790b000a5565554a328cfcc6889c2c151a15614616cf155dc8afb4217037b183

Analysis

max time kernel
94s
max time network
129s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
13/10/2024, 10:26

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

$COMMONFILES/Angels/IEMenuExt.dll
Size

8KB
MD5

553d3d790fa9fb5ca106b6c3f4f007d5
SHA1

239168fd7a6baa9133d62ef0b5e5ad6ad5f35acf
SHA256

fb7701a50094575297c3a48dcc072dd0b8dcb6877561e6ca13d9a74aba908cee
SHA512

a0fb60e74b59840767a01511f1ff1f89e08084eeac1643927cb786d1444008f3ce5d44d3ca6ba283e30e3a3f427aaedd092bdb159f950750443a17a7d0c6af23
SSDEEP

96:PVc3bh8cIfLi85xACTQw7y4NmefUcQ6N3Bz9xKp6bIdd3UZ4wjTJpyegBbBakbKY:dcLh8HfLi8By4NLm6TTKf3HFbBnK/H1+

Score

3^/10

discovery

Malware Config

Signatures

System Location Discovery: System Language Discovery 1 TTPs 64 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	rundll32.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3660 wrote to memory of 4260	3660	rundll32.exe	83
PID 3660 wrote to memory of 4260	3660	rundll32.exe	83
PID 3660 wrote to memory of 4260	3660	rundll32.exe	83
PID 4260 wrote to memory of 4940	4260	rundll32.exe	85
PID 4260 wrote to memory of 4940	4260	rundll32.exe	85
PID 4260 wrote to memory of 4940	4260	rundll32.exe	85
PID 4940 wrote to memory of 64	4940	rundll32.exe	86
PID 4940 wrote to memory of 64	4940	rundll32.exe	86
PID 4940 wrote to memory of 64	4940	rundll32.exe	86
PID 64 wrote to memory of 3644	64	rundll32.exe	87
PID 64 wrote to memory of 3644	64	rundll32.exe	87
PID 64 wrote to memory of 3644	64	rundll32.exe	87
PID 3644 wrote to memory of 1560	3644	rundll32.exe	88
PID 3644 wrote to memory of 1560	3644	rundll32.exe	88
PID 3644 wrote to memory of 1560	3644	rundll32.exe	88
PID 1560 wrote to memory of 3988	1560	rundll32.exe	89
PID 1560 wrote to memory of 3988	1560	rundll32.exe	89
PID 1560 wrote to memory of 3988	1560	rundll32.exe	89
PID 3988 wrote to memory of 3596	3988	rundll32.exe	90
PID 3988 wrote to memory of 3596	3988	rundll32.exe	90
PID 3988 wrote to memory of 3596	3988	rundll32.exe	90
PID 3596 wrote to memory of 664	3596	rundll32.exe	91
PID 3596 wrote to memory of 664	3596	rundll32.exe	91
PID 3596 wrote to memory of 664	3596	rundll32.exe	91
PID 664 wrote to memory of 4708	664	rundll32.exe	93
PID 664 wrote to memory of 4708	664	rundll32.exe	93
PID 664 wrote to memory of 4708	664	rundll32.exe	93
PID 4708 wrote to memory of 1648	4708	rundll32.exe	94
PID 4708 wrote to memory of 1648	4708	rundll32.exe	94
PID 4708 wrote to memory of 1648	4708	rundll32.exe	94
PID 1648 wrote to memory of 1136	1648	rundll32.exe	95
PID 1648 wrote to memory of 1136	1648	rundll32.exe	95
PID 1648 wrote to memory of 1136	1648	rundll32.exe	95
PID 1136 wrote to memory of 2376	1136	rundll32.exe	96
PID 1136 wrote to memory of 2376	1136	rundll32.exe	96
PID 1136 wrote to memory of 2376	1136	rundll32.exe	96
PID 2376 wrote to memory of 4888	2376	rundll32.exe	97
PID 2376 wrote to memory of 4888	2376	rundll32.exe	97
PID 2376 wrote to memory of 4888	2376	rundll32.exe	97
PID 4888 wrote to memory of 5084	4888	rundll32.exe	98
PID 4888 wrote to memory of 5084	4888	rundll32.exe	98
PID 4888 wrote to memory of 5084	4888	rundll32.exe	98
PID 5084 wrote to memory of 560	5084	rundll32.exe	99
PID 5084 wrote to memory of 560	5084	rundll32.exe	99
PID 5084 wrote to memory of 560	5084	rundll32.exe	99
PID 560 wrote to memory of 4212	560	rundll32.exe	100
PID 560 wrote to memory of 4212	560	rundll32.exe	100
PID 560 wrote to memory of 4212	560	rundll32.exe	100
PID 4212 wrote to memory of 3884	4212	rundll32.exe	101
PID 4212 wrote to memory of 3884	4212	rundll32.exe	101
PID 4212 wrote to memory of 3884	4212	rundll32.exe	101
PID 3884 wrote to memory of 4928	3884	rundll32.exe	102
PID 3884 wrote to memory of 4928	3884	rundll32.exe	102
PID 3884 wrote to memory of 4928	3884	rundll32.exe	102
PID 4928 wrote to memory of 3872	4928	rundll32.exe	103
PID 4928 wrote to memory of 3872	4928	rundll32.exe	103
PID 4928 wrote to memory of 3872	4928	rundll32.exe	103
PID 3872 wrote to memory of 2260	3872	rundll32.exe	104
PID 3872 wrote to memory of 2260	3872	rundll32.exe	104
PID 3872 wrote to memory of 2260	3872	rundll32.exe	104
PID 2260 wrote to memory of 4036	2260	rundll32.exe	105
PID 2260 wrote to memory of 4036	2260	rundll32.exe	105
PID 2260 wrote to memory of 4036	2260	rundll32.exe	105
PID 4036 wrote to memory of 4736	4036	rundll32.exe	107

