f2d70f385f254685b97214891d89a6a5f424079b1cc997f556758c3d83a14a06

Analysis

max time kernel
140s
max time network
146s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
25/05/2024, 00:51

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll
Size

4KB
MD5

70586d91ad38bc0d79776833beb5ddc0
SHA1

49657b47f26879c4e48bd6df9473c84b913cd943
SHA256

f2d70f385f254685b97214891d89a6a5f424079b1cc997f556758c3d83a14a06
SHA512

c04352806f0d12e17679cbb3e3e05b10374039c32421136c2ad0d30d97af975b209759f24fd526169404057198dccd607635b8a06e30898ab1d5d76385ccc0aa

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 332 wrote to memory of 4528	332	rundll32.exe	92
PID 332 wrote to memory of 4528	332	rundll32.exe	92
PID 332 wrote to memory of 4528	332	rundll32.exe	92
PID 4528 wrote to memory of 3984	4528	rundll32.exe	93
PID 4528 wrote to memory of 3984	4528	rundll32.exe	93
PID 4528 wrote to memory of 3984	4528	rundll32.exe	93
PID 3984 wrote to memory of 2564	3984	rundll32.exe	94
PID 3984 wrote to memory of 2564	3984	rundll32.exe	94
PID 3984 wrote to memory of 2564	3984	rundll32.exe	94
PID 2564 wrote to memory of 768	2564	rundll32.exe	95
PID 2564 wrote to memory of 768	2564	rundll32.exe	95
PID 2564 wrote to memory of 768	2564	rundll32.exe	95
PID 768 wrote to memory of 3528	768	rundll32.exe	96
PID 768 wrote to memory of 3528	768	rundll32.exe	96
PID 768 wrote to memory of 3528	768	rundll32.exe	96
PID 3528 wrote to memory of 4512	3528	rundll32.exe	97
PID 3528 wrote to memory of 4512	3528	rundll32.exe	97
PID 3528 wrote to memory of 4512	3528	rundll32.exe	97
PID 4512 wrote to memory of 4488	4512	rundll32.exe	98
PID 4512 wrote to memory of 4488	4512	rundll32.exe	98
PID 4512 wrote to memory of 4488	4512	rundll32.exe	98
PID 4488 wrote to memory of 4340	4488	rundll32.exe	99
PID 4488 wrote to memory of 4340	4488	rundll32.exe	99
PID 4488 wrote to memory of 4340	4488	rundll32.exe	99
PID 4340 wrote to memory of 3604	4340	rundll32.exe	100
PID 4340 wrote to memory of 3604	4340	rundll32.exe	100
PID 4340 wrote to memory of 3604	4340	rundll32.exe	100
PID 3604 wrote to memory of 3768	3604	rundll32.exe	101
PID 3604 wrote to memory of 3768	3604	rundll32.exe	101
PID 3604 wrote to memory of 3768	3604	rundll32.exe	101
PID 3768 wrote to memory of 2324	3768	rundll32.exe	102
PID 3768 wrote to memory of 2324	3768	rundll32.exe	102
PID 3768 wrote to memory of 2324	3768	rundll32.exe	102
PID 2324 wrote to memory of 2188	2324	rundll32.exe	103
PID 2324 wrote to memory of 2188	2324	rundll32.exe	103
PID 2324 wrote to memory of 2188	2324	rundll32.exe	103
PID 2188 wrote to memory of 4492	2188	rundll32.exe	104
PID 2188 wrote to memory of 4492	2188	rundll32.exe	104
PID 2188 wrote to memory of 4492	2188	rundll32.exe	104
PID 4492 wrote to memory of 4308	4492	rundll32.exe	105
PID 4492 wrote to memory of 4308	4492	rundll32.exe	105
PID 4492 wrote to memory of 4308	4492	rundll32.exe	105
PID 4308 wrote to memory of 3488	4308	rundll32.exe	106
PID 4308 wrote to memory of 3488	4308	rundll32.exe	106
PID 4308 wrote to memory of 3488	4308	rundll32.exe	106
PID 3488 wrote to memory of 1964	3488	rundll32.exe	107
PID 3488 wrote to memory of 1964	3488	rundll32.exe	107
PID 3488 wrote to memory of 1964	3488	rundll32.exe	107
PID 1964 wrote to memory of 2728	1964	rundll32.exe	108
PID 1964 wrote to memory of 2728	1964	rundll32.exe	108
PID 1964 wrote to memory of 2728	1964	rundll32.exe	108
PID 2728 wrote to memory of 4812	2728	rundll32.exe	109
PID 2728 wrote to memory of 4812	2728	rundll32.exe	109
PID 2728 wrote to memory of 4812	2728	rundll32.exe	109
PID 4812 wrote to memory of 3972	4812	rundll32.exe	110
PID 4812 wrote to memory of 3972	4812	rundll32.exe	110
PID 4812 wrote to memory of 3972	4812	rundll32.exe	110
PID 3972 wrote to memory of 3960	3972	rundll32.exe	111
PID 3972 wrote to memory of 3960	3972	rundll32.exe	111
PID 3972 wrote to memory of 3960	3972	rundll32.exe	111
PID 3960 wrote to memory of 2940	3960	rundll32.exe	112
PID 3960 wrote to memory of 2940	3960	rundll32.exe	112
PID 3960 wrote to memory of 2940	3960	rundll32.exe	112
PID 2940 wrote to memory of 2348	2940	rundll32.exe	113

