gh0strat | c858e10e29b769ca86445ba1bebdf708e88245da4e96c4afc967818e8293e099

Analysis

max time kernel
489s
max time network
1798s
platform
windows11-21h2_x64
resource
win11-20241007-en
resource tags

arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
submitted
07-12-2024 18:43

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

taskmgr.exe
Size

288KB
MD5

bc59e8a47d288a3411399884af9ed624
SHA1

f3abc633afb3b1a8d1439499e05a507f9899df73
SHA256

554c68f17fb687c3941f0cc2b141e25541d1ce66e47ad512d7cfd80f3ea5c026
SHA512

03aeb3e64f78e6df60e32bedf5a50408708ab562e55ec92221a92290e1599ff527a2a8bdac0b043b2c97fa8507f7c57f21db4b4f9acd87a313384a4f5422bc01
SSDEEP

6144:5gZNATdYlG4AnjhEkgS1bW4+QZbOQUhFS+W9RPNuULSWlJZg:5gZNodYlG4qEk1dYhFSbDNP14

Score

10^/10

gh0strat discovery persistence rat

Malware Config

Signatures

Gh0st RAT payload 18 IoCs

resource	yara_rule
behavioral26/memory/5064-17-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/5064-15-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/5064-14-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/5064-13-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/4464-28-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/4140-40-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/4140-37-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/4140-38-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/924-52-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/924-50-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/924-49-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/4832-64-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/3016-76-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/3016-74-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/3016-73-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/4832-62-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/4832-61-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat
behavioral26/memory/5064-852-0x0000000010000000-0x0000000010121000-memory.dmp	family_gh0strat

Gh0strat
Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.
rat gh0strat
Gh0strat family
gh0strat

Executes dropped EXE 64 IoCs

pid	Process
5064	server.exe
4464	server.exe
4140	server.exe
924	server.exe
4832	server.exe
3016	server.exe
1616	server.exe
3260	server.exe
4128	server.exe
1448	server.exe
2920	server.exe
4072	server.exe
3208	server.exe
1596	server.exe
1388	server.exe
1784	server.exe
4636	server.exe
4296	server.exe
4780	server.exe
1904	server.exe
2332	server.exe
2328	server.exe
2152	server.exe
3400	server.exe
2076	server.exe
4280	server.exe
3316	server.exe
1688	server.exe
3820	server.exe
2780	server.exe
4612	server.exe
3392	server.exe
4636	server.exe
4140	server.exe
924	server.exe
844	server.exe
1912	server.exe
2328	server.exe
3260	server.exe
4148	server.exe
1320	server.exe
3724	server.exe
1116	server.exe
5108	server.exe
3076	server.exe
4628	server.exe
2712	server.exe
3536	server.exe
5004	server.exe
2688	server.exe
3292	server.exe
2316	server.exe
3464	server.exe
4908	server.exe
1612	server.exe
4268	server.exe
4028	server.exe
3868	server.exe
4232	server.exe
4500	server.exe
3820	server.exe
2108	server.exe
976	server.exe
2216	server.exe

Adds Run key to start application 2 TTPs 1 IoCs

persistence

Registry Run Keys / Startup Folder

T1547.001

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\XXXXXX2063534F = "C:\\Windows\\XXXXXX2063534F\\svchsot.exe"	server.exe

Drops file in Windows directory 2 IoCs

description	ioc	Process
File created	C:\Windows\XXXXXX2063534F\svchsot.exe	server.exe
File opened for modification	C:\Windows\XXXXXX2063534F\svchsot.exe	server.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

System Location Discovery: System Language Discovery 1 TTPs 64 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskmgr.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	server.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	server.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	server.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskmgr.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	server.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	server.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	server.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Process not Found
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskmgr.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskmgr.exe

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
5064	server.exe
5064	server.exe
5064	server.exe
5064	server.exe
5064	server.exe
5064	server.exe
4464	server.exe
4464	server.exe
4464	server.exe
4464	server.exe
4140	server.exe
4140	server.exe
4140	server.exe
4140	server.exe
924	server.exe
924	server.exe
924	server.exe
924	server.exe
4832	server.exe
4832	server.exe
4832	server.exe
4832	server.exe
3016	server.exe
3016	server.exe
3016	server.exe
3016	server.exe
1616	server.exe
1616	server.exe
1616	server.exe
1616	server.exe
3260	server.exe
3260	server.exe
3260	server.exe
3260	server.exe
4128	server.exe
4128	server.exe
4128	server.exe
4128	server.exe
1448	server.exe
1448	server.exe
1448	server.exe
1448	server.exe
2920	server.exe
2920	server.exe
2920	server.exe
2920	server.exe
4072	server.exe
4072	server.exe
4072	server.exe
4072	server.exe
3208	server.exe
3208	server.exe
3208	server.exe
3208	server.exe
1596	server.exe
1596	server.exe
1596	server.exe
1596	server.exe
1388	server.exe
1388	server.exe
1388	server.exe
1388	server.exe
1784	server.exe
1784	server.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1920 wrote to memory of 4116	1920	taskmgr.exe	77
PID 1920 wrote to memory of 4116	1920	taskmgr.exe	77
PID 1920 wrote to memory of 4116	1920	taskmgr.exe	77
PID 1920 wrote to memory of 5064	1920	taskmgr.exe	78
PID 1920 wrote to memory of 5064	1920	taskmgr.exe	78
PID 1920 wrote to memory of 5064	1920	taskmgr.exe	78
PID 4116 wrote to memory of 1468	4116	taskmgr.exe	79
PID 4116 wrote to memory of 1468	4116	taskmgr.exe	79
PID 4116 wrote to memory of 1468	4116	taskmgr.exe	79
PID 4116 wrote to memory of 4464	4116	taskmgr.exe	80
PID 4116 wrote to memory of 4464	4116	taskmgr.exe	80
PID 4116 wrote to memory of 4464	4116	taskmgr.exe	80
PID 1468 wrote to memory of 4336	1468	taskmgr.exe	81
PID 1468 wrote to memory of 4336	1468	taskmgr.exe	81
PID 1468 wrote to memory of 4336	1468	taskmgr.exe	81
PID 1468 wrote to memory of 4140	1468	taskmgr.exe	82
PID 1468 wrote to memory of 4140	1468	taskmgr.exe	82
PID 1468 wrote to memory of 4140	1468	taskmgr.exe	82
PID 4336 wrote to memory of 3368	4336	taskmgr.exe	83
PID 4336 wrote to memory of 3368	4336	taskmgr.exe	83
PID 4336 wrote to memory of 3368	4336	taskmgr.exe	83
PID 4336 wrote to memory of 924	4336	taskmgr.exe	84
PID 4336 wrote to memory of 924	4336	taskmgr.exe	84
PID 4336 wrote to memory of 924	4336	taskmgr.exe	84
PID 3368 wrote to memory of 4380	3368	taskmgr.exe	85
PID 3368 wrote to memory of 4380	3368	taskmgr.exe	85
PID 3368 wrote to memory of 4380	3368	taskmgr.exe	85
PID 3368 wrote to memory of 4832	3368	taskmgr.exe	86
PID 3368 wrote to memory of 4832	3368	taskmgr.exe	86
PID 3368 wrote to memory of 4832	3368	taskmgr.exe	86
PID 4380 wrote to memory of 4680	4380	taskmgr.exe	87
PID 4380 wrote to memory of 4680	4380	taskmgr.exe	87
PID 4380 wrote to memory of 4680	4380	taskmgr.exe	87
PID 4380 wrote to memory of 3016	4380	taskmgr.exe	88
PID 4380 wrote to memory of 3016	4380	taskmgr.exe	88
PID 4380 wrote to memory of 3016	4380	taskmgr.exe	88
PID 4680 wrote to memory of 784	4680	taskmgr.exe	89
PID 4680 wrote to memory of 784	4680	taskmgr.exe	89
PID 4680 wrote to memory of 784	4680	taskmgr.exe	89
PID 4680 wrote to memory of 1616	4680	taskmgr.exe	90
PID 4680 wrote to memory of 1616	4680	taskmgr.exe	90
PID 4680 wrote to memory of 1616	4680	taskmgr.exe	90
PID 784 wrote to memory of 1612	784	taskmgr.exe	91
PID 784 wrote to memory of 1612	784	taskmgr.exe	91
PID 784 wrote to memory of 1612	784	taskmgr.exe	91
PID 784 wrote to memory of 3260	784	taskmgr.exe	154
PID 784 wrote to memory of 3260	784	taskmgr.exe	154
PID 784 wrote to memory of 3260	784	taskmgr.exe	154
PID 1612 wrote to memory of 4088	1612	taskmgr.exe	93
PID 1612 wrote to memory of 4088	1612	taskmgr.exe	93
PID 1612 wrote to memory of 4088	1612	taskmgr.exe	93
PID 1612 wrote to memory of 4128	1612	taskmgr.exe	94
PID 1612 wrote to memory of 4128	1612	taskmgr.exe	94
PID 1612 wrote to memory of 4128	1612	taskmgr.exe	94
PID 4088 wrote to memory of 2548	4088	taskmgr.exe	95
PID 4088 wrote to memory of 2548	4088	taskmgr.exe	95
PID 4088 wrote to memory of 2548	4088	taskmgr.exe	95
PID 4088 wrote to memory of 1448	4088	taskmgr.exe	127
PID 4088 wrote to memory of 1448	4088	taskmgr.exe	127
PID 4088 wrote to memory of 1448	4088	taskmgr.exe	127
PID 2548 wrote to memory of 2776	2548	taskmgr.exe	97
PID 2548 wrote to memory of 2776	2548	taskmgr.exe	97
PID 2548 wrote to memory of 2776	2548	taskmgr.exe	97
PID 2548 wrote to memory of 2920	2548	taskmgr.exe	98

C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
"C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:1920
- C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
  "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:4116
- - C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
    "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:1468
  - - C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
      "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
      4⤵
      Suspicious use of WriteProcessMemory
      PID:4336
    - - C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        5⤵
        System Location Discovery: System Language Discovery
        Suspicious use of WriteProcessMemory
        
        PID:3368
      - C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:4380
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:4680
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:784
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:1612
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:4088
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:2548
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        12⤵
        
        PID:2776
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        13⤵
        
        PID:1176
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        14⤵
        
        PID:2756
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        15⤵
        
        PID:3404
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        16⤵
        
        PID:1180
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        17⤵
        
        PID:1896
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        18⤵
        
        PID:248
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        19⤵
        
        PID:4624
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        20⤵
        
        PID:4944
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        21⤵
        
        PID:1680
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        22⤵
        
        PID:2956
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        23⤵
        
        PID:648
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        24⤵
        
        PID:1888
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        25⤵
        
        PID:3204
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        26⤵
        
        PID:4084
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        27⤵
        
        PID:1448
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        28⤵
        
        PID:5092
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        29⤵
        
        PID:4072
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        30⤵
        
        PID:3548
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        31⤵
        
        PID:2840
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        32⤵
        
        PID:2324
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        33⤵
        
        PID:580
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        34⤵
        
        PID:1860
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        35⤵
        
        PID:3024
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        36⤵
        
        PID:4152
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        37⤵
        
        PID:4832
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        38⤵
        
        PID:3020
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        39⤵
        
        PID:3248
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        40⤵
        
        PID:2152
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        41⤵
        
        PID:3400
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        42⤵
        
        PID:3168
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        43⤵
        
        PID:4976
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        44⤵
        
        PID:4000
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        45⤵
        
        PID:1644
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        46⤵
        
        PID:780
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        47⤵
        
        PID:4392
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        48⤵
        
        PID:4612
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        49⤵
        
        PID:5000
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        50⤵
        
        PID:1468
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        51⤵
        
        PID:3012
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        52⤵
        
        PID:4744
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        53⤵
        
        PID:2784
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        54⤵
        
        PID:776
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        55⤵
        
        PID:1744
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        56⤵
        
        PID:3144
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        57⤵
        
        PID:2348
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        58⤵
        
        PID:752
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        59⤵
        
        PID:2404
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        60⤵
        
        PID:2344
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        61⤵
        
        PID:1176
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        62⤵
        
        PID:3552
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        63⤵
        
        PID:3208
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        64⤵
        
        PID:4492
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        65⤵
        
        PID:2816
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        66⤵
        
        PID:580
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        67⤵
        
        PID:1860
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        68⤵
        
        PID:4888
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        69⤵
        
        PID:2392
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        70⤵
        
        PID:3136
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        71⤵
        
        PID:4668
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        72⤵
        
        PID:348
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        73⤵
        
        PID:4528
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        74⤵
        
        PID:4148
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        75⤵
        
        PID:1320
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        76⤵
        
        PID:3168
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        77⤵
        
        PID:3724
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        78⤵
        
        PID:1028
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        79⤵
        
        PID:4804
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        80⤵
        
        PID:3820
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        81⤵
        
        PID:4628
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        82⤵
        
        PID:4340
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        83⤵
        
        PID:3328
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        84⤵
        
        PID:3196
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        85⤵
        
        PID:2064
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        86⤵
        
        PID:2624
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        87⤵
        
        PID:4944
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        88⤵
        
        PID:3016
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        89⤵
        
        PID:648
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        90⤵
        
        PID:3064
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        91⤵
        
        PID:1612
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        92⤵
        
        PID:760
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        93⤵
        
        PID:1448
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        94⤵
        
        PID:4740
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        95⤵
        
        PID:5092
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        96⤵
        
        PID:1676
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        97⤵
        
        PID:3676
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        98⤵
        
        PID:1016
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        99⤵
        
        PID:3908
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        100⤵
        
        PID:2324
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        101⤵
        
        PID:1692
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        102⤵
        
        PID:580
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        103⤵
        
        PID:2524
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        104⤵
        
        PID:2564
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        105⤵
        
        PID:4708
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        106⤵
        
        PID:2100
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        107⤵
        
        PID:3736
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        108⤵
        
        PID:2160
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        109⤵
        
        PID:4128
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        110⤵
        
        PID:3396
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        111⤵
        
        PID:1124
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        112⤵
        
        PID:3532
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        113⤵
        
        PID:916
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        114⤵
        
        PID:2084
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        115⤵
        
        PID:4508
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        116⤵
        
        PID:3404
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        117⤵
        
        PID:1784
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        118⤵
        
        PID:1896
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        119⤵
        
        PID:248
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        120⤵
        
        PID:2304
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        121⤵
        
        PID:1076
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        122⤵
        
        PID:836
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        123⤵
        
        PID:3520
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        124⤵
        
        PID:3352
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        125⤵
        
        PID:4592
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        126⤵
        
        PID:1356
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        127⤵
        
        PID:3000
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        128⤵
        
        PID:4860
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        129⤵
        
        PID:2072
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        130⤵
        
        PID:4068
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        131⤵
        
        PID:2092
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        132⤵
        
        PID:2708
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        133⤵
        
        PID:1608
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        134⤵
        
        PID:4700
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        135⤵
        
        PID:3908
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        136⤵
        
        PID:240
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        137⤵
        
        PID:4116
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        138⤵
        
        PID:844
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        139⤵
        
        PID:3368
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        140⤵
        
        PID:5084
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        141⤵
        
        PID:4680
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        142⤵
        
        PID:2000
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        143⤵
        
        PID:1404
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        144⤵
        
        PID:3744
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        145⤵
        
        PID:4028
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        146⤵
        System Location Discovery: System Language Discovery
        
        PID:4012
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        147⤵
        
        PID:4084
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        148⤵
        
        PID:1376
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        149⤵
        
        PID:780
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        150⤵
        
        PID:4260
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        151⤵
        
        PID:4676
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        152⤵
        
        PID:956
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        153⤵
        
        PID:1100
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        154⤵
        
        PID:1092
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        155⤵
        
        PID:3372
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        156⤵
        
        PID:4848
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        157⤵
        
        PID:4736
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        158⤵
        
        PID:4440
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        159⤵
        
        PID:4820
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        160⤵
        
        PID:2012
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        161⤵
        
        PID:3040
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        162⤵
        
        PID:4528
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        163⤵
        
        PID:4420
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        164⤵
        
        PID:3244
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        165⤵
        
        PID:4256
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        166⤵
        System Location Discovery: System Language Discovery
        
        PID:4000
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        167⤵
        
        PID:3564
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        168⤵
        
        PID:4756
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        169⤵
        
        PID:1856
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        170⤵
        
        PID:1016
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        171⤵
        
        PID:1468
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        172⤵
        
        PID:4792
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        173⤵
        
        PID:740
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        174⤵
        
        PID:4380
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        175⤵
        
        PID:1296
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        176⤵
        
        PID:664
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        177⤵
        
        PID:2784
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        178⤵
        
        PID:1588
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        179⤵
        
        PID:3732
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        180⤵
        
        PID:760
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        181⤵
        
        PID:2580
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        182⤵
        
        PID:4012
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        183⤵
        
        PID:2548
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        184⤵
        
        PID:764
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        185⤵
        
        PID:1444
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        186⤵
        
        PID:2408
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        187⤵
        
        PID:2108
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        188⤵
        
        PID:2804
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        189⤵
        
        PID:2908
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        190⤵
        
        PID:1884
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        191⤵
        
        PID:4888
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        192⤵
        
        PID:4904
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        193⤵
        
        PID:4736
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        194⤵
        
        PID:2312
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        195⤵
        
        PID:2912
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        196⤵
        
        PID:1480
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        197⤵
        
        PID:3260
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        198⤵
        
        PID:1572
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        199⤵
        
        PID:1640
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        200⤵
        
        PID:3532
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        201⤵
        
        PID:2920
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        202⤵
        
        PID:2756
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        203⤵
        
        PID:3676
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        204⤵
        
        PID:3068
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        205⤵
        
        PID:2408
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        206⤵
        
        PID:956
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        207⤵
        
        PID:1896
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        208⤵
        
        PID:2740
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        209⤵
        
        PID:1864
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        210⤵
        
        PID:4380
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        211⤵
        
        PID:340
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        212⤵
        
        PID:900
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        213⤵
        
        PID:4268
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        214⤵
        
        PID:2004
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        215⤵
        
        PID:1788
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        216⤵
        
        PID:4240
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        217⤵
        
        PID:3468
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        218⤵
        
        PID:1924
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        219⤵
        
        PID:4960
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        220⤵
        
        PID:4488
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        221⤵
        
        PID:432
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        222⤵
        
        PID:420
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        223⤵
        
        PID:3856
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        224⤵
        
        PID:1100
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        225⤵
        
        PID:3388
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        226⤵
        
        PID:3944
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        227⤵
        
        PID:2732
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        228⤵
        
        PID:844
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        229⤵
        
        PID:3020
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        230⤵
        
        PID:4088
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        231⤵
        
        PID:3356
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        232⤵
        
        PID:1372
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        233⤵
        
        PID:1860
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        234⤵
        
        PID:2348
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        235⤵
        
        PID:2300
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        236⤵
        
        PID:4652
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        237⤵
        
        PID:1920
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        238⤵
        
        PID:1212
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        239⤵
        
        PID:2676
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        240⤵
        
        PID:4892
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        241⤵
        
        PID:1552
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        242⤵
        
        PID:3656
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        243⤵
        
        PID:1904
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        244⤵
        
        PID:4888
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        245⤵
        
        PID:4852
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        246⤵
        
        PID:3224
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        247⤵
        
        PID:4832
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        248⤵
        
        PID:2912
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        249⤵
        
        PID:648
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        250⤵
        
        PID:3176
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        251⤵
        
        PID:2264
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        252⤵
        
        PID:1640
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        253⤵
        
        PID:1952
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        254⤵
        
        PID:4584
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        255⤵
        
        PID:2084
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        256⤵
        
        PID:4488
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        257⤵
        
        PID:976
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        258⤵
        
        PID:1196
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        259⤵
        
        PID:3908
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        260⤵
        
        PID:1844
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        261⤵
        
        PID:240
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        262⤵
        
        PID:1188
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        263⤵
        
        PID:4472
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        264⤵
        
        PID:3872
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        265⤵
        
        PID:664
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        266⤵
        
        PID:1836
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        267⤵
        
        PID:1944
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        268⤵
        
        PID:4980
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        269⤵
        
        PID:416
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        270⤵
        
        PID:4012
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        271⤵
        
        PID:3924
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        272⤵
        
        PID:4000
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        273⤵
        
        PID:5076
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        274⤵
        
        PID:3564
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        275⤵
        
        PID:3964
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        276⤵
        
        PID:244
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        277⤵
        
        PID:1092
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        278⤵
        
        PID:4140
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        279⤵
        
        PID:580
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        280⤵
        
        PID:2316
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        281⤵
        
        PID:844
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        282⤵
        
        PID:4848
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        283⤵
        
        PID:4372
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        284⤵
        
        PID:3352
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        285⤵
        
        PID:3464
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        286⤵
        
        PID:3204
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        287⤵
        
        PID:4240
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        288⤵
        
        PID:2400
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        289⤵
        
        PID:652
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        290⤵
        
        PID:1476
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        291⤵
        
        PID:4008
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        292⤵
        
        PID:4184
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        293⤵
        
        PID:4464
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        294⤵
        
        PID:2916
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        295⤵
        
        PID:3328
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        296⤵
        
        PID:1904
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        297⤵
        
        PID:2392
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        298⤵
        
        PID:2800
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        299⤵
        
        PID:1228
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        300⤵
        
        PID:1348
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        301⤵
        
        PID:3432
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        302⤵
        
        PID:2620
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        303⤵
        
        PID:1572
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        304⤵
        
        PID:972
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        305⤵
        
        PID:1788
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        306⤵
        
        PID:4084
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        307⤵
        
        PID:3032
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        308⤵
        
        PID:2944
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        309⤵
        
        PID:3684
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        310⤵
        
        PID:1784
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        311⤵
        
        PID:564
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        312⤵
        
        PID:1100
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        313⤵
        
        PID:1092
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        314⤵
        
        PID:2908
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        315⤵
        
        PID:580
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        316⤵
        
        PID:3224
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        317⤵
        
        PID:1960
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        318⤵
        
        PID:1804
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        319⤵
        
        PID:1708
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        320⤵
        
        PID:1588
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        321⤵
        
        PID:2356
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        322⤵
        
        PID:3972
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        323⤵
        
        PID:3528
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        324⤵
        
        PID:3044
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        325⤵
        
        PID:2248
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        326⤵
        
        PID:1476
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        327⤵
        
        PID:3276
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        328⤵
        
        PID:5004
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        329⤵
        
        PID:3024
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        330⤵
        
        PID:2652
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        331⤵
        
        PID:3944
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        332⤵
        
        PID:32
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        333⤵
        
        PID:1888
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        334⤵
        
        PID:744
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        335⤵
        
        PID:1584
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        336⤵
        
        PID:3056
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        337⤵
        
        PID:752
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        338⤵
        
        PID:760
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        339⤵
        
        PID:4980
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        340⤵
        
        PID:2092
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        341⤵
        
        PID:1076
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        342⤵
        
        PID:4092
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        343⤵
        
        PID:1596
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        344⤵
        
        PID:808
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        345⤵
        
        PID:1476
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        346⤵
        
        PID:4260
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        347⤵
        
        PID:4792
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        348⤵
        
        PID:3412
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        349⤵
        
        PID:4888
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        350⤵
        
        PID:4232
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        351⤵
        
        PID:4708
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        352⤵
        
        PID:3736
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        353⤵
        
        PID:744
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        354⤵
        
        PID:1804
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        355⤵
        
        PID:3876
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        356⤵
        
        PID:1028
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        357⤵
        
        PID:2348
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        358⤵
        
        PID:4012
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        359⤵
        
        PID:1688
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        360⤵
        
        PID:1536
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        361⤵
        
        PID:3404
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        362⤵
        
        PID:2216
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        363⤵
        
        PID:420
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        364⤵
        
        PID:1884
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        365⤵
        
        PID:248
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        366⤵
        System Location Discovery: System Language Discovery
        
        PID:1988
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        367⤵
        
        PID:1744
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        368⤵
        
        PID:4904
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        369⤵
        
        PID:4836
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        370⤵
        
        PID:1228
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        371⤵
        
        PID:3028
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        372⤵
        
        PID:4620
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        373⤵
        
        PID:1396
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        374⤵
        
        PID:4156
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        375⤵
        
        PID:2208
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        376⤵
        
        PID:3928
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        377⤵
        
        PID:4988
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        378⤵
        
        PID:1496
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        379⤵
        
        PID:5076
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        380⤵
        
        PID:3564
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        381⤵
        
        PID:4872
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        382⤵
        
        PID:1056
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        383⤵
        
        PID:3292
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        384⤵
        
        PID:3512
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        385⤵
        
        PID:1844
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        386⤵
        
        PID:2088
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        387⤵
        
        PID:3224
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        388⤵
        
        PID:5024
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        389⤵
        
        PID:3432
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        390⤵
        
        PID:2280
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        391⤵
        
        PID:1944
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        392⤵
        
        PID:1356
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        393⤵
        
        PID:2348
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        394⤵
        
        PID:1124
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        395⤵
        
        PID:3596
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        396⤵
        
        PID:2944
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        397⤵
        
        PID:808
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        398⤵
        
        PID:1452
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        399⤵
        
        PID:3128
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        400⤵
        
        PID:1884
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        401⤵
        
        PID:3368
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        402⤵
        
        PID:3940
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        403⤵
        
        PID:5016
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        404⤵
        
        PID:1844
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        405⤵
        
        PID:3064
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        406⤵
        
        PID:4524
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        407⤵
        
        PID:4548
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        408⤵
        
        PID:3604
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        409⤵
        
        PID:2280
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        410⤵
        
        PID:1184
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        411⤵
        
        PID:1640
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        412⤵
        
        PID:1952
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        413⤵
        
        PID:1840
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        414⤵
        
        PID:2248
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        415⤵
        
        PID:2708
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        416⤵
        
        PID:432
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        417⤵
        
        PID:1476
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        418⤵
        
        PID:2524
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        419⤵
        
        PID:3212
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        420⤵
        
        PID:636
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        421⤵
        
        PID:1864
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        422⤵
        
        PID:1052
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        423⤵
        
        PID:3228
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        424⤵
        
        PID:3732
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        425⤵
        
        PID:1612
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        426⤵
        
        PID:4308
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        427⤵
        
        PID:1084
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        428⤵
        
        PID:3700
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        429⤵
        
        PID:1320
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        430⤵
        
        PID:764
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        431⤵
        
        PID:4068
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        432⤵
        
        PID:3044
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        433⤵
        
        PID:976
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        434⤵
        
        PID:3764
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        435⤵
        
        PID:420
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        436⤵
        
        PID:2804
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        437⤵
        
        PID:3412
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        438⤵
        
        PID:2732
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        439⤵
        
        PID:3016
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        440⤵
        
        PID:3592
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        441⤵
        
        PID:788
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        442⤵
        
        PID:3352
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        443⤵
        
        PID:1480
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        444⤵
        
        PID:2000
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        445⤵
        
        PID:4240
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        446⤵
        
        PID:4316
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        447⤵
        
        PID:2348
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        448⤵
        
        PID:3168
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        449⤵
        
        PID:1688
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        450⤵
        
        PID:1496
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        451⤵
        
        PID:2408
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        452⤵
        
        PID:8
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        453⤵
        
        PID:972
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        454⤵
        
        PID:2836
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        455⤵
        
        PID:4636
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        456⤵
        
        PID:2148
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        457⤵
        
        PID:4140
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        458⤵
        
        PID:3016
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        459⤵
        
        PID:4224
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        460⤵
        
        PID:4392
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        461⤵
        
        PID:1412
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        462⤵
        
        PID:1836
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        463⤵
        
        PID:3204
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        464⤵
        
        PID:4856
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        465⤵
        
        PID:4280
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        466⤵
        
        PID:3316
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        467⤵
        
        PID:3168
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        468⤵
        
        PID:1688
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        469⤵
        
        PID:3804
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        470⤵
        
        PID:432
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        471⤵
        
        PID:4160
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        472⤵
        
        PID:2916
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        473⤵
        
        PID:3944
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        474⤵
        
        PID:716
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        475⤵
        
        PID:4368
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        476⤵
        
        PID:1920
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        477⤵
        
        PID:3248
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        478⤵
        
        PID:4604
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        479⤵
        
        PID:5012
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        480⤵
        
        PID:3848
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        481⤵
        
        PID:3444
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        482⤵
        
        PID:1924
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        483⤵
        
        PID:3748
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        484⤵
        
        PID:4092
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        485⤵
        
        PID:5108
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        486⤵
        
        PID:2248
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        487⤵
        
        PID:2944
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        488⤵
        
        PID:876
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        489⤵
        
        PID:4336
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        490⤵
        
        PID:4296
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        491⤵
        
        PID:2916
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        492⤵
        
        PID:3944
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        493⤵
        
        PID:3012
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        494⤵
        
        PID:2472
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        495⤵
        
        PID:1272
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        496⤵
        
        PID:3744
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        497⤵
        
        PID:4392
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        498⤵
        
        PID:1944
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        499⤵
        
        PID:4312
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        500⤵
        
        PID:1356
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        501⤵
        
        PID:2400
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        502⤵
        
        PID:4504
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        503⤵
        
        PID:3820
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        504⤵
        
        PID:3596
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        505⤵
        
        PID:2408
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        506⤵
        
        PID:4872
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        507⤵
        
        PID:4624
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        508⤵
        
        PID:240
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        509⤵
        
        PID:2524
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        510⤵
        
        PID:2064
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        511⤵
        
        PID:4324
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        512⤵
        
        PID:3576
        
        C:\Users\Admin\AppData\Local\Temp\taskmgr.exe
        
        "C:\Users\Admin\AppData\Local\Temp\taskmgr.exe"
        513⤵
        
        PID:580
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        512⤵
        
        PID:4904
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        511⤵
        
        PID:924
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        510⤵
        System Location Discovery: System Language Discovery
        
        PID:4816
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        509⤵
        
        PID:2304
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        508⤵
        
        PID:784
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        507⤵
        
        PID:4460
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        506⤵
        
        PID:3564
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        505⤵
        
        PID:2324
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        504⤵
        
        PID:4032
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        503⤵
        
        PID:4092
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        502⤵
        
        PID:2416
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        501⤵
        
        PID:3332
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        500⤵
        
        PID:1176
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        499⤵
        
        PID:752
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        498⤵
        
        PID:1372
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        497⤵
        
        PID:3000
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        496⤵
        
        PID:4244
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        495⤵
        
        PID:4848
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        494⤵
        
        PID:2396
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        493⤵
        
        PID:1192
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        492⤵
        
        PID:3816
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        491⤵
        
        PID:3412
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        490⤵
        
        PID:2908
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        489⤵
        
        PID:956
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        488⤵
        
        PID:3424
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        487⤵
        
        PID:808
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        486⤵
        
        PID:4892
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        485⤵
        
        PID:3172
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        484⤵
        
        PID:1076
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        483⤵
        
        PID:2348
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        482⤵
        
        PID:4740
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        481⤵
        
        PID:4036
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        480⤵
        
        PID:1804
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        479⤵
        
        PID:1912
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        478⤵
        
        PID:3136
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        477⤵
        
        PID:2328
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        476⤵
        
        PID:2956
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        475⤵
        
        PID:2316
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        474⤵
        
        PID:232
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        473⤵
        
        PID:3716
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        472⤵
        
        PID:3656
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        471⤵
        
        PID:1016
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        470⤵
        
        PID:4008
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        469⤵
        
        PID:1448
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        468⤵
        
        PID:2336
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        467⤵
        
        PID:4924
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        466⤵
        
        PID:2820
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        465⤵
        
        PID:2072
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        464⤵
        
        PID:3464
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        463⤵
        
        PID:752
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        462⤵
        
        PID:1480
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        461⤵
        
        PID:3176
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        460⤵
        
        PID:2024
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        459⤵
        
        PID:4836
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        458⤵
        
        PID:3372
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        457⤵
        
        PID:1668
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        456⤵
        
        PID:2508
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        455⤵
        
        PID:2564
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        454⤵
        
        PID:4596
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        453⤵
        
        PID:4336
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        452⤵
        
        PID:2960
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        451⤵
        
        PID:4540
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        450⤵
        
        PID:2596
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        449⤵
        
        PID:3928
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        448⤵
        
        PID:3532
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        447⤵
        
        PID:2920
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        446⤵
        
        PID:5020
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        445⤵
        
        PID:3180
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        444⤵
        
        PID:1372
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        443⤵
        
        PID:3488
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        442⤵
        
        PID:3144
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        441⤵
        
        PID:2328
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        440⤵
        
        PID:4088
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        439⤵
        
        PID:4380
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        438⤵
        
        PID:3960
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        437⤵
        
        PID:4288
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        436⤵
        
        PID:4116
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        435⤵
        
        PID:3208
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        434⤵
        
        PID:3676
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        433⤵
        
        PID:3276
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        432⤵
        
        PID:3400
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        431⤵
        
        PID:1608
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        430⤵
        
        PID:3316
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        429⤵
        
        PID:560
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        428⤵
        
        PID:4076
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        427⤵
        
        PID:1396
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        426⤵
        
        PID:3396
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        425⤵
        
        PID:3028
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        424⤵
        
        PID:4592
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        423⤵
        
        PID:2776
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        422⤵
        
        PID:3372
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        421⤵
        
        PID:3556
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        420⤵
        
        PID:4140
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        419⤵
        
        PID:3716
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        418⤵
        
        PID:2624
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        417⤵
        
        PID:1452
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        416⤵
        
        PID:4184
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        415⤵
        
        PID:3404
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        414⤵
        
        PID:4000
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        413⤵
        
        PID:4508
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        412⤵
        
        PID:868
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        411⤵
        
        PID:2072
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        410⤵
        
        PID:2264
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        409⤵
        
        PID:3848
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        408⤵
        
        PID:3264
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        407⤵
        
        PID:2796
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        406⤵
        
        PID:1584
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        405⤵
        
        PID:2668
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        404⤵
        
        PID:2956
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        403⤵
        
        PID:1080
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        402⤵
        
        PID:3292
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        401⤵
        
        PID:2564
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        400⤵
        
        PID:4460
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        399⤵
        
        PID:420
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        398⤵
        
        PID:3764
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        397⤵
        
        PID:4488
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        396⤵
        
        PID:1388
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        395⤵
        
        PID:3428
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        394⤵
        
        PID:1176
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        393⤵
        
        PID:2028
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        392⤵
        
        PID:4856
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        391⤵
        
        PID:3520
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        390⤵
        
        PID:4364
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        389⤵
        
        PID:1616
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        388⤵
        
        PID:3144
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        387⤵
        
        PID:1920
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        386⤵
        
        PID:2320
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        385⤵
        System Location Discovery: System Language Discovery
        
        PID:3576
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        384⤵
        
        PID:3344
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        383⤵
        
        PID:4596
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        382⤵
        
        PID:1764
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        381⤵
        
        PID:876
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        380⤵
        
        PID:4756
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        379⤵
        
        PID:2708
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        378⤵
        
        PID:2408
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        377⤵
        
        PID:3724
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        376⤵
        
        PID:3108
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        375⤵
        
        PID:4980
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        374⤵
        
        PID:1552
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        373⤵
        
        PID:1084
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        372⤵
        
        PID:3444
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        371⤵
        
        PID:1480
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        370⤵
        System Location Discovery: System Language Discovery
        
        PID:692
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        369⤵
        
        PID:1272
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        368⤵
        
        PID:3372
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        367⤵
        
        PID:2044
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        366⤵
        
        PID:2568
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        365⤵
        
        PID:1692
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        364⤵
        
        PID:244
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        363⤵
        
        PID:4608
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        362⤵
        
        PID:4756
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        361⤵
        
        PID:1768
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        360⤵
        
        PID:3820
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        359⤵
        
        PID:2400
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        358⤵
        
        PID:1644
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        357⤵
        
        PID:4696
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        356⤵
        
        PID:4312
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        355⤵
        
        PID:4268
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        354⤵
        
        PID:4372
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        353⤵
        
        PID:1616
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        352⤵
        
        PID:544
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        351⤵
        
        PID:2160
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        350⤵
        
        PID:2088
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        349⤵
        
        PID:836
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        348⤵
        
        PID:3716
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        347⤵
        
        PID:4900
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        346⤵
        
        PID:4460
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        345⤵
        
        PID:4008
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        344⤵
        
        PID:2656
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        343⤵
        
        PID:3340
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        342⤵
        
        PID:2780
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        341⤵
        
        PID:3724
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        340⤵
        
        PID:2580
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        339⤵
        
        PID:2432
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        338⤵
        
        PID:4528
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        337⤵
        
        PID:1612
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        336⤵
        
        PID:4620
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        335⤵
        
        PID:4848
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        334⤵
        
        PID:2472
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        333⤵
        
        PID:4440
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        332⤵
        
        PID:4828
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        331⤵
        
        PID:3556
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        330⤵
        
        PID:3716
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        329⤵
        
        PID:1692
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        328⤵
        
        PID:3964
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        327⤵
        
        PID:4008
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        326⤵
        
        PID:2756
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        325⤵
        
        PID:3404
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        324⤵
        
        PID:3820
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        323⤵
        
        PID:1568
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        322⤵
        
        PID:2580
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        321⤵
        
        PID:4856
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        320⤵
        
        PID:2076
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        319⤵
        
        PID:1324
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        318⤵
        
        PID:3444
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        317⤵
        
        PID:2692
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        316⤵
        
        PID:544
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        315⤵
        
        PID:2956
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        314⤵
        
        PID:2332
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        313⤵
        
        PID:4140
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        312⤵
        
        PID:2928
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        311⤵
        
        PID:1692
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        310⤵
        
        PID:4260
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        309⤵
        
        PID:4724
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        308⤵
        
        PID:4192
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        307⤵
        
        PID:3428
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        306⤵
        
        PID:1376
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        305⤵
        
        PID:4508
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        304⤵
        
        PID:3316
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        303⤵
        
        PID:2000
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        302⤵
        
        PID:1944
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        301⤵
        
        PID:1912
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        300⤵
        
        PID:4832
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        299⤵
        
        PID:3184
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        298⤵
        
        PID:1172
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        297⤵
        
        PID:4288
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        296⤵
        
        PID:3344
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        295⤵
        
        PID:1532
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        294⤵
        
        PID:4900
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        293⤵
        
        PID:4340
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        292⤵
        
        PID:3764
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        291⤵
        
        PID:2756
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        290⤵
        
        PID:2248
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        289⤵
        
        PID:2672
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        288⤵
        
        PID:3748
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        287⤵
        
        PID:4420
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        286⤵
        
        PID:3700
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        285⤵
        
        PID:776
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        284⤵
        
        PID:4604
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        283⤵
        
        PID:1900
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        282⤵
        
        PID:3592
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        281⤵
        
        PID:1228
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        280⤵
        
        PID:2800
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        279⤵
        
        PID:2332
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        278⤵
        
        PID:2568
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        277⤵
        
        PID:3328
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        276⤵
        
        PID:4540
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        275⤵
        
        PID:2108
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        274⤵
        
        PID:3068
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        273⤵
        
        PID:4192
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        272⤵
        
        PID:3428
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        271⤵
        
        PID:2672
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        270⤵
        
        PID:2400
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        269⤵
        
        PID:4240
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        268⤵
        
        PID:3928
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        267⤵
        
        PID:2000
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        266⤵
        
        PID:4244
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        265⤵
        
        PID:1900
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        264⤵
        
        PID:4524
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        263⤵
        
        PID:232
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        262⤵
        
        PID:1864
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        261⤵
        
        PID:3368
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        260⤵
        
        PID:4140
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        259⤵
        
        PID:3328
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        258⤵
        
        PID:244
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        257⤵
        
        PID:2108
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        256⤵
        
        PID:1444
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        255⤵
        
        PID:5076
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        254⤵
        
        PID:1376
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        253⤵
        
        PID:4844
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        252⤵
        
        PID:2400
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        251⤵
        
        PID:416
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        250⤵
        
        PID:3260
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        249⤵
        
        PID:2796
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        248⤵
        
        PID:2248
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        247⤵
        
        PID:664
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        246⤵
        
        PID:692
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        245⤵
        
        PID:4472
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        244⤵
        
        PID:2908
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        243⤵
        
        PID:3344
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        242⤵
        
        PID:1056
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        241⤵
        
        PID:1692
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        240⤵
        
        PID:1196
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        239⤵
        
        PID:4484
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        238⤵
        
        PID:3376
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        237⤵
        
        PID:2964
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        236⤵
        
        PID:1076
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        235⤵
        
        PID:3724
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        234⤵
        System Location Discovery: System Language Discovery
        
        PID:3316
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        233⤵
        
        PID:3040
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        232⤵
        
        PID:2396
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        231⤵
        
        PID:396
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        230⤵
        
        PID:3248
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        229⤵
        
        PID:3136
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        228⤵
        
        PID:4836
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        227⤵
        
        PID:1680
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        226⤵
        
        PID:2652
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        225⤵
        
        PID:3024
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        224⤵
        
        PID:3348
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        223⤵
        
        PID:876
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        222⤵
        
        PID:2828
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        221⤵
        
        PID:2756
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        220⤵
        
        PID:3684
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        219⤵
        
        PID:3032
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        218⤵
        
        PID:964
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        217⤵
        
        PID:2512
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        216⤵
        
        PID:4312
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        215⤵
        
        PID:3040
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        214⤵
        
        PID:2000
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        213⤵
        
        PID:4080
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        212⤵
        
        PID:4372
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        211⤵
        
        PID:4832
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        210⤵
        
        PID:4848
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        209⤵
        
        PID:5016
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        208⤵
        
        PID:32
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        207⤵
        
        PID:4624
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        206⤵
        
        PID:2516
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        205⤵
        
        PID:4392
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        204⤵
        
        PID:3888
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        203⤵
        
        PID:4320
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        202⤵
        
        PID:4228
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        201⤵
        
        PID:3076
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        200⤵
        System Location Discovery: System Language Discovery
        
        PID:964
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        199⤵
        
        PID:560
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        198⤵
        
        PID:4856
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        197⤵
        
        PID:2016
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        196⤵
        
        PID:2000
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        195⤵
        
        PID:744
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        194⤵
        
        PID:4372
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        193⤵
        
        PID:4828
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        192⤵
        
        PID:4848
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        191⤵
        
        PID:5016
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        190⤵
        
        PID:240
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        189⤵
        
        PID:4624
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        188⤵
        
        PID:3348
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        187⤵
        
        PID:3132
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        186⤵
        
        PID:3888
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        185⤵
        
        PID:4320
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        184⤵
        
        PID:4488
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        183⤵
        
        PID:4068
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        182⤵
        
        PID:3924
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        181⤵
        
        PID:4976
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        180⤵
        
        PID:2348
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        179⤵
        
        PID:1788
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        178⤵
        
        PID:348
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        177⤵
        
        PID:744
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        176⤵
        
        PID:1584
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        175⤵
        
        PID:836
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        174⤵
        
        PID:4852
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        173⤵
        
        PID:2936
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        172⤵
        
        PID:2296
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        171⤵
        
        PID:1844
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        170⤵
        
        PID:3392
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        169⤵
        
        PID:1452
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        168⤵
        
        PID:2708
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        167⤵
        
        PID:1376
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        166⤵
        
        PID:4944
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        165⤵
        
        PID:3972
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        164⤵
        
        PID:444
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        163⤵
        
        PID:3000
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        162⤵
        
        PID:3720
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        161⤵
        
        PID:3488
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        160⤵
        
        PID:712
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        159⤵
        
        PID:3248
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        158⤵
        
        PID:3016
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        157⤵
        
        PID:1808
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        156⤵
        System Location Discovery: System Language Discovery
        
        PID:2704
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        155⤵
        
        PID:2936
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        154⤵
        
        PID:1668
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        153⤵
        
        PID:2916
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        152⤵
        
        PID:3392
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        151⤵
        
        PID:4460
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        150⤵
        
        PID:2656
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        149⤵
        
        PID:1444
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        148⤵
        
        PID:4944
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        147⤵
        
        PID:3972
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        146⤵
        
        PID:1632
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        145⤵
        
        PID:4036
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        144⤵
        
        PID:1536
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        143⤵
        
        PID:2004
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        142⤵
        
        PID:1324
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        141⤵
        
        PID:4368
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        140⤵
        
        PID:1564
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        139⤵
        
        PID:4232
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        138⤵
        
        PID:2652
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        137⤵
        
        PID:2936
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        136⤵
        
        PID:1668
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        135⤵
        
        PID:1100
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        134⤵
        
        PID:3208
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        133⤵
        
        PID:4892
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        132⤵
        
        PID:3044
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        131⤵
        
        PID:5104
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        130⤵
        
        PID:1376
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        129⤵
        
        PID:1640
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        128⤵
        
        PID:2400
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        127⤵
        
        PID:2348
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        126⤵
        
        PID:3876
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        125⤵
        
        PID:2100
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        124⤵
        
        PID:3888
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        123⤵
        
        PID:3020
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        122⤵
        
        PID:4224
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        121⤵
        
        PID:4472
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        120⤵
        
        PID:2652
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        119⤵
        
        PID:4140
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        118⤵
        
        PID:240
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        117⤵
        
        PID:2828
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        116⤵
        
        PID:2108
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        115⤵
        
        PID:2408
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        114⤵
        
        PID:3044
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        113⤵
        
        PID:4072
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        112⤵
        
        PID:3924
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        111⤵
        
        PID:1640
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        110⤵
        
        PID:4860
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        109⤵
        
        PID:4080
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        108⤵
        
        PID:776
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        107⤵
        
        PID:4592
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        106⤵
        
        PID:1916
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        105⤵
        
        PID:3520
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        104⤵
        
        PID:4224
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        103⤵
        
        PID:1076
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        102⤵
        
        PID:2304
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        101⤵
        
        PID:1056
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        100⤵
        
        PID:1896
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        99⤵
        
        PID:1784
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        98⤵
        
        PID:2108
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        97⤵
        
        PID:4092
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        96⤵
        
        PID:2084
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        95⤵
        
        PID:916
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        94⤵
        
        PID:4968
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        93⤵
        
        PID:1640
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        92⤵
        
        PID:3308
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        91⤵
        
        PID:1708
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        90⤵
        
        PID:2012
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        89⤵
        
        PID:4592
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        88⤵
        
        PID:2100
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        87⤵
        
        PID:716
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        86⤵
        
        PID:3368
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        85⤵
        
        PID:3852
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        84⤵
        
        PID:4464
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        83⤵
        
        PID:1056
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        82⤵
        
        PID:1896
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        81⤵
        
        PID:2676
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        80⤵
        
        PID:1016
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        79⤵
        
        PID:3184
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        78⤵
        
        PID:1676
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        77⤵
        
        PID:4936
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        76⤵
        
        PID:964
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        75⤵
        
        PID:2264
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        74⤵
        
        PID:416
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        73⤵
        
        PID:1708
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        72⤵
        
        PID:1836
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        71⤵
        
        PID:648
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        70⤵
        
        PID:3556
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        69⤵
        
        PID:4780
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        68⤵
        
        PID:740
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        67⤵
        
        PID:3372
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        66⤵
        
        PID:2804
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        65⤵
        Executes dropped EXE
        
        PID:2216
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        64⤵
        Executes dropped EXE
        
        PID:976
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        63⤵
        Executes dropped EXE
        
        PID:2108
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        62⤵
        Executes dropped EXE
        
        PID:3820
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        61⤵
        Executes dropped EXE
        
        PID:4500
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        60⤵
        Executes dropped EXE
        
        PID:4232
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        59⤵
        Executes dropped EXE
        
        PID:3868
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        58⤵
        Executes dropped EXE
        
        PID:4028
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        57⤵
        Executes dropped EXE
        
        PID:4268
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        56⤵
        Executes dropped EXE
        
        PID:1612
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        55⤵
        Executes dropped EXE
        
        PID:4908
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        54⤵
        Executes dropped EXE
        
        PID:3464
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        53⤵
        Executes dropped EXE
        
        PID:2316
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        52⤵
        Executes dropped EXE
        
        PID:3292
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        51⤵
        Executes dropped EXE
        
        PID:2688
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        50⤵
        Executes dropped EXE
        
        PID:5004
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        49⤵
        Executes dropped EXE
        
        PID:3536
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        48⤵
        Executes dropped EXE
        
        PID:2712
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        47⤵
        Executes dropped EXE
        
        PID:4628
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        46⤵
        Executes dropped EXE
        
        PID:3076
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        45⤵
        Executes dropped EXE
        
        PID:5108
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        44⤵
        Executes dropped EXE
        
        PID:1116
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        43⤵
        Executes dropped EXE
        
        PID:3724
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        42⤵
        Executes dropped EXE
        
        PID:1320
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        41⤵
        Executes dropped EXE
        
        PID:4148
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        40⤵
        Executes dropped EXE
        
        PID:3260
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        39⤵
        Executes dropped EXE
        
        PID:2328
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        38⤵
        Executes dropped EXE
        
        PID:1912
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        37⤵
        Executes dropped EXE
        
        PID:844
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        36⤵
        Executes dropped EXE
        
        PID:924
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        35⤵
        Executes dropped EXE
        
        PID:4140
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        34⤵
        Executes dropped EXE
        
        PID:4636
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        33⤵
        Executes dropped EXE
        
        PID:3392
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        32⤵
        Executes dropped EXE
        
        PID:4612
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        31⤵
        Executes dropped EXE
        
        PID:2780
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        30⤵
        Executes dropped EXE
        
        PID:3820
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        29⤵
        Executes dropped EXE
        
        PID:1688
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        28⤵
        Executes dropped EXE
        
        PID:3316
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        27⤵
        Executes dropped EXE
        
        PID:4280
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        26⤵
        Executes dropped EXE
        
        PID:2076
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        25⤵
        Executes dropped EXE
        
        PID:3400
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        24⤵
        Executes dropped EXE
        
        PID:2152
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        23⤵
        Executes dropped EXE
        
        PID:2328
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        22⤵
        Executes dropped EXE
        
        PID:2332
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        21⤵
        Executes dropped EXE
        
        PID:1904
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        20⤵
        Executes dropped EXE
        
        PID:4780
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        19⤵
        Executes dropped EXE
        
        PID:4296
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        18⤵
        Executes dropped EXE
        
        PID:4636
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        17⤵
        Executes dropped EXE
        Suspicious behavior: EnumeratesProcesses
        
        PID:1784
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        16⤵
        Executes dropped EXE
        Suspicious behavior: EnumeratesProcesses
        
        PID:1388
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        15⤵
        Executes dropped EXE
        Suspicious behavior: EnumeratesProcesses
        
        PID:1596
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        14⤵
        Executes dropped EXE
        Suspicious behavior: EnumeratesProcesses
        
        PID:3208
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        13⤵
        Executes dropped EXE
        Suspicious behavior: EnumeratesProcesses
        
        PID:4072
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        12⤵
        Executes dropped EXE
        Suspicious behavior: EnumeratesProcesses
        
        PID:2920
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        11⤵
        Executes dropped EXE
        Suspicious behavior: EnumeratesProcesses
        
        PID:1448
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        10⤵
        Executes dropped EXE
        Suspicious behavior: EnumeratesProcesses
        
        PID:4128
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        9⤵
        Executes dropped EXE
        Suspicious behavior: EnumeratesProcesses
        
        PID:3260
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        8⤵
        Executes dropped EXE
        Suspicious behavior: EnumeratesProcesses
        
        PID:1616
        
        C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        7⤵
        Executes dropped EXE
        Suspicious behavior: EnumeratesProcesses
        
        PID:3016
      - C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        6⤵
        Executes dropped EXE
        Suspicious behavior: EnumeratesProcesses
        
        PID:4832
    - - C:\Users\Admin\AppData\Local\Temp\server.exe
        
        "C:\Users\Admin\AppData\Local\Temp\server.exe"
        5⤵
        Executes dropped EXE
        Suspicious behavior: EnumeratesProcesses
        
        PID:924
  - - C:\Users\Admin\AppData\Local\Temp\server.exe
      "C:\Users\Admin\AppData\Local\Temp\server.exe"
      4⤵
      Executes dropped EXE
      Suspicious behavior: EnumeratesProcesses
      PID:4140
- - C:\Users\Admin\AppData\Local\Temp\server.exe
    "C:\Users\Admin\AppData\Local\Temp\server.exe"
    3⤵
    - Executes dropped EXE
    - Suspicious behavior: EnumeratesProcesses
    PID:4464
- C:\Users\Admin\AppData\Local\Temp\server.exe
  "C:\Users\Admin\AppData\Local\Temp\server.exe"
  2⤵
  - Executes dropped EXE
  - Adds Run key to start application
  - Drops file in Windows directory
  - Suspicious behavior: EnumeratesProcesses
  PID:5064

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\server.exe

Filesize
192KB

MD5
79f9d1af3af73660bb33682aad5f2329

SHA1
d02d2d83b9887bfc12e3a3e47e6a700e68406e6b

SHA256
bdea8fddd42a2a8a0130dbfa5e606fd4bcd36a258e748bb5a4ec48223bdb9891

SHA512
11f186b65f13fd7f0ac2af2b527f57d1a7d0ac8bda16bb5edcc1cb991595370dd6832aebe292009db5d35ee0441eb95bb80915ddff158b1cc2256bf18cc4a23b

Download Submit
memory/924-49-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/924-50-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/924-52-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/3016-73-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/3016-74-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/3016-76-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/4140-38-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/4140-37-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/4140-40-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/4464-28-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/4832-64-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/4832-61-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/4832-62-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/5064-13-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/5064-17-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/5064-20-0x00000000007C0000-0x0000000000800000-memory.dmp

Filesize
256KB

Download
memory/5064-12-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/5064-15-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/5064-14-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download
memory/5064-852-0x0000000010000000-0x0000000010121000-memory.dmp

Filesize
1.1MB

Download