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:3660
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:4260
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:4940
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:64
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:3644
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:1560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:3988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:3596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        10⤵
        System Location Discovery: System Language Discovery
        Suspicious use of WriteProcessMemory
        
        PID:4708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:1648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        12⤵
        System Location Discovery: System Language Discovery
        Suspicious use of WriteProcessMemory
        
        PID:1136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        13⤵
        System Location Discovery: System Language Discovery
        Suspicious use of WriteProcessMemory
        
        PID:2376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:4888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:5084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:4212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:3884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:4928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:3872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:2260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:4036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        23⤵
        
        PID:4736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        24⤵
        
        PID:4868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        25⤵
        
        PID:2888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        26⤵
        
        PID:1120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        27⤵
        
        PID:3832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        28⤵
        
        PID:3108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        29⤵
        
        PID:1128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        30⤵
        
        PID:2892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        31⤵
        
        PID:32
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        32⤵
        
        PID:3208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        33⤵
        
        PID:3444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        34⤵
        
        PID:1316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        35⤵
        
        PID:4964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        36⤵
        
        PID:3404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        37⤵
        
        PID:3340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        38⤵
        
        PID:1916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        39⤵
        
        PID:5048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        40⤵
        
        PID:4548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        41⤵
        
        PID:4420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        42⤵
        
        PID:1460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        43⤵
        
        PID:1656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        44⤵
        
        PID:4896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        45⤵
        System Location Discovery: System Language Discovery
        
        PID:1388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        46⤵
        
        PID:1980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        47⤵
        
        PID:3284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        48⤵
        
        PID:2076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        49⤵
        
        PID:2332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        50⤵
        
        PID:3228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        51⤵
        
        PID:4520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        52⤵
        
        PID:464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        53⤵
        
        PID:1148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        54⤵
        
        PID:4112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        55⤵
        
        PID:2788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        56⤵
        
        PID:4716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        57⤵
        
        PID:4976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        58⤵
        
        PID:3524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        59⤵
        
        PID:2296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        60⤵
        
        PID:2312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        61⤵
        
        PID:1892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        62⤵
        
        PID:412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        63⤵
        
        PID:4320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        64⤵
        
        PID:3128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        65⤵
        System Location Discovery: System Language Discovery
        
        PID:1448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        66⤵
        
        PID:3308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        67⤵
        
        PID:1464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        68⤵
        
        PID:1348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        69⤵
        
        PID:2620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        70⤵
        
        PID:2856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        71⤵
        
        PID:4788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        72⤵
        
        PID:3928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        73⤵
        
        PID:3476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        74⤵
        
        PID:552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        75⤵
        
        PID:1716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        76⤵
        
        PID:2040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        77⤵
        
        PID:4756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        78⤵
        
        PID:2028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        79⤵
        
        PID:4268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        80⤵
        System Location Discovery: System Language Discovery
        
        PID:648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        81⤵
        
        PID:60
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        82⤵
        
        PID:3024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        83⤵
        
        PID:4196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        84⤵
        
        PID:1832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        85⤵
        
        PID:4040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        86⤵
        
        PID:5068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        87⤵
        
        PID:2344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        88⤵
        
        PID:1320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        89⤵
        System Location Discovery: System Language Discovery
        
        PID:4932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        90⤵
        
        PID:4604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        91⤵
        
        PID:1172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        92⤵
        
        PID:4352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        93⤵
        System Location Discovery: System Language Discovery
        
        PID:2604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        94⤵
        
        PID:1576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        95⤵
        
        PID:4576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        96⤵
        
        PID:2216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        97⤵
        
        PID:1020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        98⤵
        
        PID:2780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        99⤵
        
        PID:1408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        100⤵
        
        PID:3720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        101⤵
        
        PID:1944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        102⤵
        System Location Discovery: System Language Discovery
        
        PID:5128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        103⤵
        
        PID:5140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        104⤵
        
        PID:5160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        105⤵
        
        PID:5172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        106⤵
        
        PID:5184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        107⤵
        
        PID:5204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        108⤵
        
        PID:5220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        109⤵
        
        PID:5232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        110⤵
        
        PID:5252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        111⤵
        
        PID:5268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        112⤵
        
        PID:5284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        113⤵
        
        PID:5300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        114⤵
        
        PID:5312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        115⤵
        
        PID:5336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        116⤵
        
        PID:5352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        117⤵
        
        PID:5368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        118⤵
        
        PID:5380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        119⤵
        
        PID:5392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        120⤵
        
        PID:5404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        121⤵
        
        PID:5420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        122⤵
        
        PID:5436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        123⤵
        
        PID:5452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        124⤵
        
        PID:5468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        125⤵
        
        PID:5484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        126⤵
        
        PID:5500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        127⤵
        
        PID:5516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        128⤵
        
        PID:5532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        129⤵
        
        PID:5544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        130⤵
        
        PID:5564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        131⤵
        
        PID:5576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        132⤵
        
        PID:5592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        133⤵
        
        PID:5608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        134⤵
        
        PID:5620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        135⤵
        
        PID:5636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        136⤵
        
        PID:5648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        137⤵
        
        PID:5660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        138⤵
        System Location Discovery: System Language Discovery
        
        PID:5676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        139⤵
        
        PID:5692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        140⤵
        
        PID:5708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        141⤵
        
        PID:5724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        142⤵
        
        PID:5736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        143⤵
        
        PID:5752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        144⤵
        
        PID:5768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        145⤵
        
        PID:5780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        146⤵
        
        PID:5792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        147⤵
        
        PID:5804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        148⤵
        
        PID:5820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        149⤵
        
        PID:5836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        150⤵
        
        PID:5852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        151⤵
        
        PID:5868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        152⤵
        
        PID:5884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        153⤵
        
        PID:5900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        154⤵
        
        PID:5916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        155⤵
        
        PID:5928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        156⤵
        
        PID:5944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        157⤵
        
        PID:5956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        158⤵
        
        PID:5972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        159⤵
        
        PID:5984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        160⤵
        
        PID:6004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        161⤵
        
        PID:6016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        162⤵
        System Location Discovery: System Language Discovery
        
        PID:6028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        163⤵
        
        PID:6040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        164⤵
        
        PID:6056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        165⤵
        
        PID:6072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        166⤵
        
        PID:6088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        167⤵
        
        PID:6104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        168⤵
        
        PID:6120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        169⤵
        
        PID:6136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        170⤵
        
        PID:6152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        171⤵
        
        PID:6168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        172⤵
        
        PID:6188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        173⤵
        
        PID:6204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        174⤵
        
        PID:6220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        175⤵
        
        PID:6236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        176⤵
        
        PID:6252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        177⤵
        
        PID:6268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        178⤵
        
        PID:6284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        179⤵
        
        PID:6300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        180⤵
        
        PID:6312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        181⤵
        
        PID:6328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        182⤵
        
        PID:6340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        183⤵
        
        PID:6356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        184⤵
        
        PID:6368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        185⤵
        
        PID:6380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        186⤵
        
        PID:6396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        187⤵
        
        PID:6412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        188⤵
        
        PID:6428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        189⤵
        
        PID:6440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        190⤵
        
        PID:6456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        191⤵
        
        PID:6472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        192⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        193⤵
        
        PID:6496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        194⤵
        System Location Discovery: System Language Discovery
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        195⤵
        
        PID:6528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        196⤵
        
        PID:6544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        197⤵
        
        PID:6556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        198⤵
        
        PID:6572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        199⤵
        
        PID:6592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        200⤵
        
        PID:6608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        201⤵
        System Location Discovery: System Language Discovery
        
        PID:6624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        202⤵
        
        PID:6640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        203⤵
        
        PID:6652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        204⤵
        
        PID:6668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        205⤵
        
        PID:6684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        206⤵
        
        PID:6696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        207⤵
        
        PID:6712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        208⤵
        
        PID:6728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        209⤵
        
        PID:6740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        210⤵
        
        PID:6756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        211⤵
        
        PID:6772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        212⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        213⤵
        
        PID:6804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        214⤵
        
        PID:6820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        215⤵
        System Location Discovery: System Language Discovery
        
        PID:6836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        216⤵
        
        PID:6848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        217⤵
        
        PID:6864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        218⤵
        
        PID:6880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        219⤵
        
        PID:6896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        220⤵
        
        PID:6912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        221⤵
        
        PID:6924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        222⤵
        
        PID:6936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        223⤵
        
        PID:6952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        224⤵
        
        PID:6968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        225⤵
        
        PID:6984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        226⤵
        System Location Discovery: System Language Discovery
        
        PID:6996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        227⤵
        
        PID:7008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        228⤵
        
        PID:7024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        229⤵
        
        PID:7040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        230⤵
        
        PID:7056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        231⤵
        
        PID:7068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        232⤵
        
        PID:7080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        233⤵
        
        PID:7096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        234⤵
        
        PID:7112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        235⤵
        System Location Discovery: System Language Discovery
        
        PID:7128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        236⤵
        
        PID:7144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        237⤵
        
        PID:7156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        238⤵
        
        PID:4944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        239⤵
        
        PID:2920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        240⤵
        
        PID:1640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        241⤵
        
        PID:4016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        242⤵
        
        PID:1492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        243⤵
        System Location Discovery: System Language Discovery
        
        PID:3516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        244⤵
        
        PID:260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        245⤵
        
        PID:4740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        246⤵
        
        PID:7176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        247⤵
        
        PID:7188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        248⤵
        
        PID:7204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        249⤵
        System Location Discovery: System Language Discovery
        
        PID:7216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        250⤵
        
        PID:7232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        251⤵
        
        PID:7248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        252⤵
        
        PID:7264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        253⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        254⤵
        
        PID:7288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        255⤵
        
        PID:7304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        256⤵
        
        PID:7320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        257⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        258⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        259⤵
        System Location Discovery: System Language Discovery
        
        PID:7368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        260⤵
        
        PID:7384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        261⤵
        
        PID:7400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        262⤵
        
        PID:7416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        263⤵
        
        PID:7432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        264⤵
        
        PID:7444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        265⤵
        
        PID:7460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        266⤵
        
        PID:7476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        267⤵
        
        PID:7492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        268⤵
        
        PID:7508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        269⤵
        
        PID:7524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        270⤵
        
        PID:7536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        271⤵
        
        PID:7548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        272⤵
        
        PID:7564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        273⤵
        
        PID:7576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        274⤵
        
        PID:7592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        275⤵
        
        PID:7608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        276⤵
        
        PID:7620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        277⤵
        
        PID:7636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        278⤵
        
        PID:7652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        279⤵
        
        PID:7664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        280⤵
        
        PID:7680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        281⤵
        System Location Discovery: System Language Discovery
        
        PID:7696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        282⤵
        
        PID:7716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        283⤵
        
        PID:7732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        284⤵
        
        PID:7748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        285⤵
        
        PID:7764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        286⤵
        
        PID:7776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        287⤵
        
        PID:7792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        288⤵
        System Location Discovery: System Language Discovery
        
        PID:7808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        289⤵
        
        PID:7824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        290⤵
        
        PID:7836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        291⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        292⤵
        
        PID:7864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        293⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        294⤵
        
        PID:7896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        295⤵
        
        PID:7912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        296⤵
        
        PID:7924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        297⤵
        
        PID:7940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        298⤵
        
        PID:7952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        299⤵
        
        PID:7968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        300⤵
        
        PID:7984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        301⤵
        
        PID:7996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        302⤵
        
        PID:8012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        303⤵
        
        PID:8028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        304⤵
        
        PID:8040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        305⤵
        
        PID:8056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        306⤵
        
        PID:8068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        307⤵
        
        PID:8080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        308⤵
        
        PID:8096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        309⤵
        
        PID:8108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        310⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        311⤵
        System Location Discovery: System Language Discovery
        
        PID:8136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        312⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        313⤵
        
        PID:8168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        314⤵
        
        PID:8180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        315⤵
        
        PID:836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        316⤵
        
        PID:8200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        317⤵
        
        PID:8216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        318⤵
        System Location Discovery: System Language Discovery
        
        PID:8228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        319⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        320⤵
        
        PID:8256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        321⤵
        
        PID:8272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        322⤵
        
        PID:8288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        323⤵
        
        PID:8304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        324⤵
        
        PID:8316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        325⤵
        
        PID:8332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        326⤵
        
        PID:8348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        327⤵
        
        PID:8360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        328⤵
        
        PID:8376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        329⤵
        
        PID:8392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        330⤵
        
        PID:8404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        331⤵
        
        PID:8416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        332⤵
        
        PID:8432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        333⤵
        
        PID:8448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        334⤵
        
        PID:8464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        335⤵
        
        PID:8480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        336⤵
        
        PID:8496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        337⤵
        
        PID:8512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        338⤵
        
        PID:8524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        339⤵
        
        PID:8540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        340⤵
        
        PID:8556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        341⤵
        
        PID:8568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        342⤵
        
        PID:8584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        343⤵
        
        PID:8604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        344⤵
        
        PID:8620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        345⤵
        
        PID:8632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        346⤵
        
        PID:8644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        347⤵
        
        PID:8660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        348⤵
        
        PID:8672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        349⤵
        
        PID:8684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        350⤵
        System Location Discovery: System Language Discovery
        
        PID:8704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        351⤵
        
        PID:8720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        352⤵
        
        PID:8736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        353⤵
        
        PID:8752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        354⤵
        
        PID:8768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        355⤵
        
        PID:8784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        356⤵
        
        PID:8800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        357⤵
        System Location Discovery: System Language Discovery
        
        PID:8816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        358⤵
        
        PID:8832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        359⤵
        
        PID:8844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        360⤵
        
        PID:8856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        361⤵
        
        PID:8872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        362⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        363⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        364⤵
        
        PID:8912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        365⤵
        
        PID:8932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        366⤵
        
        PID:8948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        367⤵
        
        PID:8964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        368⤵
        
        PID:8980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        369⤵
        System Location Discovery: System Language Discovery
        
        PID:8992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        370⤵
        
        PID:9008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        371⤵
        
        PID:9024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        372⤵
        
        PID:9040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        373⤵
        
        PID:9060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        374⤵
        
        PID:9076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        375⤵
        
        PID:9092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        376⤵
        
        PID:9104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        377⤵
        
        PID:9120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        378⤵
        
        PID:9132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        379⤵
        
        PID:9148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        380⤵
        
        PID:9164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        381⤵
        
        PID:9180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        382⤵
        
        PID:9192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        383⤵
        
        PID:9208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        384⤵
        
        PID:9224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        385⤵
        
        PID:9236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        386⤵
        
        PID:9252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        387⤵
        
        PID:9268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        388⤵
        
        PID:9284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        389⤵
        System Location Discovery: System Language Discovery
        
        PID:9300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        390⤵
        
        PID:9316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        391⤵
        
        PID:9332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        392⤵
        
        PID:9348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        393⤵
        
        PID:9360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        394⤵
        
        PID:9372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        395⤵
        
        PID:9388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        396⤵
        
        PID:9400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        397⤵
        
        PID:9416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        398⤵
        
        PID:9432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        399⤵
        
        PID:9448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        400⤵
        
        PID:9464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        401⤵
        
        PID:9480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        402⤵
        
        PID:9496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        403⤵
        
        PID:9512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        404⤵
        
        PID:9524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        405⤵
        System Location Discovery: System Language Discovery
        
        PID:9540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        406⤵
        
        PID:9560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        407⤵
        
        PID:9576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        408⤵
        
        PID:9588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        409⤵
        
        PID:9608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        410⤵
        
        PID:9620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        411⤵
        
        PID:9636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        412⤵
        
        PID:9652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        413⤵
        
        PID:9668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        414⤵
        
        PID:9684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        415⤵
        
        PID:9696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        416⤵
        System Location Discovery: System Language Discovery
        
        PID:9712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        417⤵
        
        PID:9724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        418⤵
        
        PID:9740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        419⤵
        System Location Discovery: System Language Discovery
        
        PID:9756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        420⤵
        
        PID:9772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        421⤵
        
        PID:9788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        422⤵
        
        PID:9800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        423⤵
        
        PID:9816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        424⤵
        
        PID:9832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        425⤵
        
        PID:9848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        426⤵
        
        PID:9864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        427⤵
        
        PID:9880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        428⤵
        System Location Discovery: System Language Discovery
        
        PID:9896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        429⤵
        
        PID:9912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        430⤵
        
        PID:9924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        431⤵
        
        PID:9940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        432⤵
        
        PID:9956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        433⤵
        
        PID:9972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        434⤵
        
        PID:9988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        435⤵
        
        PID:10004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        436⤵
        
        PID:10016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        437⤵
        
        PID:10032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        438⤵
        
        PID:10048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        439⤵
        
        PID:10060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        440⤵
        
        PID:10076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        441⤵
        
        PID:10092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        442⤵
        
        PID:10108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        443⤵
        
        PID:10124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        444⤵
        
        PID:10136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        445⤵
        
        PID:10148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        446⤵
        System Location Discovery: System Language Discovery
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        447⤵
        
        PID:10184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        448⤵
        
        PID:10200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        449⤵
        
        PID:10216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        450⤵
        
        PID:10232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        451⤵
        
        PID:10244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        452⤵
        
        PID:10256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        453⤵
        
        PID:10276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        454⤵
        
        PID:10292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        455⤵
        
        PID:10304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        456⤵
        
        PID:10320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        457⤵
        
        PID:10336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        458⤵
        
        PID:10352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        459⤵
        
        PID:10368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        460⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        461⤵
        
        PID:10396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        462⤵
        
        PID:10412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        463⤵
        
        PID:10428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        464⤵
        
        PID:10444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        465⤵
        
        PID:10460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        466⤵
        System Location Discovery: System Language Discovery
        
        PID:10476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        467⤵
        
        PID:10492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        468⤵
        
        PID:10508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        469⤵
        
        PID:10524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        470⤵
        
        PID:10540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        471⤵
        
        PID:10552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        472⤵
        
        PID:10568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        473⤵
        
        PID:10584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        474⤵
        
        PID:10600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        475⤵
        
        PID:10616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        476⤵
        System Location Discovery: System Language Discovery
        
        PID:10632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        477⤵
        
        PID:10648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        478⤵
        
        PID:10664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        479⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        480⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        481⤵
        System Location Discovery: System Language Discovery
        
        PID:10712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        482⤵
        
        PID:10728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        483⤵
        
        PID:10744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        484⤵
        
        PID:10760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        485⤵
        
        PID:10776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        486⤵
        
        PID:10788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        487⤵
        
        PID:10804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        488⤵
        System Location Discovery: System Language Discovery
        
        PID:10816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        489⤵
        
        PID:10828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        490⤵
        
        PID:10844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        491⤵
        
        PID:10856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        492⤵
        
        PID:10872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        493⤵
        
        PID:10888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        494⤵
        
        PID:10904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        495⤵
        
        PID:10920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        496⤵
        
        PID:10936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        497⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        498⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        499⤵
        
        PID:10984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        500⤵
        
        PID:10996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        501⤵
        
        PID:11012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        502⤵
        
        PID:11024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        503⤵
        
        PID:11040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        504⤵
        System Location Discovery: System Language Discovery
        
        PID:11056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        505⤵
        
        PID:11072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        506⤵
        
        PID:11088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        507⤵
        
        PID:11104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        508⤵
        
        PID:11120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        509⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        510⤵
        
        PID:11152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        511⤵
        System Location Discovery: System Language Discovery
        
        PID:11164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        512⤵
        
        PID:11176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        513⤵
        
        PID:11192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        514⤵
        
        PID:11204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        515⤵
        
        PID:11220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        516⤵
        
        PID:11236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        517⤵
        
        PID:11252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        518⤵
        
        PID:11268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        519⤵
        
        PID:11280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        520⤵
        
        PID:11296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        521⤵
        
        PID:11312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        522⤵
        
        PID:11324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        523⤵
        
        PID:11340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        524⤵
        
        PID:11356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        525⤵
        
        PID:11368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        526⤵
        
        PID:11388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        527⤵
        
        PID:11400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        528⤵
        
        PID:11416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        529⤵
        System Location Discovery: System Language Discovery
        
        PID:11432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        530⤵
        
        PID:11448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        531⤵
        
        PID:11468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        532⤵
        
        PID:11484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        533⤵
        
        PID:11500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        534⤵
        
        PID:11516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        535⤵
        System Location Discovery: System Language Discovery
        
        PID:11528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        536⤵
        
        PID:11544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        537⤵
        
        PID:11556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        538⤵
        
        PID:11572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        539⤵
        
        PID:11588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        540⤵
        
        PID:11600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        541⤵
        
        PID:11612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        542⤵
        
        PID:11624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        543⤵
        
        PID:11640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        544⤵
        
        PID:11656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        545⤵
        
        PID:11672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        546⤵
        
        PID:11688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        547⤵
        
        PID:11704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        548⤵
        
        PID:11720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        549⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        550⤵
        
        PID:11752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        551⤵
        System Location Discovery: System Language Discovery
        
        PID:11768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        552⤵
        
        PID:11784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        553⤵
        
        PID:11800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        554⤵
        
        PID:11816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        555⤵
        
        PID:11828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        556⤵
        System Location Discovery: System Language Discovery
        
        PID:11844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        557⤵
        
        PID:11856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        558⤵
        
        PID:11872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        559⤵
        
        PID:11888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        560⤵
        
        PID:11904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        561⤵
        
        PID:11916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        562⤵
        
        PID:11928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        563⤵
        
        PID:11944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        564⤵
        
        PID:11956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        565⤵
        
        PID:11976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        566⤵
        
        PID:11992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        567⤵
        
        PID:12004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        568⤵
        
        PID:12020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        569⤵
        
        PID:12036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        570⤵
        
        PID:12052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        571⤵
        
        PID:12068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        572⤵
        
        PID:12084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        573⤵
        
        PID:12100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        574⤵
        
        PID:12116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        575⤵
        
        PID:12132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        576⤵
        
        PID:12148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        577⤵
        
        PID:12168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        578⤵
        System Location Discovery: System Language Discovery
        
        PID:12184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        579⤵
        System Location Discovery: System Language Discovery
        
        PID:12196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        580⤵
        System Location Discovery: System Language Discovery
        
        PID:12212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        581⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        582⤵
        System Location Discovery: System Language Discovery
        
        PID:12244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        583⤵
        System Location Discovery: System Language Discovery
        
        PID:12260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        584⤵
        System Location Discovery: System Language Discovery
        
        PID:12276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        585⤵
        
        PID:11464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        586⤵
        
        PID:12304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        587⤵
        
        PID:12320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        588⤵
        
        PID:12336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        589⤵
        
        PID:12352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        590⤵
        
        PID:12368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        591⤵
        
        PID:12384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        592⤵
        
        PID:12400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        593⤵
        
        PID:12416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        594⤵
        
        PID:12432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        595⤵
        
        PID:12448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        596⤵
        
        PID:12464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        597⤵
        
        PID:12480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        598⤵
        
        PID:12496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        599⤵
        
        PID:12512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        600⤵
        
        PID:12528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        601⤵
        
        PID:12544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        602⤵
        
        PID:12556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        603⤵
        
        PID:12576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        604⤵
        System Location Discovery: System Language Discovery
        
        PID:12592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        605⤵
        
        PID:12608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        606⤵
        
        PID:12624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        607⤵
        
        PID:12636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        608⤵
        
        PID:12656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        609⤵
        
        PID:12672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        610⤵
        
        PID:12684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        611⤵
        
        PID:12700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        612⤵
        
        PID:12716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        613⤵
        
        PID:12732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        614⤵
        
        PID:12748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        615⤵
        
        PID:12764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        616⤵
        
        PID:12780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        617⤵
        
        PID:12796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        618⤵
        
        PID:12816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        619⤵
        
        PID:12828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        620⤵
        
        PID:12840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        621⤵
        
        PID:12856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        622⤵
        
        PID:12868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        623⤵
        
        PID:12884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        624⤵
        
        PID:12900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        625⤵
        
        PID:12916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        626⤵
        
        PID:12932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        627⤵
        
        PID:12948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        628⤵
        
        PID:12964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        629⤵
        
        PID:12980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        630⤵
        
        PID:12992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        631⤵
        
        PID:13004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        632⤵
        
        PID:13020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        633⤵
        
        PID:13040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        634⤵
        System Location Discovery: System Language Discovery
        
        PID:13052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        635⤵
        
        PID:13064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        636⤵
        
        PID:13080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        637⤵
        
        PID:13092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        638⤵
        
        PID:13112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        639⤵
        
        PID:13128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        640⤵
        
        PID:13144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        641⤵
        
        PID:13160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        642⤵
        System Location Discovery: System Language Discovery
        
        PID:13176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        643⤵
        
        PID:13192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        644⤵
        
        PID:13208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        645⤵
        
        PID:13224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        646⤵
        
        PID:13240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        647⤵
        
        PID:13256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        648⤵
        
        PID:13272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        649⤵
        System Location Discovery: System Language Discovery
        
        PID:13288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        650⤵
        
        PID:13304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        651⤵
        
        PID:12804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        652⤵
        
        PID:13324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        653⤵
        
        PID:13340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        654⤵
        
        PID:13352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        655⤵
        
        PID:13368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        656⤵
        
        PID:13380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        657⤵
        
        PID:13392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        658⤵
        
        PID:13408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        659⤵
        
        PID:13424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        660⤵
        
        PID:13444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        661⤵
        
        PID:13460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        662⤵
        
        PID:13476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        663⤵
        
        PID:13492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        664⤵
        
        PID:13508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        665⤵
        
        PID:13524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        666⤵
        
        PID:13540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        667⤵
        
        PID:13556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        668⤵
        
        PID:13572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        669⤵
        
        PID:13584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        670⤵
        
        PID:13600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        671⤵
        
        PID:13616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        672⤵
        System Location Discovery: System Language Discovery
        
        PID:13632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        673⤵
        
        PID:13648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        674⤵
        
        PID:13680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        675⤵
        
        PID:13692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        676⤵
        
        PID:13708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        677⤵
        
        PID:13724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        678⤵
        
        PID:13740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        679⤵
        
        PID:13752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        680⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        681⤵
        
        PID:13784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        682⤵
        
        PID:13796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        683⤵
        
        PID:13812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        684⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        685⤵
        
        PID:13836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        686⤵
        
        PID:13852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        687⤵
        
        PID:13868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        688⤵
        
        PID:13884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        689⤵
        
        PID:13896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        690⤵
        
        PID:13908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        691⤵
        System Location Discovery: System Language Discovery
        
        PID:13920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        692⤵
        
        PID:13936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        693⤵
        
        PID:13952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        694⤵
        
        PID:13964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        695⤵
        
        PID:13976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        696⤵
        
        PID:13992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        697⤵
        
        PID:14008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        698⤵
        
        PID:14024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        699⤵
        
        PID:14040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        700⤵
        
        PID:14052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        701⤵
        
        PID:14068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        702⤵
        
        PID:14084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        703⤵
        
        PID:14096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        704⤵
        
        PID:14116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        705⤵
        
        PID:14132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        706⤵
        
        PID:14148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        707⤵
        
        PID:14164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        708⤵
        
        PID:14176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        709⤵
        
        PID:14192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        710⤵
        
        PID:14208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        711⤵
        
        PID:14224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        712⤵
        
        PID:14236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        713⤵
        
        PID:14256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        714⤵
        
        PID:14268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        715⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        716⤵
        
        PID:14296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        717⤵
        
        PID:14308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        718⤵
        System Location Discovery: System Language Discovery
        
        PID:14324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        719⤵
        
        PID:14344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        720⤵
        
        PID:14360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        721⤵
        
        PID:14376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        722⤵
        
        PID:14392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        723⤵
        
        PID:14408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        724⤵
        
        PID:14424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        725⤵
        
        PID:14440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        726⤵
        
        PID:14456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        727⤵
        System Location Discovery: System Language Discovery
        
        PID:14472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        728⤵
        
        PID:14488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        729⤵
        System Location Discovery: System Language Discovery
        
        PID:14504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        730⤵
        
        PID:14520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        731⤵
        
        PID:14536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        732⤵
        
        PID:14552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        733⤵
        
        PID:14568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        734⤵
        
        PID:14584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        735⤵
        
        PID:14600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        736⤵
        
        PID:14616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        737⤵
        
        PID:14632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        738⤵
        
        PID:14648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        739⤵
        
        PID:14664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        740⤵
        
        PID:14680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        741⤵
        System Location Discovery: System Language Discovery
        
        PID:14692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        742⤵
        
        PID:14708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        743⤵
        
        PID:14724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        744⤵
        
        PID:14740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        745⤵
        
        PID:14756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        746⤵
        
        PID:14772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        747⤵
        
        PID:14788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        748⤵
        
        PID:14800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        749⤵
        
        PID:14816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        750⤵
        
        PID:14836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        751⤵
        
        PID:14848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        752⤵
        
        PID:14864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        753⤵
        
        PID:14880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        754⤵
        
        PID:14896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        755⤵
        
        PID:14912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        756⤵
        
        PID:14924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        757⤵
        
        PID:14940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        758⤵
        
        PID:14952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        759⤵
        
        PID:14968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        760⤵
        
        PID:14984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        761⤵
        
        PID:15000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        762⤵
        
        PID:15016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        763⤵
        
        PID:15032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        764⤵
        
        PID:15048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        765⤵
        
        PID:15064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        766⤵
        
        PID:15076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        767⤵
        
        PID:15092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        768⤵
        
        PID:15108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        769⤵
        
        PID:15124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        770⤵
        
        PID:15140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        771⤵
        
        PID:15156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        772⤵
        
        PID:15168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        773⤵
        
        PID:15184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        774⤵
        System Location Discovery: System Language Discovery
        
        PID:15200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        775⤵
        
        PID:15212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        776⤵
        
        PID:15232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        777⤵
        
        PID:15248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        778⤵
        
        PID:15264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        779⤵
        
        PID:15280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        780⤵
        
        PID:15296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        781⤵
        
        PID:15312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        782⤵
        System Location Discovery: System Language Discovery
        
        PID:15328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        783⤵
        
        PID:15340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        784⤵
        
        PID:14104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        785⤵
        
        PID:3292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        786⤵
        
        PID:1480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        787⤵
        
        PID:15372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        788⤵
        
        PID:15388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        789⤵
        System Location Discovery: System Language Discovery
        
        PID:15408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        790⤵
        
        PID:15424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        791⤵
        
        PID:15436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        792⤵
        
        PID:15456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        793⤵
        
        PID:15472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        794⤵
        
        PID:15484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        795⤵
        
        PID:15500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        796⤵
        
        PID:15516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        797⤵
        
        PID:15532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        798⤵
        
        PID:15548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        799⤵
        
        PID:15564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        800⤵
        
        PID:15580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        801⤵
        
        PID:15596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        802⤵
        
        PID:15612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        803⤵
        
        PID:15628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        804⤵
        System Location Discovery: System Language Discovery
        
        PID:15644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        805⤵
        
        PID:15656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        806⤵
        System Location Discovery: System Language Discovery
        
        PID:15676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        807⤵
        
        PID:15692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        808⤵
        
        PID:15708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        809⤵
        
        PID:15724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        810⤵
        
        PID:15736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        811⤵
        
        PID:15756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        812⤵
        
        PID:15772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        813⤵
        
        PID:15788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        814⤵
        
        PID:15800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        815⤵
        
        PID:15816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        816⤵
        
        PID:15832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        817⤵
        
        PID:15848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        818⤵
        
        PID:15864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        819⤵
        
        PID:15880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        820⤵
        
        PID:15896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        821⤵
        
        PID:15912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        822⤵
        
        PID:15928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        823⤵
        
        PID:15944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        824⤵
        
        PID:15960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        825⤵
        
        PID:15976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        826⤵
        
        PID:15992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        827⤵
        
        PID:16012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        828⤵
        
        PID:16024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        829⤵
        
        PID:16044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        830⤵
        
        PID:16060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        831⤵
        
        PID:16076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        832⤵
        
        PID:16092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        833⤵
        
        PID:16108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        834⤵
        
        PID:16124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        835⤵
        
        PID:16136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        836⤵
        
        PID:16152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        837⤵
        
        PID:16168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        838⤵
        
        PID:16184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        839⤵
        
        PID:16200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        840⤵
        
        PID:16212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        841⤵
        
        PID:16232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        842⤵
        
        PID:16248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        843⤵
        
        PID:16264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        844⤵
        
        PID:16280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        845⤵
        
        PID:16296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        846⤵
        
        PID:16312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        847⤵
        System Location Discovery: System Language Discovery
        
        PID:16324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        848⤵
        
        PID:16340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        849⤵
        
        PID:16356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        850⤵
        
        PID:16368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        851⤵
        
        PID:16380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        852⤵
        
        PID:16396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        853⤵
        
        PID:16412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        854⤵
        
        PID:16428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        855⤵
        
        PID:16444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        856⤵
        
        PID:16456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        857⤵
        
        PID:16472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        858⤵
        
        PID:16488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        859⤵
        
        PID:16504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        860⤵
        
        PID:16520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        861⤵
        
        PID:16536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        862⤵
        
        PID:16552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        863⤵
        
        PID:16564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        864⤵
        
        PID:16580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        865⤵
        
        PID:16596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        866⤵
        
        PID:16608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        867⤵
        
        PID:16620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        868⤵
        
        PID:16636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        869⤵
        
        PID:16652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        870⤵
        
        PID:16668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        871⤵
        
        PID:16680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        872⤵
        
        PID:16696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        873⤵
        
        PID:16712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        874⤵
        
        PID:16728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        875⤵
        
        PID:16740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        876⤵
        
        PID:16756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        877⤵
        
        PID:16772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        878⤵
        
        PID:16788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        879⤵
        
        PID:16804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        880⤵
        
        PID:16816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        881⤵
        
        PID:16832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        882⤵
        
        PID:16848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        883⤵
        
        PID:16864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        884⤵
        
        PID:16876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        885⤵
        
        PID:16888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        886⤵
        
        PID:16904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        887⤵
        
        PID:16916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\$COMMONFILES\Angels\IEMenuExt.dll,#1
        888⤵
        
        PID:16932

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1648-9-0x0000000074CB0000-0x0000000074F34000-memory.dmp

Filesize
2.5MB

Download
memory/4260-0-0x0000000074CB0000-0x0000000074F34000-memory.dmp

Filesize
2.5MB

Download