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:332
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:4528
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:3984
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:2564
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:768
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:3528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:4512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:4488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:4340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:3604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:3768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:2324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:2188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:4492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:4308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:3488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:1964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:2728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:4812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:3972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:3960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:2940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        23⤵
        
        PID:2348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        24⤵
        
        PID:3468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        25⤵
        
        PID:2656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        26⤵
        
        PID:4424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        27⤵
        
        PID:4804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        28⤵
        
        PID:740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        29⤵
        
        PID:3180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        30⤵
        
        PID:3964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        31⤵
        
        PID:3908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        32⤵
        
        PID:4360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        33⤵
        
        PID:2108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        34⤵
        
        PID:1436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        35⤵
        
        PID:4348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        36⤵
        
        PID:1688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        37⤵
        
        PID:4232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        38⤵
        
        PID:3572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        39⤵
        
        PID:2856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        40⤵
        
        PID:4904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        41⤵
        
        PID:2724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        42⤵
        
        PID:4924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        43⤵
        
        PID:1036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        44⤵
        
        PID:2716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        45⤵
        
        PID:2608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        46⤵
        
        PID:1208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        47⤵
        
        PID:3864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        48⤵
        
        PID:4632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        49⤵
        
        PID:2480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        50⤵
        
        PID:2568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        51⤵
        
        PID:3508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        52⤵
        
        PID:3820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        53⤵
        
        PID:1768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        54⤵
        
        PID:4032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        55⤵
        
        PID:2044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        56⤵
        
        PID:3832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        57⤵
        
        PID:3904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        58⤵
        
        PID:3884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        59⤵
        
        PID:4968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        60⤵
        
        PID:4680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        61⤵
        
        PID:4356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        62⤵
        
        PID:3092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        63⤵
        
        PID:1860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        64⤵
        
        PID:2580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        65⤵
        
        PID:212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        66⤵
        
        PID:2204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        67⤵
        
        PID:3840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        68⤵
        
        PID:4496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        69⤵
        
        PID:3164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        70⤵
        
        PID:3948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        71⤵
        
        PID:2780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        72⤵
        
        PID:672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        73⤵
        
        PID:3640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        74⤵
        
        PID:1072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        75⤵
        
        PID:1260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        76⤵
        
        PID:4132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        77⤵
        
        PID:4212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        78⤵
        
        PID:4320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        79⤵
        
        PID:2816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        80⤵
        
        PID:4292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        81⤵
        
        PID:3276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        82⤵
        
        PID:3220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        83⤵
        
        PID:4656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        84⤵
        
        PID:2288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        85⤵
        
        PID:1684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        86⤵
        
        PID:3044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        87⤵
        
        PID:2896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        88⤵
        
        PID:5136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        89⤵
        
        PID:5148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        90⤵
        
        PID:5160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        91⤵
        
        PID:5176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        92⤵
        
        PID:5188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        93⤵
        
        PID:5200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        94⤵
        
        PID:5212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        95⤵
        
        PID:5224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        96⤵
        
        PID:5240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        97⤵
        
        PID:5252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        98⤵
        
        PID:5268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        99⤵
        
        PID:5288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        100⤵
        
        PID:5300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        101⤵
        
        PID:5316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        102⤵
        
        PID:5332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        103⤵
        
        PID:5344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        104⤵
        
        PID:5356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        105⤵
        
        PID:5372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        106⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        107⤵
        
        PID:5396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        108⤵
        
        PID:5408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        109⤵
        
        PID:5424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        110⤵
        
        PID:5440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        111⤵
        
        PID:5452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        112⤵
        
        PID:5464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        113⤵
        
        PID:5476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        114⤵
        
        PID:5488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        115⤵
        
        PID:5504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        116⤵
        
        PID:5516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        117⤵
        
        PID:5528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        118⤵
        
        PID:5540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        119⤵
        
        PID:5552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        120⤵
        
        PID:5564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        121⤵
        
        PID:5576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        122⤵
        
        PID:5592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        123⤵
        
        PID:5604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        124⤵
        
        PID:5624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        125⤵
        
        PID:5636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        126⤵
        
        PID:5648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        127⤵
        
        PID:5660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        128⤵
        
        PID:5672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        129⤵
        
        PID:5684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        130⤵
        
        PID:5696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        131⤵
        
        PID:5712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        132⤵
        
        PID:5724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        133⤵
        
        PID:5736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        134⤵
        
        PID:5748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        135⤵
        
        PID:5760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        136⤵
        
        PID:5772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        137⤵
        
        PID:5784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        138⤵
        
        PID:5800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        139⤵
        
        PID:5812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        140⤵
        
        PID:5824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        141⤵
        
        PID:5840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        142⤵
        
        PID:5856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        143⤵
        
        PID:5868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        144⤵
        
        PID:5884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        145⤵
        
        PID:5896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        146⤵
        
        PID:5908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        147⤵
        
        PID:5920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        148⤵
        
        PID:5932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        149⤵
        
        PID:5944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        150⤵
        
        PID:5956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        151⤵
        
        PID:5968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        152⤵
        
        PID:5980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        153⤵
        
        PID:5992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        154⤵
        
        PID:6004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        155⤵
        
        PID:6020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        156⤵
        
        PID:6036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        157⤵
        
        PID:6048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        158⤵
        
        PID:6068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        159⤵
        
        PID:6080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        160⤵
        
        PID:6104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        161⤵
        
        PID:6124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        162⤵
        
        PID:6140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        163⤵
        
        PID:5364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        164⤵
        
        PID:6088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        165⤵
        
        PID:6148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        166⤵
        
        PID:6160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        167⤵
        
        PID:6172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        168⤵
        
        PID:6188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        169⤵
        
        PID:6200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        170⤵
        
        PID:6212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        171⤵
        
        PID:6224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        172⤵
        
        PID:6236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        173⤵
        
        PID:6252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        174⤵
        
        PID:6264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        175⤵
        
        PID:6276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        176⤵
        
        PID:6296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        177⤵
        
        PID:6308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        178⤵
        
        PID:6324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        179⤵
        
        PID:6336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        180⤵
        
        PID:6352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        181⤵
        
        PID:6364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        182⤵
        
        PID:6376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        183⤵
        
        PID:6392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        184⤵
        
        PID:6404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        185⤵
        
        PID:6432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        186⤵
        
        PID:6448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        187⤵
        
        PID:6460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        188⤵
        
        PID:6472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        189⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        190⤵
        
        PID:6500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        191⤵
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        192⤵
        
        PID:6524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        193⤵
        
        PID:6540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        194⤵
        
        PID:6552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        195⤵
        
        PID:6564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        196⤵
        
        PID:6580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        197⤵
        
        PID:6592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        198⤵
        
        PID:6608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        199⤵
        
        PID:6624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        200⤵
        
        PID:6660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        201⤵
        
        PID:6672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        202⤵
        
        PID:6684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        203⤵
        
        PID:6700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        204⤵
        
        PID:6716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        205⤵
        
        PID:6732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        206⤵
        
        PID:6752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        207⤵
        
        PID:6768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        208⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        209⤵
        
        PID:6820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        210⤵
        
        PID:6860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        211⤵
        
        PID:6872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        212⤵
        
        PID:6884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        213⤵
        
        PID:6900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        214⤵
        
        PID:6916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        215⤵
        
        PID:6936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        216⤵
        
        PID:6952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        217⤵
        
        PID:6968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        218⤵
        
        PID:6988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        219⤵
        
        PID:7004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        220⤵
        
        PID:7020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        221⤵
        
        PID:7032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        222⤵
        
        PID:7048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        223⤵
        
        PID:7060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        224⤵
        
        PID:7084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        225⤵
        
        PID:7104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        226⤵
        
        PID:7124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        227⤵
        
        PID:7136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        228⤵
        
        PID:7152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        229⤵
        
        PID:7164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        230⤵
        
        PID:6344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        231⤵
        
        PID:6812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        232⤵
        
        PID:3292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        233⤵
        
        PID:1468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        234⤵
        
        PID:7184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        235⤵
        
        PID:7200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        236⤵
        
        PID:7216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        237⤵
        
        PID:7228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        238⤵
        
        PID:7248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        239⤵
        
        PID:7272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        240⤵
        
        PID:7284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        241⤵
        
        PID:7296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        242⤵
        
        PID:7308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        243⤵
        
        PID:7324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        244⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        245⤵
        
        PID:7348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        246⤵
        
        PID:7360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        247⤵
        
        PID:7376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        248⤵
        
        PID:7388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        249⤵
        
        PID:7400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        250⤵
        
        PID:7416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        251⤵
        
        PID:7436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        252⤵
        
        PID:7448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        253⤵
        
        PID:7464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        254⤵
        
        PID:7480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        255⤵
        
        PID:7496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        256⤵
        
        PID:7512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        257⤵
        
        PID:7552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        258⤵
        
        PID:7588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        259⤵
        
        PID:7600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        260⤵
        
        PID:7616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        261⤵
        
        PID:7628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        262⤵
        
        PID:7676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        263⤵
        
        PID:7724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        264⤵
        
        PID:7756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        265⤵
        
        PID:7772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        266⤵
        
        PID:7788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        267⤵
        
        PID:7808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        268⤵
        
        PID:7820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        269⤵
        
        PID:7836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        270⤵
        
        PID:7856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        271⤵
        
        PID:7876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        272⤵
        
        PID:7892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        273⤵
        
        PID:7916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        274⤵
        
        PID:7936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        275⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        276⤵
        
        PID:7972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        277⤵
        
        PID:7992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        278⤵
        
        PID:8004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        279⤵
        
        PID:8016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        280⤵
        
        PID:8032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        281⤵
        
        PID:8044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        282⤵
        
        PID:8056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        283⤵
        
        PID:8068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        284⤵
        
        PID:8080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        285⤵
        
        PID:8100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        286⤵
        
        PID:8112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        287⤵
        
        PID:8132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        288⤵
        
        PID:8144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        289⤵
        
        PID:8160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        290⤵
        
        PID:8176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        291⤵
        
        PID:8188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        292⤵
        
        PID:8196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        293⤵
        
        PID:8208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        294⤵
        
        PID:8220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        295⤵
        
        PID:8240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        296⤵
        
        PID:8252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        297⤵
        
        PID:8264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        298⤵
        
        PID:8276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        299⤵
        
        PID:8288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        300⤵
        
        PID:8300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        301⤵
        
        PID:8316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        302⤵
        
        PID:8332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        303⤵
        
        PID:8352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        304⤵
        
        PID:8372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        305⤵
        
        PID:8396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        306⤵
        
        PID:8428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        307⤵
        
        PID:8440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        308⤵
        
        PID:8452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        309⤵
        
        PID:8468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        310⤵
        
        PID:8480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        311⤵
        
        PID:8492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        312⤵
        
        PID:8508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        313⤵
        
        PID:8520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        314⤵
        
        PID:8532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        315⤵
        
        PID:8548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        316⤵
        
        PID:8560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        317⤵
        
        PID:8572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        318⤵
        
        PID:8584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        319⤵
        
        PID:8596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        320⤵
        
        PID:8608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        321⤵
        
        PID:8624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        322⤵
        
        PID:8636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        323⤵
        
        PID:8652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        324⤵
        
        PID:8664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        325⤵
        
        PID:8680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        326⤵
        
        PID:8696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        327⤵
        
        PID:8708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        328⤵
        
        PID:8720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        329⤵
        
        PID:8732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        330⤵
        
        PID:8752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        331⤵
        
        PID:8764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        332⤵
        
        PID:8780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        333⤵
        
        PID:8796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        334⤵
        
        PID:8808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        335⤵
        
        PID:8820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        336⤵
        
        PID:8836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        337⤵
        
        PID:8848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        338⤵
        
        PID:8860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        339⤵
        
        PID:8876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        340⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        341⤵
        
        PID:8904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        342⤵
        
        PID:8920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        343⤵
        
        PID:8932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        344⤵
        
        PID:8944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        345⤵
        
        PID:8960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        346⤵
        
        PID:8976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        347⤵
        
        PID:8996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        348⤵
        
        PID:9008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        349⤵
        
        PID:9020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        350⤵
        
        PID:9036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        351⤵
        
        PID:9060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        352⤵
        
        PID:9088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        353⤵
        
        PID:9104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        354⤵
        
        PID:9128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        355⤵
        
        PID:9148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        356⤵
        
        PID:9172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        357⤵
        
        PID:8420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        358⤵
        
        PID:9084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        359⤵
        
        PID:9240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        360⤵
        
        PID:9264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        361⤵
        
        PID:9280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        362⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        363⤵
        
        PID:9368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        364⤵
        
        PID:9396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        365⤵
        
        PID:9416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        366⤵
        
        PID:9428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        367⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        368⤵
        
        PID:9476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        369⤵
        
        PID:9492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        370⤵
        
        PID:9512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        371⤵
        
        PID:9528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        372⤵
        
        PID:9544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        373⤵
        
        PID:9556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        374⤵
        
        PID:9580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        375⤵
        
        PID:9592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        376⤵
        
        PID:9608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        377⤵
        
        PID:9624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        378⤵
        
        PID:9640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        379⤵
        
        PID:9652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        380⤵
        
        PID:9668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        381⤵
        
        PID:9684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        382⤵
        
        PID:9696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        383⤵
        
        PID:9712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        384⤵
        
        PID:9732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        385⤵
        
        PID:9756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        386⤵
        
        PID:9776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        387⤵
        
        PID:9796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        388⤵
        
        PID:9812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        389⤵
        
        PID:9832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        390⤵
        
        PID:9848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        391⤵
        
        PID:9864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        392⤵
        
        PID:9880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        393⤵
        
        PID:9900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        394⤵
        
        PID:9912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        395⤵
        
        PID:9928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        396⤵
        
        PID:9948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        397⤵
        
        PID:9960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        398⤵
        
        PID:9976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        399⤵
        
        PID:9988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        400⤵
        
        PID:10004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        401⤵
        
        PID:10024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        402⤵
        
        PID:10044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        403⤵
        
        PID:10064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        404⤵
        
        PID:10084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        405⤵
        
        PID:10100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        406⤵
        
        PID:10112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        407⤵
        
        PID:10128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        408⤵
        
        PID:10144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        409⤵
        
        PID:10160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        410⤵
        
        PID:10180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        411⤵
        
        PID:10192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        412⤵
        
        PID:10208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        413⤵
        
        PID:10224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        414⤵
        
        PID:1192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        415⤵
        
        PID:2592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        416⤵
        
        PID:112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        417⤵
        
        PID:9744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        418⤵
        
        PID:3764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        419⤵
        
        PID:4080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        420⤵
        
        PID:7076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        421⤵
        
        PID:6844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        422⤵
        
        PID:6828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        423⤵
        
        PID:4992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        424⤵
        
        PID:9232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        425⤵
        
        PID:9452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        426⤵
        
        PID:3968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        427⤵
        
        PID:10248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        428⤵
        
        PID:10272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        429⤵
        
        PID:10288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        430⤵
        
        PID:10304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        431⤵
        
        PID:10316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        432⤵
        
        PID:10328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        433⤵
        
        PID:10340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        434⤵
        
        PID:10352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        435⤵
        
        PID:10364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        436⤵
        
        PID:10376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        437⤵
        
        PID:10388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        438⤵
        
        PID:10404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        439⤵
        
        PID:10416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        440⤵
        
        PID:10428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        441⤵
        
        PID:10440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        442⤵
        
        PID:10456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        443⤵
        
        PID:10468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        444⤵
        
        PID:10480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        445⤵
        
        PID:10500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        446⤵
        
        PID:10516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        447⤵
        
        PID:10528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        448⤵
        
        PID:10540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        449⤵
        
        PID:10552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        450⤵
        
        PID:10568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        451⤵
        
        PID:10580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        452⤵
        
        PID:10600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        453⤵
        
        PID:10612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        454⤵
        
        PID:10628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        455⤵
        
        PID:10640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        456⤵
        
        PID:10656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        457⤵
        
        PID:10668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        458⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        459⤵
        
        PID:10692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        460⤵
        
        PID:10704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        461⤵
        
        PID:10716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        462⤵
        
        PID:10728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        463⤵
        
        PID:10740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        464⤵
        
        PID:10760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        465⤵
        
        PID:10772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        466⤵
        
        PID:10784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        467⤵
        
        PID:10800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        468⤵
        
        PID:10812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        469⤵
        
        PID:10824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        470⤵
        
        PID:10844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        471⤵
        
        PID:10856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        472⤵
        
        PID:10872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        473⤵
        
        PID:10884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        474⤵
        
        PID:10896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        475⤵
        
        PID:10912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        476⤵
        
        PID:10924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        477⤵
        
        PID:10940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        478⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        479⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        480⤵
        
        PID:10980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        481⤵
        
        PID:10996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        482⤵
        
        PID:11008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        483⤵
        
        PID:11020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        484⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        485⤵
        
        PID:11044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        486⤵
        
        PID:11056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        487⤵
        
        PID:11072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        488⤵
        
        PID:11084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        489⤵
        
        PID:11096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        490⤵
        
        PID:11112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        491⤵
        
        PID:11124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        492⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        493⤵
        
        PID:11148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        494⤵
        
        PID:11160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        495⤵
        
        PID:11172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        496⤵
        
        PID:11188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        497⤵
        
        PID:11204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        498⤵
        
        PID:11216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        499⤵
        
        PID:11228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        500⤵
        
        PID:11244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        501⤵
        
        PID:11260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        502⤵
        
        PID:10260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        503⤵
        
        PID:4532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        504⤵
        
        PID:4568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        505⤵
        
        PID:4764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        506⤵
        
        PID:4956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        507⤵
        
        PID:1120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        508⤵
        
        PID:10396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        509⤵
        
        PID:3996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        510⤵
        
        PID:4556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        511⤵
        
        PID:5044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        512⤵
        
        PID:4204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        513⤵
        
        PID:2720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        514⤵
        
        PID:2436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        515⤵
        
        PID:4088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        516⤵
        
        PID:1004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        517⤵
        
        PID:2892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        518⤵
        
        PID:4076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        519⤵
        
        PID:2260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        520⤵
        
        PID:1056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        521⤵
        
        PID:2668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        522⤵
        
        PID:4504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        523⤵
        
        PID:4836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        524⤵
        
        PID:3056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        525⤵
        
        PID:4072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        526⤵
        
        PID:4788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        527⤵
        
        PID:4012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        528⤵
        
        PID:2468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        529⤵
        
        PID:4612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        530⤵
        
        PID:1548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        531⤵
        
        PID:2876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        532⤵
        
        PID:2800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        533⤵
        
        PID:3356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        534⤵
        
        PID:564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        535⤵
        
        PID:3808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        536⤵
        
        PID:4136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        537⤵
        
        PID:5020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        538⤵
        
        PID:4428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        539⤵
        
        PID:464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        540⤵
        
        PID:2232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        541⤵
        
        PID:2296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        542⤵
        
        PID:5128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        543⤵
        
        PID:5172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        544⤵
        
        PID:5208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        545⤵
        
        PID:5260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        546⤵
        
        PID:5264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        547⤵
        
        PID:5308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        548⤵
        
        PID:5324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        549⤵
        
        PID:5368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        550⤵
        
        PID:11280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        551⤵
        
        PID:11296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        552⤵
        
        PID:11308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        553⤵
        
        PID:11324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        554⤵
        
        PID:11336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        555⤵
        
        PID:11348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        556⤵
        
        PID:11360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        557⤵
        
        PID:11372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        558⤵
        
        PID:11384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        559⤵
        
        PID:11396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        560⤵
        
        PID:11412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        561⤵
        
        PID:11424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        562⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        563⤵
        
        PID:11448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        564⤵
        
        PID:11460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        565⤵
        
        PID:11472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        566⤵
        
        PID:11488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        567⤵
        
        PID:11500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        568⤵
        
        PID:11516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        569⤵
        
        PID:11528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        570⤵
        
        PID:11544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        571⤵
        
        PID:11556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        572⤵
        
        PID:11572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        573⤵
        
        PID:11584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        574⤵
        
        PID:11600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        575⤵
        
        PID:11620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        576⤵
        
        PID:11664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        577⤵
        
        PID:11684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        578⤵
        
        PID:11700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        579⤵
        
        PID:11712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        580⤵
        
        PID:11724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        581⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        582⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        583⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        584⤵
        
        PID:11780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        585⤵
        
        PID:11792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        586⤵
        
        PID:11808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        587⤵
        
        PID:11824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        588⤵
        
        PID:11840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        589⤵
        
        PID:11852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        590⤵
        
        PID:11864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        591⤵
        
        PID:11876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        592⤵
        
        PID:11888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        593⤵
        
        PID:11908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        594⤵
        
        PID:11920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        595⤵
        
        PID:11936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        596⤵
        
        PID:11948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        597⤵
        
        PID:11968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        598⤵
        
        PID:11980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        599⤵
        
        PID:11992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        600⤵
        
        PID:12004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        601⤵
        
        PID:12016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        602⤵
        
        PID:12028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        603⤵
        
        PID:12044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        604⤵
        
        PID:12064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        605⤵
        
        PID:12080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        606⤵
        
        PID:12092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        607⤵
        
        PID:12104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        608⤵
        
        PID:12120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        609⤵
        
        PID:12132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        610⤵
        
        PID:12144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        611⤵
        
        PID:12156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        612⤵
        
        PID:12168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        613⤵
        
        PID:12184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        614⤵
        
        PID:12200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        615⤵
        
        PID:12216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        616⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        617⤵
        
        PID:12240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        618⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        619⤵
        
        PID:12268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        620⤵
        
        PID:12284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        621⤵
        
        PID:3472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        622⤵
        
        PID:5432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        623⤵
        
        PID:2680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        624⤵
        
        PID:5460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        625⤵
        
        PID:4200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        626⤵
        
        PID:5512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        627⤵
        
        PID:5548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        628⤵
        
        PID:5588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        629⤵
        
        PID:7652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        630⤵
        
        PID:4864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        631⤵
        
        PID:5656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        632⤵
        
        PID:5692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        633⤵
        
        PID:5720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        634⤵
        
        PID:5756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        635⤵
        
        PID:5780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        636⤵
        
        PID:5820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        637⤵
        
        PID:5880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        638⤵
        
        PID:5892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        639⤵
        
        PID:1136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        640⤵
        
        PID:5952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        641⤵
        
        PID:5988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        642⤵
        
        PID:6032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        643⤵
        
        PID:6060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        644⤵
        
        PID:6100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        645⤵
        
        PID:1544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        646⤵
        
        PID:6156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        647⤵
        
        PID:6180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        648⤵
        
        PID:6220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        649⤵
        
        PID:6244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        650⤵
        
        PID:6284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        651⤵
        
        PID:6288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        652⤵
        
        PID:6320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        653⤵
        
        PID:6348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        654⤵
        
        PID:6384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        655⤵
        
        PID:6444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        656⤵
        
        PID:6456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        657⤵
        
        PID:4704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        658⤵
        
        PID:6496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        659⤵
        
        PID:6532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        660⤵
        
        PID:6600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        661⤵
        
        PID:6620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        662⤵
        
        PID:6680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        663⤵
        
        PID:6724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        664⤵
        
        PID:6740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        665⤵
        
        PID:6784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        666⤵
        
        PID:6804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        667⤵
        
        PID:6076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        668⤵
        
        PID:6912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        669⤵
        
        PID:6948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        670⤵
        
        PID:6960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        671⤵
        
        PID:6996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        672⤵
        
        PID:7028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        673⤵
        
        PID:7072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        674⤵
        
        PID:7112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        675⤵
        
        PID:7132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        676⤵
        
        PID:7160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        677⤵
        
        PID:6116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        678⤵
        
        PID:12300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        679⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        680⤵
        
        PID:12324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        681⤵
        
        PID:12340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        682⤵
        
        PID:12352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        683⤵
        
        PID:12376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        684⤵
        
        PID:12388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        685⤵
        
        PID:12400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        686⤵
        
        PID:12412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        687⤵
        
        PID:12424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        688⤵
        
        PID:12436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        689⤵
        
        PID:12448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        690⤵
        
        PID:12460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        691⤵
        
        PID:12480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        692⤵
        
        PID:12492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        693⤵
        
        PID:12504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        694⤵
        
        PID:12516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        695⤵
        
        PID:12528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        696⤵
        
        PID:12544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        697⤵
        
        PID:12556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        698⤵
        
        PID:12572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        699⤵
        
        PID:12588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        700⤵
        
        PID:12604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        701⤵
        
        PID:12616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        702⤵
        
        PID:12632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        703⤵
        
        PID:12644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        704⤵
        
        PID:12656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        705⤵
        
        PID:12672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        706⤵
        
        PID:12684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        707⤵
        
        PID:12696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        708⤵
        
        PID:12712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        709⤵
        
        PID:12724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        710⤵
        
        PID:12740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        711⤵
        
        PID:12752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        712⤵
        
        PID:12764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        713⤵
        
        PID:12776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        714⤵
        
        PID:12788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        715⤵
        
        PID:12800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        716⤵
        
        PID:12812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        717⤵
        
        PID:12828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        718⤵
        
        PID:12844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        719⤵
        
        PID:12856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        720⤵
        
        PID:12868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        721⤵
        
        PID:12880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        722⤵
        
        PID:12892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        723⤵
        
        PID:12904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        724⤵
        
        PID:12916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        725⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        726⤵
        
        PID:12944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        727⤵
        
        PID:12956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        728⤵
        
        PID:12976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        729⤵
        
        PID:12988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        730⤵
        
        PID:13000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        731⤵
        
        PID:13012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        732⤵
        
        PID:13024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        733⤵
        
        PID:13036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        734⤵
        
        PID:13048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        735⤵
        
        PID:13060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        736⤵
        
        PID:13080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        737⤵
        
        PID:13092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        738⤵
        
        PID:13104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        739⤵
        
        PID:13120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        740⤵
        
        PID:13132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        741⤵
        
        PID:13144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        742⤵
        
        PID:13160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        743⤵
        
        PID:13172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        744⤵
        
        PID:13184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        745⤵
        
        PID:13196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        746⤵
        
        PID:13208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        747⤵
        
        PID:13220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        748⤵
        
        PID:13232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        749⤵
        
        PID:13248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        750⤵
        
        PID:13260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        751⤵
        
        PID:13276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        752⤵
        
        PID:13288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        753⤵
        
        PID:13304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        754⤵
        
        PID:7176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        755⤵
        
        PID:7212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        756⤵
        
        PID:7280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        757⤵
        
        PID:7320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        758⤵
        
        PID:7344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        759⤵
        
        PID:7368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        760⤵
        
        PID:7408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        761⤵
        
        PID:7412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        762⤵
        
        PID:7456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        763⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        764⤵
        
        PID:7520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        765⤵
        
        PID:7584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        766⤵
        
        PID:7612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        767⤵
        
        PID:7684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        768⤵
        
        PID:7752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        769⤵
        
        PID:7784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        770⤵
        
        PID:7828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        771⤵
        
        PID:7832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        772⤵
        
        PID:12600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        773⤵
        
        PID:7888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        774⤵
        
        PID:7932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        775⤵
        
        PID:7968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        776⤵
        
        PID:7984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        777⤵
        
        PID:8028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        778⤵
        
        PID:8064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        779⤵
        
        PID:8096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        780⤵
        
        PID:8140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        781⤵
        
        PID:8156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        782⤵
        
        PID:4208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        783⤵
        
        PID:7488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        784⤵
        
        PID:8232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        785⤵
        
        PID:8272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        786⤵
        
        PID:8308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        787⤵
        
        PID:8324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        788⤵
        
        PID:8364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        789⤵
        
        PID:8424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        790⤵
        
        PID:8448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        791⤵
        
        PID:8504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        792⤵
        
        PID:8540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        793⤵
        
        PID:8604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        794⤵
        
        PID:8632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        795⤵
        
        PID:928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        796⤵
        
        PID:8692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        797⤵
        
        PID:8740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        798⤵
        
        PID:8748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        799⤵
        
        PID:8776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        800⤵
        
        PID:8816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        801⤵
        
        PID:8844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        802⤵
        
        PID:8868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        803⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        804⤵
        
        PID:8928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        805⤵
        
        PID:7912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        806⤵
        
        PID:8984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        807⤵
        
        PID:8988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        808⤵
        
        PID:9016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        809⤵
        
        PID:9068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        810⤵
        
        PID:1096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        811⤵
        
        PID:9156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        812⤵
        
        PID:9160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        813⤵
        
        PID:9228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        814⤵
        
        PID:9260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        815⤵
        
        PID:8528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        816⤵
        
        PID:9404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        817⤵
        
        PID:9408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        818⤵
        
        PID:9472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        819⤵
        
        PID:9508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        820⤵
        
        PID:9520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        821⤵
        
        PID:13324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        822⤵
        
        PID:13336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        823⤵
        
        PID:13348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        824⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        825⤵
        
        PID:13372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        826⤵
        
        PID:13384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        827⤵
        
        PID:13396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        828⤵
        
        PID:13408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        829⤵
        
        PID:13432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        830⤵
        
        PID:13444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        831⤵
        
        PID:13456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        832⤵
        
        PID:13468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        833⤵
        
        PID:13484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        834⤵
        
        PID:13496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        835⤵
        
        PID:13508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        836⤵
        
        PID:13524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        837⤵
        
        PID:13536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        838⤵
        
        PID:13552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        839⤵
        
        PID:13564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        840⤵
        
        PID:13580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        841⤵
        
        PID:13592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        842⤵
        
        PID:13604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        843⤵
        
        PID:13620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        844⤵
        
        PID:13632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        845⤵
        
        PID:13644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        846⤵
        
        PID:13656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        847⤵
        
        PID:13672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        848⤵
        
        PID:13688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        849⤵
        
        PID:13700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        850⤵
        
        PID:13712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        851⤵
        
        PID:13728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        852⤵
        
        PID:13740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        853⤵
        
        PID:13756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        854⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        855⤵
        
        PID:13784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        856⤵
        
        PID:13800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        857⤵
        
        PID:13812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        858⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        859⤵
        
        PID:13836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        860⤵
        
        PID:13848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        861⤵
        
        PID:13860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        862⤵
        
        PID:13872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        863⤵
        
        PID:13884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        864⤵
        
        PID:13896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        865⤵
        
        PID:13912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        866⤵
        
        PID:13928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        867⤵
        
        PID:13940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        868⤵
        
        PID:13952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        869⤵
        
        PID:13964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        870⤵
        
        PID:13976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        871⤵
        
        PID:13992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        872⤵
        
        PID:14004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        873⤵
        
        PID:14020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        874⤵
        
        PID:14032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        875⤵
        
        PID:14044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        876⤵
        
        PID:14056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        877⤵
        
        PID:14068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        878⤵
        
        PID:14080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\70586d91ad38bc0d79776833beb5ddc0_JaffaCakes118.dll,#1
        879⤵
        
        PID:14092

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=1340 --field-trial-handle=2276,i,11674642242468042059,14711253743544118298,262144 --variations-seed-version /prefetch:8
1⤵
PID:11608

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/14044-2-0x0000000075530000-0x00000000757B4000-memory.dmp

Filesize
2.5MB

Download
memory/14056-1-0x0000000075530000-0x00000000757B4000-memory.dmp

Filesize
2.5MB

Download
memory/14068-0-0x0000000075530000-0x00000000757B4000-memory.dmp

Filesize
2.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads