95a09af2bc12423d17091dc9aa0b981a031f97a2bc08466dd84a338cc703ee10

Analysis

max time kernel
141s
max time network
157s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
20/06/2024, 11:14

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll
Size

5KB
MD5

057a4e7384db77867f2055e04cb1d395
SHA1

51ca501cb6d666fa017004988abc44ea294935cb
SHA256

95a09af2bc12423d17091dc9aa0b981a031f97a2bc08466dd84a338cc703ee10
SHA512

948f0494e8fd53641eaa68110dd89e5fff7653b1394879a34be8eabb2fced08d36d6acfd3df40616fc6a3cfef7d2c4727987c7a028414d58ffbe229544759a3c
SSDEEP

24:eH1GSQx7AUp/ViO/TR7L5Rn0XT/KcIXz9CCPTPm6wi3ynica1e7aee:yU7hiQT/liCjD06PmVi3++e7r

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4268 wrote to memory of 1236	4268	rundll32.exe	91
PID 4268 wrote to memory of 1236	4268	rundll32.exe	91
PID 4268 wrote to memory of 1236	4268	rundll32.exe	91
PID 1236 wrote to memory of 4608	1236	rundll32.exe	92
PID 1236 wrote to memory of 4608	1236	rundll32.exe	92
PID 1236 wrote to memory of 4608	1236	rundll32.exe	92
PID 4608 wrote to memory of 2680	4608	rundll32.exe	93
PID 4608 wrote to memory of 2680	4608	rundll32.exe	93
PID 4608 wrote to memory of 2680	4608	rundll32.exe	93
PID 2680 wrote to memory of 1444	2680	rundll32.exe	94
PID 2680 wrote to memory of 1444	2680	rundll32.exe	94
PID 2680 wrote to memory of 1444	2680	rundll32.exe	94
PID 1444 wrote to memory of 5112	1444	rundll32.exe	95
PID 1444 wrote to memory of 5112	1444	rundll32.exe	95
PID 1444 wrote to memory of 5112	1444	rundll32.exe	95
PID 5112 wrote to memory of 4624	5112	rundll32.exe	96
PID 5112 wrote to memory of 4624	5112	rundll32.exe	96
PID 5112 wrote to memory of 4624	5112	rundll32.exe	96
PID 4624 wrote to memory of 3824	4624	rundll32.exe	97
PID 4624 wrote to memory of 3824	4624	rundll32.exe	97
PID 4624 wrote to memory of 3824	4624	rundll32.exe	97
PID 3824 wrote to memory of 1452	3824	rundll32.exe	98
PID 3824 wrote to memory of 1452	3824	rundll32.exe	98
PID 3824 wrote to memory of 1452	3824	rundll32.exe	98
PID 1452 wrote to memory of 2620	1452	rundll32.exe	99
PID 1452 wrote to memory of 2620	1452	rundll32.exe	99
PID 1452 wrote to memory of 2620	1452	rundll32.exe	99
PID 2620 wrote to memory of 4700	2620	rundll32.exe	100
PID 2620 wrote to memory of 4700	2620	rundll32.exe	100
PID 2620 wrote to memory of 4700	2620	rundll32.exe	100
PID 4700 wrote to memory of 2412	4700	rundll32.exe	101
PID 4700 wrote to memory of 2412	4700	rundll32.exe	101
PID 4700 wrote to memory of 2412	4700	rundll32.exe	101
PID 2412 wrote to memory of 660	2412	rundll32.exe	102
PID 2412 wrote to memory of 660	2412	rundll32.exe	102
PID 2412 wrote to memory of 660	2412	rundll32.exe	102
PID 660 wrote to memory of 5020	660	rundll32.exe	103
PID 660 wrote to memory of 5020	660	rundll32.exe	103
PID 660 wrote to memory of 5020	660	rundll32.exe	103
PID 5020 wrote to memory of 3260	5020	rundll32.exe	104
PID 5020 wrote to memory of 3260	5020	rundll32.exe	104
PID 5020 wrote to memory of 3260	5020	rundll32.exe	104
PID 3260 wrote to memory of 3240	3260	rundll32.exe	105
PID 3260 wrote to memory of 3240	3260	rundll32.exe	105
PID 3260 wrote to memory of 3240	3260	rundll32.exe	105
PID 3240 wrote to memory of 5000	3240	rundll32.exe	106
PID 3240 wrote to memory of 5000	3240	rundll32.exe	106
PID 3240 wrote to memory of 5000	3240	rundll32.exe	106
PID 5000 wrote to memory of 1496	5000	rundll32.exe	107
PID 5000 wrote to memory of 1496	5000	rundll32.exe	107
PID 5000 wrote to memory of 1496	5000	rundll32.exe	107
PID 1496 wrote to memory of 1056	1496	rundll32.exe	108
PID 1496 wrote to memory of 1056	1496	rundll32.exe	108
PID 1496 wrote to memory of 1056	1496	rundll32.exe	108
PID 1056 wrote to memory of 1956	1056	rundll32.exe	109
PID 1056 wrote to memory of 1956	1056	rundll32.exe	109
PID 1056 wrote to memory of 1956	1056	rundll32.exe	109
PID 1956 wrote to memory of 2188	1956	rundll32.exe	110
PID 1956 wrote to memory of 2188	1956	rundll32.exe	110
PID 1956 wrote to memory of 2188	1956	rundll32.exe	110
PID 2188 wrote to memory of 3360	2188	rundll32.exe	111
PID 2188 wrote to memory of 3360	2188	rundll32.exe	111
PID 2188 wrote to memory of 3360	2188	rundll32.exe	111
PID 3360 wrote to memory of 208	3360	rundll32.exe	112

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:4268
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:1236
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:4608
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:2680
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:1444
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:5112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:4624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:3824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:1452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:2620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:4700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:2412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:5020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:3260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:3240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:5000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:1496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:1056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:1956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:2188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:3360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        23⤵
        
        PID:208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        24⤵
        
        PID:616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        25⤵
        
        PID:1188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        26⤵
        
        PID:4548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        27⤵
        
        PID:4040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        28⤵
        
        PID:4560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        29⤵
        
        PID:1340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        30⤵
        
        PID:728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        31⤵
        
        PID:3496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        32⤵
        
        PID:4376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        33⤵
        
        PID:3144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        34⤵
        
        PID:3348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        35⤵
        
        PID:1524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        36⤵
        
        PID:2084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        37⤵
        
        PID:1368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        38⤵
        
        PID:1688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        39⤵
        
        PID:4068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        40⤵
        
        PID:1664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        41⤵
        
        PID:3428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        42⤵
        
        PID:1312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        43⤵
        
        PID:3516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        44⤵
        
        PID:3632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        45⤵
        
        PID:2168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        46⤵
        
        PID:4840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        47⤵
        
        PID:4480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        48⤵
        
        PID:1136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        49⤵
        
        PID:2448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        50⤵
        
        PID:3872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        51⤵
        
        PID:4352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        52⤵
        
        PID:2596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        53⤵
        
        PID:1628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        54⤵
        
        PID:4576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        55⤵
        
        PID:3700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        56⤵
        
        PID:2252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        57⤵
        
        PID:4712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        58⤵
        
        PID:2732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        59⤵
        
        PID:3588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        60⤵
        
        PID:2876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        61⤵
        
        PID:1208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        62⤵
        
        PID:2960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        63⤵
        
        PID:4308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        64⤵
        
        PID:2236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        65⤵
        
        PID:2324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        66⤵
        
        PID:4452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        67⤵
        
        PID:4848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        68⤵
        
        PID:3716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        69⤵
        
        PID:4108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        70⤵
        
        PID:3328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        71⤵
        
        PID:1216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        72⤵
        
        PID:440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        73⤵
        
        PID:2108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        74⤵
        
        PID:3996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        75⤵
        
        PID:1448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        76⤵
        
        PID:2956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        77⤵
        
        PID:4568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        78⤵
        
        PID:2024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        79⤵
        
        PID:3676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        80⤵
        
        PID:5060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        81⤵
        
        PID:1020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        82⤵
        
        PID:2748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        83⤵
        
        PID:2416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        84⤵
        
        PID:4584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        85⤵
        
        PID:4212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        86⤵
        
        PID:3148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        87⤵
        
        PID:4612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        88⤵
        
        PID:4472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        89⤵
        
        PID:4412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        90⤵
        
        PID:4184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        91⤵
        
        PID:1460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        92⤵
        
        PID:3368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        93⤵
        
        PID:3152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        94⤵
        
        PID:3540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        95⤵
        
        PID:2936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        96⤵
        
        PID:4220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        97⤵
        
        PID:4456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        98⤵
        
        PID:5140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        99⤵
        
        PID:5152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        100⤵
        
        PID:5168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        101⤵
        
        PID:5180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        102⤵
        
        PID:5196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        103⤵
        
        PID:5212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        104⤵
        
        PID:5228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        105⤵
        
        PID:5240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        106⤵
        
        PID:5252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        107⤵
        
        PID:5268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        108⤵
        
        PID:5280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        109⤵
        
        PID:5292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        110⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        111⤵
        
        PID:5316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        112⤵
        
        PID:5328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        113⤵
        
        PID:5340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        114⤵
        
        PID:5352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        115⤵
        
        PID:5364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        116⤵
        
        PID:5376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        117⤵
        
        PID:5392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        118⤵
        
        PID:5404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        119⤵
        
        PID:5420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        120⤵
        
        PID:5452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        121⤵
        
        PID:5464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        122⤵
        
        PID:5476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        123⤵
        
        PID:5488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        124⤵
        
        PID:5504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        125⤵
        
        PID:5520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        126⤵
        
        PID:5536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        127⤵
        
        PID:5548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        128⤵
        
        PID:5564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        129⤵
        
        PID:5576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        130⤵
        
        PID:5592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        131⤵
        
        PID:5616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        132⤵
        
        PID:5632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        133⤵
        
        PID:5648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        134⤵
        
        PID:5660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        135⤵
        
        PID:5672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        136⤵
        
        PID:5688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        137⤵
        
        PID:5708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        138⤵
        
        PID:5720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        139⤵
        
        PID:5732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        140⤵
        
        PID:5748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        141⤵
        
        PID:5764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        142⤵
        
        PID:5788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        143⤵
        
        PID:5800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        144⤵
        
        PID:5820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        145⤵
        
        PID:5840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        146⤵
        
        PID:5852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        147⤵
        
        PID:5868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        148⤵
        
        PID:5880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        149⤵
        
        PID:5896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        150⤵
        
        PID:5912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        151⤵
        
        PID:5928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        152⤵
        
        PID:5956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        153⤵
        
        PID:5972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        154⤵
        
        PID:5984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        155⤵
        
        PID:6008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        156⤵
        
        PID:6040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        157⤵
        
        PID:6080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        158⤵
        
        PID:6092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        159⤵
        
        PID:6108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        160⤵
        
        PID:6128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        161⤵
        
        PID:6140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        162⤵
        
        PID:5260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        163⤵
        
        PID:5776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        164⤵
        
        PID:5812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        165⤵
        
        PID:6160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        166⤵
        
        PID:6180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        167⤵
        
        PID:6192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        168⤵
        
        PID:6204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        169⤵
        
        PID:6220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        170⤵
        
        PID:6232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        171⤵
        
        PID:6248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        172⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        173⤵
        
        PID:6272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        174⤵
        
        PID:6300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        175⤵
        
        PID:6316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        176⤵
        
        PID:6332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        177⤵
        
        PID:6364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        178⤵
        
        PID:6380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        179⤵
        
        PID:6396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        180⤵
        
        PID:6420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        181⤵
        
        PID:6432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        182⤵
        
        PID:6456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        183⤵
        
        PID:6488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        184⤵
        
        PID:6500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        185⤵
        
        PID:6520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        186⤵
        
        PID:6548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        187⤵
        
        PID:6568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        188⤵
        
        PID:6592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        189⤵
        
        PID:6652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        190⤵
        
        PID:6672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        191⤵
        
        PID:6696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        192⤵
        
        PID:6716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        193⤵
        
        PID:6728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        194⤵
        
        PID:6744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        195⤵
        
        PID:6764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        196⤵
        
        PID:6784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        197⤵
        
        PID:6816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        198⤵
        
        PID:6828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        199⤵
        
        PID:6840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        200⤵
        
        PID:6852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        201⤵
        
        PID:6864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        202⤵
        
        PID:6876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        203⤵
        
        PID:6888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        204⤵
        
        PID:6904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        205⤵
        
        PID:6916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        206⤵
        
        PID:6928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        207⤵
        
        PID:6944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        208⤵
        
        PID:6956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        209⤵
        
        PID:6968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        210⤵
        
        PID:6980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        211⤵
        
        PID:6992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        212⤵
        
        PID:7004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        213⤵
        
        PID:7016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        214⤵
        
        PID:7028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        215⤵
        
        PID:7044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        216⤵
        
        PID:7056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        217⤵
        
        PID:7068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        218⤵
        
        PID:7084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        219⤵
        
        PID:7096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        220⤵
        
        PID:7108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        221⤵
        
        PID:7124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        222⤵
        
        PID:7136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        223⤵
        
        PID:7148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        224⤵
        
        PID:7160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        225⤵
        
        PID:3224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        226⤵
        
        PID:7176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        227⤵
        
        PID:7188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        228⤵
        
        PID:7200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        229⤵
        
        PID:7212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        230⤵
        
        PID:7224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        231⤵
        
        PID:7236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        232⤵
        
        PID:7248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        233⤵
        
        PID:7264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        234⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        235⤵
        
        PID:7288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        236⤵
        
        PID:7300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        237⤵
        
        PID:7312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        238⤵
        
        PID:7324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        239⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        240⤵
        
        PID:7348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        241⤵
        
        PID:7360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        242⤵
        
        PID:7372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        243⤵
        
        PID:7384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        244⤵
        
        PID:7396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        245⤵
        
        PID:7408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        246⤵
        
        PID:7424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        247⤵
        
        PID:7436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        248⤵
        
        PID:7448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        249⤵
        
        PID:7460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        250⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        251⤵
        
        PID:7484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        252⤵
        
        PID:7500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        253⤵
        
        PID:7512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        254⤵
        
        PID:7524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        255⤵
        
        PID:7536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        256⤵
        
        PID:7548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        257⤵
        
        PID:7568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        258⤵
        
        PID:7596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        259⤵
        
        PID:7624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        260⤵
        
        PID:7636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        261⤵
        
        PID:7648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        262⤵
        
        PID:7660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        263⤵
        
        PID:7672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        264⤵
        
        PID:7684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        265⤵
        
        PID:7700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        266⤵
        
        PID:7712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        267⤵
        
        PID:7724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        268⤵
        
        PID:7736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        269⤵
        
        PID:7748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        270⤵
        
        PID:7764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        271⤵
        
        PID:7776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        272⤵
        
        PID:7788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        273⤵
        
        PID:7800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        274⤵
        
        PID:7812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        275⤵
        
        PID:7824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        276⤵
        
        PID:7836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        277⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        278⤵
        
        PID:7864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        279⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        280⤵
        
        PID:7896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        281⤵
        
        PID:7908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        282⤵
        
        PID:7920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        283⤵
        
        PID:7932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        284⤵
        
        PID:7944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        285⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        286⤵
        
        PID:7968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        287⤵
        
        PID:7984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        288⤵
        
        PID:8000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        289⤵
        
        PID:8016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        290⤵
        
        PID:8028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        291⤵
        
        PID:8040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        292⤵
        
        PID:8056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        293⤵
        
        PID:8068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        294⤵
        
        PID:8080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        295⤵
        
        PID:8092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        296⤵
        
        PID:8108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        297⤵
        
        PID:8124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        298⤵
        
        PID:8140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        299⤵
        
        PID:8156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        300⤵
        
        PID:8176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        301⤵
        
        PID:8188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        302⤵
        
        PID:7888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        303⤵
        
        PID:8224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        304⤵
        
        PID:8256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        305⤵
        
        PID:8292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        306⤵
        
        PID:8316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        307⤵
        
        PID:8336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        308⤵
        
        PID:8380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        309⤵
        
        PID:8412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        310⤵
        
        PID:8432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        311⤵
        
        PID:8448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        312⤵
        
        PID:8464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        313⤵
        
        PID:8484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        314⤵
        
        PID:8516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        315⤵
        
        PID:8536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        316⤵
        
        PID:8552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        317⤵
        
        PID:8588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        318⤵
        
        PID:8616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        319⤵
        
        PID:8640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        320⤵
        
        PID:8656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        321⤵
        
        PID:8676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        322⤵
        
        PID:8692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        323⤵
        
        PID:8708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        324⤵
        
        PID:8724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        325⤵
        
        PID:8740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        326⤵
        
        PID:8760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        327⤵
        
        PID:8772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        328⤵
        
        PID:8788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        329⤵
        
        PID:8808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        330⤵
        
        PID:8820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        331⤵
        
        PID:8844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        332⤵
        
        PID:8860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        333⤵
        
        PID:8872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        334⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        335⤵
        
        PID:8908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        336⤵
        
        PID:8920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        337⤵
        
        PID:8940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        338⤵
        
        PID:8952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        339⤵
        
        PID:8972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        340⤵
        
        PID:8988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        341⤵
        
        PID:9000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        342⤵
        
        PID:9016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        343⤵
        
        PID:9032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        344⤵
        
        PID:9048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        345⤵
        
        PID:9072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        346⤵
        
        PID:9084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        347⤵
        
        PID:9104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        348⤵
        
        PID:9120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        349⤵
        
        PID:9132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        350⤵
        
        PID:9148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        351⤵
        
        PID:9160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        352⤵
        
        PID:9176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        353⤵
        
        PID:9196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        354⤵
        
        PID:9208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        355⤵
        
        PID:4316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        356⤵
        
        PID:1556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        357⤵
        
        PID:8836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        358⤵
        
        PID:9220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        359⤵
        
        PID:9236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        360⤵
        
        PID:9248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        361⤵
        
        PID:9268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        362⤵
        
        PID:9284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        363⤵
        
        PID:9316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        364⤵
        
        PID:9340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        365⤵
        
        PID:9356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        366⤵
        
        PID:9380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        367⤵
        
        PID:9392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        368⤵
        
        PID:9412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        369⤵
        
        PID:9424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        370⤵
        
        PID:9448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        371⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        372⤵
        
        PID:9476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        373⤵
        
        PID:9488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        374⤵
        
        PID:9500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        375⤵
        
        PID:9512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        376⤵
        
        PID:9524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        377⤵
        
        PID:9536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        378⤵
        
        PID:9548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        379⤵
        
        PID:9564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        380⤵
        
        PID:9576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        381⤵
        
        PID:9588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        382⤵
        
        PID:9600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        383⤵
        
        PID:9616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        384⤵
        
        PID:9628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        385⤵
        
        PID:9648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        386⤵
        
        PID:9660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        387⤵
        
        PID:9680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        388⤵
        
        PID:9700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        389⤵
        
        PID:9716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        390⤵
        
        PID:9732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        391⤵
        
        PID:9752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        392⤵
        
        PID:9764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        393⤵
        
        PID:9780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        394⤵
        
        PID:9796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        395⤵
        
        PID:9812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        396⤵
        
        PID:9824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        397⤵
        
        PID:9836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        398⤵
        
        PID:9852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        399⤵
        
        PID:9868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        400⤵
        
        PID:9888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        401⤵
        
        PID:9916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        402⤵
        
        PID:9932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        403⤵
        
        PID:9944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        404⤵
        
        PID:9964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        405⤵
        
        PID:9980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        406⤵
        
        PID:9996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        407⤵
        
        PID:10008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        408⤵
        
        PID:10024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        409⤵
        
        PID:10036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        410⤵
        
        PID:10052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        411⤵
        
        PID:10068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        412⤵
        
        PID:10084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        413⤵
        
        PID:10104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        414⤵
        
        PID:10116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        415⤵
        
        PID:10132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        416⤵
        
        PID:10148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        417⤵
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        418⤵
        
        PID:10180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        419⤵
        
        PID:10196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        420⤵
        
        PID:10212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        421⤵
        
        PID:10224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        422⤵
        
        PID:10236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        423⤵
        
        PID:9092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        424⤵
        
        PID:8600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        425⤵
        
        PID:8608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        426⤵
        
        PID:8584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        427⤵
        
        PID:6052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        428⤵
        
        PID:6280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        429⤵
        
        PID:6064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        430⤵
        
        PID:6060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        431⤵
        
        PID:2312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        432⤵
        
        PID:2296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        433⤵
        
        PID:8392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        434⤵
        
        PID:9952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        435⤵
        
        PID:10248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        436⤵
        
        PID:10264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        437⤵
        
        PID:10280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        438⤵
        
        PID:10292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        439⤵
        
        PID:10308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        440⤵
        
        PID:10324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        441⤵
        
        PID:10336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        442⤵
        
        PID:10352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        443⤵
        
        PID:10364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        444⤵
        
        PID:10376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        445⤵
        
        PID:10392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        446⤵
        
        PID:10404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        447⤵
        
        PID:10424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        448⤵
        
        PID:10436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        449⤵
        
        PID:10456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        450⤵
        
        PID:10472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        451⤵
        
        PID:10484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        452⤵
        
        PID:10496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        453⤵
        
        PID:10508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        454⤵
        
        PID:10520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        455⤵
        
        PID:10532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        456⤵
        
        PID:10544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        457⤵
        
        PID:10556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        458⤵
        
        PID:10568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        459⤵
        
        PID:10580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        460⤵
        
        PID:10592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        461⤵
        
        PID:10604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        462⤵
        
        PID:10616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        463⤵
        
        PID:10628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        464⤵
        
        PID:10644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        465⤵
        
        PID:10660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        466⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        467⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        468⤵
        
        PID:10712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        469⤵
        
        PID:10728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        470⤵
        
        PID:10740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        471⤵
        
        PID:10756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        472⤵
        
        PID:10768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        473⤵
        
        PID:10780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        474⤵
        
        PID:10792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        475⤵
        
        PID:10804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        476⤵
        
        PID:10820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        477⤵
        
        PID:10836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        478⤵
        
        PID:10848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        479⤵
        
        PID:10860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        480⤵
        
        PID:10880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        481⤵
        
        PID:10896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        482⤵
        
        PID:10912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        483⤵
        
        PID:10928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        484⤵
        
        PID:10940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        485⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        486⤵
        
        PID:10964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        487⤵
        
        PID:10976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        488⤵
        
        PID:10988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        489⤵
        
        PID:11004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        490⤵
        
        PID:11016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        491⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        492⤵
        
        PID:11048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        493⤵
        
        PID:11060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        494⤵
        
        PID:11072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        495⤵
        
        PID:11084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        496⤵
        
        PID:11100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        497⤵
        
        PID:11112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        498⤵
        
        PID:11124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        499⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        500⤵
        
        PID:11148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        501⤵
        
        PID:11160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        502⤵
        
        PID:11176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        503⤵
        
        PID:11192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        504⤵
        
        PID:11204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        505⤵
        
        PID:11216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        506⤵
        
        PID:11228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        507⤵
        
        PID:11240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        508⤵
        
        PID:11260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        509⤵
        
        PID:3844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        510⤵
        
        PID:10444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        511⤵
        
        PID:4912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        512⤵
        
        PID:1364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        513⤵
        
        PID:456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        514⤵
        
        PID:1160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        515⤵
        
        PID:1944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        516⤵
        
        PID:2612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        517⤵
        
        PID:2428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        518⤵
        
        PID:2112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        519⤵
        
        PID:5072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        520⤵
        
        PID:3264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        521⤵
        
        PID:4500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        522⤵
        
        PID:4368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        523⤵
        
        PID:1300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        524⤵
        
        PID:2832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        525⤵
        
        PID:3536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        526⤵
        
        PID:10888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        527⤵
        
        PID:1964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        528⤵
        
        PID:4388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        529⤵
        
        PID:1684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        530⤵
        
        PID:4812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        531⤵
        
        PID:4088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        532⤵
        
        PID:4592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        533⤵
        
        PID:11092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        534⤵
        
        PID:1360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        535⤵
        
        PID:1468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        536⤵
        
        PID:1016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        537⤵
        
        PID:2916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        538⤵
        
        PID:1632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        539⤵
        
        PID:892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        540⤵
        
        PID:4936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        541⤵
        
        PID:836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        542⤵
        
        PID:4536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        543⤵
        
        PID:1096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        544⤵
        
        PID:2156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        545⤵
        
        PID:2248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        546⤵
        
        PID:3424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        547⤵
        
        PID:5012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        548⤵
        
        PID:3476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        549⤵
        
        PID:60
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        550⤵
        
        PID:1412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        551⤵
        
        PID:4424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        552⤵
        
        PID:392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        553⤵
        
        PID:1928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        554⤵
        
        PID:5148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        555⤵
        
        PID:5208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        556⤵
        
        PID:11276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        557⤵
        
        PID:11288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        558⤵
        
        PID:11300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        559⤵
        
        PID:11316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        560⤵
        
        PID:11332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        561⤵
        
        PID:11344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        562⤵
        
        PID:11356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        563⤵
        
        PID:11372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        564⤵
        
        PID:11384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        565⤵
        
        PID:11396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        566⤵
        
        PID:11408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        567⤵
        
        PID:11420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        568⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        569⤵
        
        PID:11452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        570⤵
        
        PID:11464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        571⤵
        
        PID:11480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        572⤵
        
        PID:11492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        573⤵
        
        PID:11504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        574⤵
        
        PID:11524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        575⤵
        
        PID:11536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        576⤵
        
        PID:11548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        577⤵
        
        PID:11560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        578⤵
        
        PID:11572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        579⤵
        
        PID:11584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        580⤵
        
        PID:11596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        581⤵
        
        PID:11612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        582⤵
        
        PID:11628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        583⤵
        
        PID:11640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        584⤵
        
        PID:11652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        585⤵
        
        PID:11668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        586⤵
        
        PID:11688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        587⤵
        
        PID:11700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        588⤵
        
        PID:11716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        589⤵
        
        PID:11728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        590⤵
        
        PID:11744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        591⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        592⤵
        
        PID:11776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        593⤵
        
        PID:11788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        594⤵
        
        PID:11804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        595⤵
        
        PID:11820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        596⤵
        
        PID:11832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        597⤵
        
        PID:11852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        598⤵
        
        PID:11868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        599⤵
        
        PID:11880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        600⤵
        
        PID:11896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        601⤵
        
        PID:11912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        602⤵
        
        PID:11924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        603⤵
        
        PID:11936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        604⤵
        
        PID:11948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        605⤵
        
        PID:11964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        606⤵
        
        PID:11976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        607⤵
        
        PID:11988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        608⤵
        
        PID:12004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        609⤵
        
        PID:12016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        610⤵
        
        PID:12028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        611⤵
        
        PID:12040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        612⤵
        
        PID:12052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        613⤵
        
        PID:12064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        614⤵
        
        PID:12076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        615⤵
        
        PID:12088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        616⤵
        
        PID:12100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        617⤵
        
        PID:12112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        618⤵
        
        PID:12124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        619⤵
        
        PID:12140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        620⤵
        
        PID:12152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        621⤵
        
        PID:12168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        622⤵
        
        PID:12184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        623⤵
        
        PID:12196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        624⤵
        
        PID:12208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        625⤵
        
        PID:12220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        626⤵
        
        PID:12244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        627⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        628⤵
        
        PID:12268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        629⤵
        
        PID:12280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        630⤵
        
        PID:5224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        631⤵
        
        PID:5264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        632⤵
        
        PID:5300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        633⤵
        
        PID:5336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        634⤵
        
        PID:2032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        635⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        636⤵
        
        PID:5400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        637⤵
        
        PID:5412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        638⤵
        
        PID:5460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        639⤵
        
        PID:5500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        640⤵
        
        PID:5532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        641⤵
        
        PID:5556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        642⤵
        
        PID:5604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        643⤵
        
        PID:5628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        644⤵
        
        PID:5640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        645⤵
        
        PID:5696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        646⤵
        
        PID:5704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        647⤵
        
        PID:5716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        648⤵
        
        PID:5756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        649⤵
        
        PID:5808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        650⤵
        
        PID:5836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        651⤵
        
        PID:5860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        652⤵
        
        PID:5864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        653⤵
        
        PID:3564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        654⤵
        
        PID:3480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        655⤵
        
        PID:5904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        656⤵
        
        PID:5908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        657⤵
        
        PID:5952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        658⤵
        
        PID:5980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        659⤵
        
        PID:6036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        660⤵
        
        PID:6068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        661⤵
        
        PID:6088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        662⤵
        
        PID:6136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        663⤵
        
        PID:6032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        664⤵
        
        PID:6188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        665⤵
        
        PID:6212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        666⤵
        
        PID:6240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        667⤵
        
        PID:6296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        668⤵
        
        PID:6312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        669⤵
        
        PID:6360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        670⤵
        
        PID:6404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        671⤵
        
        PID:6428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        672⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        673⤵
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        674⤵
        
        PID:6604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        675⤵
        
        PID:6668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        676⤵
        
        PID:6708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        677⤵
        
        PID:6760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        678⤵
        
        PID:6776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        679⤵
        
        PID:6836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        680⤵
        
        PID:6872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        681⤵
        
        PID:6896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        682⤵
        
        PID:6924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        683⤵
        
        PID:6964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        684⤵
        
        PID:6988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        685⤵
        
        PID:7024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        686⤵
        
        PID:7076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        687⤵
        
        PID:7092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        688⤵
        
        PID:7144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        689⤵
        
        PID:6628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        690⤵
        
        PID:7220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        691⤵
        
        PID:7256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        692⤵
        
        PID:7296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        693⤵
        
        PID:7356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        694⤵
        
        PID:12180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        695⤵
        
        PID:7404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        696⤵
        
        PID:7444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        697⤵
        
        PID:7496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        698⤵
        
        PID:7532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        699⤵
        
        PID:7576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        700⤵
        
        PID:7620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        701⤵
        
        PID:7656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        702⤵
        
        PID:7692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        703⤵
        
        PID:7732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        704⤵
        
        PID:7756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        705⤵
        
        PID:7796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        706⤵
        
        PID:7832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        707⤵
        
        PID:7856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        708⤵
        
        PID:7892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        709⤵
        
        PID:7940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        710⤵
        
        PID:7996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        711⤵
        
        PID:8008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        712⤵
        
        PID:8048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        713⤵
        
        PID:8088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        714⤵
        
        PID:8136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        715⤵
        
        PID:8172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        716⤵
        
        PID:7492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        717⤵
        
        PID:6736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        718⤵
        
        PID:8312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        719⤵
        
        PID:8388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        720⤵
        
        PID:8428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        721⤵
        
        PID:8492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        722⤵
        
        PID:8508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        723⤵
        
        PID:2152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        724⤵
        
        PID:8548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        725⤵
        
        PID:8636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        726⤵
        
        PID:8648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        727⤵
        
        PID:8688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        728⤵
        
        PID:8720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        729⤵
        
        PID:8736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        730⤵
        
        PID:8780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        731⤵
        
        PID:8784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        732⤵
        
        PID:8816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        733⤵
        
        PID:8856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        734⤵
        
        PID:8896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        735⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        736⤵
        
        PID:8948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        737⤵
        
        PID:8968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        738⤵
        
        PID:9024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        739⤵
        
        PID:9028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        740⤵
        
        PID:9080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        741⤵
        
        PID:9116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        742⤵
        
        PID:9128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        743⤵
        
        PID:9188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        744⤵
        
        PID:9204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        745⤵
        
        PID:8476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        746⤵
        
        PID:9064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        747⤵
        
        PID:9292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        748⤵
        
        PID:9348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        749⤵
        
        PID:9372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        750⤵
        
        PID:12300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        751⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        752⤵
        
        PID:12324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        753⤵
        
        PID:12336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        754⤵
        
        PID:12348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        755⤵
        
        PID:12360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        756⤵
        
        PID:12372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        757⤵
        
        PID:12392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        758⤵
        
        PID:12404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        759⤵
        
        PID:12416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        760⤵
        
        PID:12428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        761⤵
        
        PID:12440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        762⤵
        
        PID:12456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        763⤵
        
        PID:12468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        764⤵
        
        PID:12480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        765⤵
        
        PID:12492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        766⤵
        
        PID:12512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        767⤵
        
        PID:12528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        768⤵
        
        PID:12544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        769⤵
        
        PID:12556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        770⤵
        
        PID:12568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        771⤵
        
        PID:12584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        772⤵
        
        PID:12596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        773⤵
        
        PID:12608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        774⤵
        
        PID:12620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        775⤵
        
        PID:12632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        776⤵
        
        PID:12644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        777⤵
        
        PID:12656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        778⤵
        
        PID:12668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        779⤵
        
        PID:12680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        780⤵
        
        PID:12692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        781⤵
        
        PID:12704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        782⤵
        
        PID:12716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        783⤵
        
        PID:12728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        784⤵
        
        PID:12744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        785⤵
        
        PID:12756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        786⤵
        
        PID:12768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        787⤵
        
        PID:12780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        788⤵
        
        PID:12792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        789⤵
        
        PID:12804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        790⤵
        
        PID:12816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        791⤵
        
        PID:12828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        792⤵
        
        PID:12844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        793⤵
        
        PID:12856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        794⤵
        
        PID:12868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        795⤵
        
        PID:12884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        796⤵
        
        PID:12900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        797⤵
        
        PID:12916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        798⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        799⤵
        
        PID:12940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        800⤵
        
        PID:12952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        801⤵
        
        PID:12968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        802⤵
        
        PID:12980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        803⤵
        
        PID:12992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        804⤵
        
        PID:13008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        805⤵
        
        PID:13020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        806⤵
        
        PID:13032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        807⤵
        
        PID:13048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        808⤵
        
        PID:13060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        809⤵
        
        PID:13076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        810⤵
        
        PID:13092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        811⤵
        
        PID:13108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        812⤵
        
        PID:13120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        813⤵
        
        PID:13132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        814⤵
        
        PID:13144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        815⤵
        
        PID:13156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        816⤵
        
        PID:13168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        817⤵
        
        PID:13184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        818⤵
        
        PID:13196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        819⤵
        
        PID:13216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        820⤵
        
        PID:13228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        821⤵
        
        PID:13240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        822⤵
        
        PID:13252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        823⤵
        
        PID:13268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        824⤵
        
        PID:13280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        825⤵
        
        PID:13292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        826⤵
        
        PID:13304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        827⤵
        
        PID:9404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        828⤵
        
        PID:9420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        829⤵
        
        PID:9468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        830⤵
        
        PID:9484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        831⤵
        
        PID:9520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        832⤵
        
        PID:9556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        833⤵
        
        PID:9584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        834⤵
        
        PID:9624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        835⤵
        
        PID:9708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        836⤵
        
        PID:9740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        837⤵
        
        PID:9788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        838⤵
        
        PID:9820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        839⤵
        
        PID:9844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        840⤵
        
        PID:9900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        841⤵
        
        PID:9912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        842⤵
        
        PID:9928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        843⤵
        
        PID:9956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        844⤵
        
        PID:9992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        845⤵
        
        PID:10020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        846⤵
        
        PID:10064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        847⤵
        
        PID:10100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        848⤵
        
        PID:10128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        849⤵
        
        PID:10164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        850⤵
        
        PID:10208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        851⤵
        
        PID:6344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        852⤵
        
        PID:8576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        853⤵
        
        PID:6284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        854⤵
        
        PID:6292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        855⤵
        
        PID:9364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        856⤵
        
        PID:10204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        857⤵
        
        PID:10260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        858⤵
        
        PID:10272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        859⤵
        
        PID:10304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        860⤵
        
        PID:10332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        861⤵
        
        PID:13204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        862⤵
        
        PID:10432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        863⤵
        
        PID:9612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        864⤵
        
        PID:10468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        865⤵
        
        PID:10492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        866⤵
        
        PID:10540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        867⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        868⤵
        
        PID:10600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        869⤵
        
        PID:10652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        870⤵
        
        PID:10656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        871⤵
        
        PID:10704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        872⤵
        
        PID:10708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        873⤵
        
        PID:10748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        874⤵
        
        PID:10764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        875⤵
        
        PID:10800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        876⤵
        
        PID:12960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        877⤵
        
        PID:10844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        878⤵
        
        PID:10876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        879⤵
        
        PID:10892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        880⤵
        
        PID:10920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        881⤵
        
        PID:10960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\057a4e7384db77867f2055e04cb1d395_JaffaCakes118.dll,#1
        882⤵
        
        PID:13324

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=4584 --field-trial-handle=2272,i,4858140932023865871,5726683989663339295,262144 --variations-seed-version /prefetch:8
1⤵
PID:1248

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1236-0-0x0000000075220000-0x00000000754A4000-memory.dmp

Filesize
2.5MB

Download
memory/3496-18-0x0000000075220000-0x00000000754A4000-memory.dmp

Filesize
2.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads