:13756
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        658⤵
        
        PID:14356
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        659⤵
        
        PID:14372
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        660⤵
        
        PID:14388
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        661⤵
        
        PID:14404
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        662⤵
        
        PID:14420
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        663⤵
        
        PID:14436
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        664⤵
        
        PID:14448
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        665⤵
        
        PID:14468
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        666⤵
        
        PID:14488
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        667⤵
        
        PID:14504
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        668⤵
        
        PID:14520
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        669⤵
        
        PID:14536
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        670⤵
        
        PID:14552
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        671⤵
        
        PID:14568
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        672⤵
        
        PID:14584
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        673⤵
        
        PID:14600
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        674⤵
        
        PID:14616
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        675⤵
        
        PID:14632
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        676⤵
        
        PID:14648
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        677⤵
        
        PID:14664
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        678⤵
        
        PID:14680
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        679⤵
        
        PID:14696
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        680⤵
        
        PID:14712
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        681⤵
        
        PID:14728
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        682⤵
        
        PID:14744
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        683⤵
        
        PID:14760
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        684⤵
        
        PID:14776
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        685⤵
        
        PID:14796
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        686⤵
        
        PID:14812
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        687⤵
        
        PID:14828
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        688⤵
        
        PID:14844
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        689⤵
        
        PID:14860
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        690⤵
        
        PID:14876
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        691⤵
        
        PID:14892
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        692⤵
        
        PID:14908
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        693⤵
        
        PID:14920
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        694⤵
        
        PID:14936
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        695⤵
        
        PID:14952
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        696⤵
        
        PID:14972
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        697⤵
        
        PID:14988
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        698⤵
        
        PID:15004
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        699⤵
        
        PID:15024
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        700⤵
        
        PID:15040
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        701⤵
        
        PID:15056
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        702⤵
        
        PID:15072
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        703⤵
        
        PID:15088
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        704⤵
        
        PID:15104
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        705⤵
        
        PID:15120
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        706⤵
        
        PID:15136
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        707⤵
        
        PID:15152
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        708⤵
        
        PID:15168
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        709⤵
        
        PID:15184
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        710⤵
        
        PID:15200
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        711⤵
        
        PID:15216
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        712⤵
        
        PID:15232
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        713⤵
        
        PID:15248
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        714⤵
        
        PID:15264
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        715⤵
        
        PID:15280
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        716⤵
        
        PID:15296
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        717⤵
        
        PID:15316
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        718⤵
        
        PID:15332
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        719⤵
        
        PID:15348
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        720⤵
        
        PID:4264
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        721⤵
        
        PID:3232
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        722⤵
        
        PID:3772
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        723⤵
        
        PID:4956
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        724⤵
        
        PID:2580
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        725⤵
        
        PID:1884
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        726⤵
        
        PID:15372
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        727⤵
        
        PID:15388
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        728⤵
        
        PID:15404
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        729⤵
        
        PID:15420
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        730⤵
        
        PID:15436
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        731⤵
        
        PID:15452
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        732⤵
        
        PID:15464
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        733⤵
        
        PID:15480
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        734⤵
        
        PID:15496
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        735⤵
        
        PID:15512
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        736⤵
        
        PID:15528
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        737⤵
        
        PID:15544
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        738⤵
        
        PID:15564
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        739⤵
        
        PID:15580
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        740⤵
        
        PID:15608
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        741⤵
        
        PID:15624
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        742⤵
        
        PID:15640
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        743⤵
        
        PID:15656
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        744⤵
        
        PID:15672
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        745⤵
        
        PID:15688
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        746⤵
        
        PID:15704
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        747⤵
        
        PID:15720
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        748⤵
        
        PID:15740
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        749⤵
        
        PID:15756
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        750⤵
        
        PID:15772
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        751⤵
        
        PID:15788
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        752⤵
        
        PID:15804
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        753⤵
        
        PID:15824
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        754⤵
        
        PID:15840
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        755⤵
        
        PID:15856
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        756⤵
        
        PID:15872
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        757⤵
        
        PID:15888
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        758⤵
        
        PID:15904
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        759⤵
        
        PID:15920
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        760⤵
        
        PID:15936
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        761⤵
        
        PID:15952
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        762⤵
        
        PID:15968
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        763⤵
        
        PID:15984
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        764⤵
        
        PID:16000
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        765⤵
        
        PID:16016
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        766⤵
        
        PID:16032
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        767⤵
        
        PID:16048
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        768⤵
        
        PID:16064
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        769⤵
        
        PID:16080
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        770⤵
        
        PID:16096
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        771⤵
        
        PID:16108
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        772⤵
        
        PID:16124
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        773⤵
        
        PID:16140
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        774⤵
        
        PID:16156
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        775⤵
        
        PID:16172
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        776⤵
        
        PID:16188
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        777⤵
        
        PID:16204
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        778⤵
        
        PID:16224
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        779⤵
        
        PID:16240
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        780⤵
        
        PID:16256
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        781⤵
        
        PID:16272
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        782⤵
        
        PID:16288
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        783⤵
        
        PID:16304
        
        C:\Users\Admin\AppData\Local\Temp\cdrecord.exe
        
        "C:\Users\Admin\AppData\Local\Temp\cdrecord.exe"
        784⤵
        
        PID:16320

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2084-5-0x0000000061000000-0x000000006126B000-memory.dmp

Filesize
2.4MB

Download
memory/3116-4-0x0000000061000000-0x000000006126B000-memory.dmp

Filesize
2.4MB

Download
memory/4280-0-0x0000000000400000-0x0000000000459000-memory.dmp

Filesize
356KB

Download
memory/4280-1-0x0000000061000000-0x000000006126B000-memory.dmp

Filesize
2.4MB

Download
memory/4856-2-0x0000000061000000-0x000000006126B000-memory.dmp

Filesize
2.4MB

Download
memory/4932-3-0x0000000000400000-0x0000000000459000-memory.dmp

Filesize
356KB

Download
memory/5096-6-0x0000000061000000-0x000000006126B000-memory.dmp

Filesize
2.4MB

Download
memory/5636-7-0x0000000061000000-0x000000006126B000-memory.dmp

Filesize
2.4MB

Download
memory/6720-8-0x0000000061000000-0x000000006126B000-memory.dmp

Filesize
2.4MB

Download
memory/6920-9-0x0000000061000000-0x000000006126B000-memory.dmp

Filesize
2.4MB

Download
memory/7432-10-0x0000000061000000-0x000000006126B000-memory.dmp

Filesize
2.4MB

Download
memory/9584-11-0x0000000061000000-0x000000006126B000-memory.dmp

Filesize
2.4MB

Download
memory/14436-76-0x0000000061000000-0x000000006126B000-memory.dmp

Filesize
2.4MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads