cmd.exe "C:\Windows\System32\cmd.exe" /c PowerShell.exe -windowstyle hidden powershell -c C:\TheDream\RootDesign.exe
2708powershell.exe "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -c C:\TheDream\RootDesign.exe
2916RootDesign.exe "C:\TheDream\RootDesign.exe"
1528explorer.exe C:\Windows\Explorer.EXE
1452