88e8c449d47a592a8cb2aaa19664493627c6391a7586b8c857799f26fd61b5c4

Analysis

max time kernel
51s
max time network
51s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
27/06/2024, 14:43

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll
Size

94KB
MD5

16612b52a741bce51d03d40f646cfdb6
SHA1

9f6c6b533a3758f4130afd83ba4ffb86fbb96686
SHA256

88e8c449d47a592a8cb2aaa19664493627c6391a7586b8c857799f26fd61b5c4
SHA512

adf1b782ebf3d3fef180aeaa5a0702bbc123400544ff4e8a5a998a51ecb47aba7777f72f54101e73b861bd15ca8087e02f7dff87ad6e6e673931f61b9c07a69f
SSDEEP

1536:Ut3uNcgCzI+BOZcuI/N+ZkkLmJog4TotPOhr/nLwU1oYXtrcE:G3urCa9qN+ZkuRToUwUvXVV

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2464 wrote to memory of 4560	2464	rundll32.exe	81
PID 2464 wrote to memory of 4560	2464	rundll32.exe	81
PID 2464 wrote to memory of 4560	2464	rundll32.exe	81
PID 4560 wrote to memory of 2256	4560	rundll32.exe	82
PID 4560 wrote to memory of 2256	4560	rundll32.exe	82
PID 4560 wrote to memory of 2256	4560	rundll32.exe	82
PID 2256 wrote to memory of 1272	2256	rundll32.exe	83
PID 2256 wrote to memory of 1272	2256	rundll32.exe	83
PID 2256 wrote to memory of 1272	2256	rundll32.exe	83
PID 1272 wrote to memory of 1872	1272	rundll32.exe	84
PID 1272 wrote to memory of 1872	1272	rundll32.exe	84
PID 1272 wrote to memory of 1872	1272	rundll32.exe	84
PID 1872 wrote to memory of 4752	1872	rundll32.exe	85
PID 1872 wrote to memory of 4752	1872	rundll32.exe	85
PID 1872 wrote to memory of 4752	1872	rundll32.exe	85
PID 4752 wrote to memory of 2328	4752	rundll32.exe	86
PID 4752 wrote to memory of 2328	4752	rundll32.exe	86
PID 4752 wrote to memory of 2328	4752	rundll32.exe	86
PID 2328 wrote to memory of 4000	2328	rundll32.exe	87
PID 2328 wrote to memory of 4000	2328	rundll32.exe	87
PID 2328 wrote to memory of 4000	2328	rundll32.exe	87
PID 4000 wrote to memory of 432	4000	rundll32.exe	88
PID 4000 wrote to memory of 432	4000	rundll32.exe	88
PID 4000 wrote to memory of 432	4000	rundll32.exe	88
PID 432 wrote to memory of 4272	432	rundll32.exe	89
PID 432 wrote to memory of 4272	432	rundll32.exe	89
PID 432 wrote to memory of 4272	432	rundll32.exe	89
PID 4272 wrote to memory of 4928	4272	rundll32.exe	90
PID 4272 wrote to memory of 4928	4272	rundll32.exe	90
PID 4272 wrote to memory of 4928	4272	rundll32.exe	90
PID 4928 wrote to memory of 5024	4928	rundll32.exe	91
PID 4928 wrote to memory of 5024	4928	rundll32.exe	91
PID 4928 wrote to memory of 5024	4928	rundll32.exe	91
PID 5024 wrote to memory of 224	5024	rundll32.exe	92
PID 5024 wrote to memory of 224	5024	rundll32.exe	92
PID 5024 wrote to memory of 224	5024	rundll32.exe	92
PID 224 wrote to memory of 220	224	rundll32.exe	93
PID 224 wrote to memory of 220	224	rundll32.exe	93
PID 224 wrote to memory of 220	224	rundll32.exe	93
PID 220 wrote to memory of 4024	220	rundll32.exe	94
PID 220 wrote to memory of 4024	220	rundll32.exe	94
PID 220 wrote to memory of 4024	220	rundll32.exe	94
PID 4024 wrote to memory of 4088	4024	rundll32.exe	95
PID 4024 wrote to memory of 4088	4024	rundll32.exe	95
PID 4024 wrote to memory of 4088	4024	rundll32.exe	95
PID 4088 wrote to memory of 4348	4088	rundll32.exe	96
PID 4088 wrote to memory of 4348	4088	rundll32.exe	96
PID 4088 wrote to memory of 4348	4088	rundll32.exe	96
PID 4348 wrote to memory of 2904	4348	rundll32.exe	97
PID 4348 wrote to memory of 2904	4348	rundll32.exe	97
PID 4348 wrote to memory of 2904	4348	rundll32.exe	97
PID 2904 wrote to memory of 4768	2904	rundll32.exe	98
PID 2904 wrote to memory of 4768	2904	rundll32.exe	98
PID 2904 wrote to memory of 4768	2904	rundll32.exe	98
PID 4768 wrote to memory of 1892	4768	rundll32.exe	99
PID 4768 wrote to memory of 1892	4768	rundll32.exe	99
PID 4768 wrote to memory of 1892	4768	rundll32.exe	99
PID 1892 wrote to memory of 744	1892	rundll32.exe	100
PID 1892 wrote to memory of 744	1892	rundll32.exe	100
PID 1892 wrote to memory of 744	1892	rundll32.exe	100
PID 744 wrote to memory of 4820	744	rundll32.exe	101
PID 744 wrote to memory of 4820	744	rundll32.exe	101
PID 744 wrote to memory of 4820	744	rundll32.exe	101
PID 4820 wrote to memory of 2576	4820	rundll32.exe	102

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:2464
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:4560
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:2256
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:1272
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:1872
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:4752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:2328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:4000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:4272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:4928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:5024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:4024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:4088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:4348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:2904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:4768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:1892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:4820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        23⤵
        
        PID:2576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        24⤵
        
        PID:2484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        25⤵
        
        PID:2068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        26⤵
        
        PID:2928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        27⤵
        
        PID:2196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        28⤵
        
        PID:2104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        29⤵
        
        PID:2100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        30⤵
        
        PID:3068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        31⤵
        
        PID:3904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        32⤵
        
        PID:1040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        33⤵
        
        PID:4772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        34⤵
        
        PID:3484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        35⤵
        
        PID:3152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        36⤵
        
        PID:3236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        37⤵
        
        PID:1940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        38⤵
        
        PID:4200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        39⤵
        
        PID:5020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        40⤵
        
        PID:2804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        41⤵
        
        PID:5048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        42⤵
        
        PID:1964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        43⤵
        
        PID:4080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        44⤵
        
        PID:2604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        45⤵
        
        PID:1224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        46⤵
        
        PID:2416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        47⤵
        
        PID:1296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        48⤵
        
        PID:4252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        49⤵
        
        PID:3124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        50⤵
        
        PID:2304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        51⤵
        
        PID:1044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        52⤵
        
        PID:2692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        53⤵
        
        PID:1368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        54⤵
        
        PID:5116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        55⤵
        
        PID:2916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        56⤵
        
        PID:4356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        57⤵
        
        PID:4816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        58⤵
        
        PID:2504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        59⤵
        
        PID:4956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        60⤵
        
        PID:2344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        61⤵
        
        PID:3924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        62⤵
        
        PID:4148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        63⤵
        
        PID:1612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        64⤵
        
        PID:4156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        65⤵
        
        PID:4932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        66⤵
        
        PID:3572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        67⤵
        
        PID:2784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        68⤵
        
        PID:1760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        69⤵
        
        PID:1460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        70⤵
        
        PID:4276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        71⤵
        
        PID:1400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        72⤵
        
        PID:4952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        73⤵
        
        PID:3216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        74⤵
        
        PID:748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        75⤵
        
        PID:4732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        76⤵
        
        PID:3040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        77⤵
        
        PID:3008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        78⤵
        
        PID:2600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        79⤵
        
        PID:2908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        80⤵
        
        PID:1508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        81⤵
        
        PID:4372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        82⤵
        
        PID:4500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        83⤵
        
        PID:3088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        84⤵
        
        PID:3728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        85⤵
        
        PID:1780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        86⤵
        
        PID:4144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        87⤵
        
        PID:4036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        88⤵
        
        PID:4420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        89⤵
        
        PID:5064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        90⤵
        
        PID:3444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        91⤵
        
        PID:1528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        92⤵
        
        PID:3596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        93⤵
        
        PID:808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        94⤵
        
        PID:3252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        95⤵
        
        PID:1420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        96⤵
        
        PID:1480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        97⤵
        
        PID:3600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        98⤵
        
        PID:528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        99⤵
        
        PID:5108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        100⤵
        
        PID:468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        101⤵
        
        PID:4984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        102⤵
        
        PID:3740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        103⤵
        
        PID:3180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        104⤵
        
        PID:1848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        105⤵
        
        PID:1756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        106⤵
        
        PID:532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        107⤵
        
        PID:1200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        108⤵
        
        PID:3172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        109⤵
        
        PID:3888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        110⤵
        
        PID:4476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        111⤵
        
        PID:4180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        112⤵
        
        PID:2356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        113⤵
        
        PID:1172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        114⤵
        
        PID:4988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        115⤵
        
        PID:1976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        116⤵
        
        PID:1916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        117⤵
        
        PID:1192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        118⤵
        
        PID:5092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        119⤵
        
        PID:5104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        120⤵
        
        PID:440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        121⤵
        
        PID:2264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        122⤵
        
        PID:2432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        123⤵
        
        PID:1584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        124⤵
        
        PID:4760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        125⤵
        
        PID:4008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        126⤵
        
        PID:1644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        127⤵
        
        PID:3564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        128⤵
        
        PID:2988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        129⤵
        
        PID:2448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        130⤵
        
        PID:2096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        131⤵
        
        PID:1492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        132⤵
        
        PID:3280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        133⤵
        
        PID:1796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        134⤵
        
        PID:4164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        135⤵
        
        PID:3116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        136⤵
        
        PID:4520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        137⤵
        
        PID:1384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        138⤵
        
        PID:1032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        139⤵
        
        PID:4584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        140⤵
        
        PID:644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        141⤵
        
        PID:4912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        142⤵
        
        PID:1520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        143⤵
        
        PID:5136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        144⤵
        
        PID:5152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        145⤵
        
        PID:5168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        146⤵
        
        PID:5180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        147⤵
        
        PID:5192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        148⤵
        
        PID:5208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        149⤵
        
        PID:5224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        150⤵
        
        PID:5236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        151⤵
        
        PID:5252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        152⤵
        
        PID:5268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        153⤵
        
        PID:5284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        154⤵
        
        PID:5300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        155⤵
        
        PID:5312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        156⤵
        
        PID:5324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        157⤵
        
        PID:5340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        158⤵
        
        PID:5352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        159⤵
        
        PID:5368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        160⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        161⤵
        
        PID:5400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        162⤵
        
        PID:5416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        163⤵
        
        PID:5432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        164⤵
        
        PID:5448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        165⤵
        
        PID:5460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        166⤵
        
        PID:5476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        167⤵
        
        PID:5492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        168⤵
        
        PID:5508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        169⤵
        
        PID:5524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        170⤵
        
        PID:5536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        171⤵
        
        PID:5548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        172⤵
        
        PID:5564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        173⤵
        
        PID:5576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        174⤵
        
        PID:5588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        175⤵
        
        PID:5600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        176⤵
        
        PID:5616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        177⤵
        
        PID:5632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        178⤵
        
        PID:5648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        179⤵
        
        PID:5664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        180⤵
        
        PID:5680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        181⤵
        
        PID:5696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        182⤵
        
        PID:5712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        183⤵
        
        PID:5724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        184⤵
        
        PID:5740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        185⤵
        
        PID:5752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        186⤵
        
        PID:5764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        187⤵
        
        PID:5780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        188⤵
        
        PID:5792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        189⤵
        
        PID:5804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        190⤵
        
        PID:5820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        191⤵
        
        PID:5832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        192⤵
        
        PID:5844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        193⤵
        
        PID:5856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        194⤵
        
        PID:5868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        195⤵
        
        PID:5880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        196⤵
        
        PID:5896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        197⤵
        
        PID:5908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        198⤵
        
        PID:5932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        199⤵
        
        PID:5944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        200⤵
        
        PID:5960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        201⤵
        
        PID:5976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        202⤵
        
        PID:5992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        203⤵
        
        PID:6008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        204⤵
        
        PID:6020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        205⤵
        
        PID:6036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        206⤵
        
        PID:6048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        207⤵
        
        PID:6064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        208⤵
        
        PID:6080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        209⤵
        
        PID:6096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        210⤵
        
        PID:6112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        211⤵
        
        PID:6128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        212⤵
        
        PID:6140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        213⤵
        
        PID:6156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        214⤵
        
        PID:6172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        215⤵
        
        PID:6184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        216⤵
        
        PID:6200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        217⤵
        
        PID:6212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        218⤵
        
        PID:6224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        219⤵
        
        PID:6236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        220⤵
        
        PID:6252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        221⤵
        
        PID:6268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        222⤵
        
        PID:6280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        223⤵
        
        PID:6292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        224⤵
        
        PID:6304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        225⤵
        
        PID:6320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        226⤵
        
        PID:6336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        227⤵
        
        PID:6348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        228⤵
        
        PID:6364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        229⤵
        
        PID:6380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        230⤵
        
        PID:6392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        231⤵
        
        PID:6404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        232⤵
        
        PID:6416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        233⤵
        
        PID:6428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        234⤵
        
        PID:6444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        235⤵
        
        PID:6460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        236⤵
        
        PID:6476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        237⤵
        
        PID:6492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        238⤵
        
        PID:6504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        239⤵
        
        PID:6516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        240⤵
        
        PID:6532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        241⤵
        
        PID:6548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        242⤵
        
        PID:6564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        243⤵
        
        PID:6580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        244⤵
        
        PID:6592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        245⤵
        
        PID:6612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        246⤵
        
        PID:6624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        247⤵
        
        PID:6636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        248⤵
        
        PID:6648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        249⤵
        
        PID:6664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        250⤵
        
        PID:6680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        251⤵
        
        PID:6692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        252⤵
        
        PID:6704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        253⤵
        
        PID:6724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        254⤵
        
        PID:6740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        255⤵
        
        PID:6752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        256⤵
        
        PID:6764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        257⤵
        
        PID:6776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        258⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        259⤵
        
        PID:6800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        260⤵
        
        PID:6816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        261⤵
        
        PID:6832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        262⤵
        
        PID:6844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        263⤵
        
        PID:6856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        264⤵
        
        PID:6868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        265⤵
        
        PID:6880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        266⤵
        
        PID:6892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        267⤵
        
        PID:6908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        268⤵
        
        PID:6924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        269⤵
        
        PID:6936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        270⤵
        
        PID:6948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        271⤵
        
        PID:6964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        272⤵
        
        PID:6980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        273⤵
        
        PID:6996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        274⤵
        
        PID:7012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        275⤵
        
        PID:7028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        276⤵
        
        PID:7040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        277⤵
        
        PID:7052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        278⤵
        
        PID:7064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        279⤵
        
        PID:7076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        280⤵
        
        PID:7092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        281⤵
        
        PID:7104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        282⤵
        
        PID:7116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        283⤵
        
        PID:7132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        284⤵
        
        PID:7148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        285⤵
        
        PID:7164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        286⤵
        
        PID:7172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        287⤵
        
        PID:7184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        288⤵
        
        PID:7196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        289⤵
        
        PID:7208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        290⤵
        
        PID:7220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        291⤵
        
        PID:7236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        292⤵
        
        PID:7252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        293⤵
        
        PID:7264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        294⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        295⤵
        
        PID:7288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        296⤵
        
        PID:7308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        297⤵
        
        PID:7320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        298⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        299⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        300⤵
        
        PID:7368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        301⤵
        
        PID:7380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        302⤵
        
        PID:7400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        303⤵
        
        PID:7412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        304⤵
        
        PID:7424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        305⤵
        
        PID:7456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        306⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        307⤵
        
        PID:7488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        308⤵
        
        PID:7504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        309⤵
        
        PID:7516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        310⤵
        
        PID:7532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        311⤵
        
        PID:7548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        312⤵
        
        PID:7564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        313⤵
        
        PID:7580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        314⤵
        
        PID:7592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        315⤵
        
        PID:7604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        316⤵
        
        PID:7616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        317⤵
        
        PID:7632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        318⤵
        
        PID:7648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        319⤵
        
        PID:7664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        320⤵
        
        PID:7676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        321⤵
        
        PID:7688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        322⤵
        
        PID:7704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        323⤵
        
        PID:7716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        324⤵
        
        PID:7728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        325⤵
        
        PID:7744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        326⤵
        
        PID:7760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        327⤵
        
        PID:7776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        328⤵
        
        PID:7792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        329⤵
        
        PID:7808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        330⤵
        
        PID:7824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        331⤵
        
        PID:7836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        332⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        333⤵
        
        PID:7860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        334⤵
        
        PID:7872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        335⤵
        
        PID:7888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        336⤵
        
        PID:7904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        337⤵
        
        PID:7924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        338⤵
        
        PID:7944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        339⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        340⤵
        
        PID:7972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        341⤵
        
        PID:7984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        342⤵
        
        PID:8000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        343⤵
        
        PID:8012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        344⤵
        
        PID:8028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        345⤵
        
        PID:8044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        346⤵
        
        PID:8056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        347⤵
        
        PID:8072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        348⤵
        
        PID:8084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        349⤵
        
        PID:8100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        350⤵
        
        PID:8116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        351⤵
        
        PID:8128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        352⤵
        
        PID:8140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        353⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        354⤵
        
        PID:8172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        355⤵
        
        PID:8184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        356⤵
        
        PID:8196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        357⤵
        
        PID:8216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        358⤵
        
        PID:8232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        359⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        360⤵
        
        PID:8260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        361⤵
        
        PID:8280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        362⤵
        
        PID:8296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        363⤵
        
        PID:8312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        364⤵
        
        PID:8328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        365⤵
        
        PID:8344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        366⤵
        
        PID:8360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        367⤵
        
        PID:8376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        368⤵
        
        PID:8388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        369⤵
        
        PID:8404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        370⤵
        
        PID:8436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        371⤵
        
        PID:8452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        372⤵
        
        PID:8468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        373⤵
        
        PID:8484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        374⤵
        
        PID:8500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        375⤵
        
        PID:8516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        376⤵
        
        PID:8528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        377⤵
        
        PID:8548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        378⤵
        
        PID:8560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        379⤵
        
        PID:8572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        380⤵
        
        PID:8588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        381⤵
        
        PID:8600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        382⤵
        
        PID:8612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        383⤵
        
        PID:8628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        384⤵
        
        PID:8640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        385⤵
        
        PID:8656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        386⤵
        
        PID:8668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        387⤵
        
        PID:8684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        388⤵
        
        PID:8700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        389⤵
        
        PID:8716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        390⤵
        
        PID:8732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        391⤵
        
        PID:8748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        392⤵
        
        PID:8764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        393⤵
        
        PID:8780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        394⤵
        
        PID:8796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        395⤵
        
        PID:8808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        396⤵
        
        PID:8820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        397⤵
        
        PID:8832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        398⤵
        
        PID:8856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        399⤵
        
        PID:8868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        400⤵
        
        PID:8884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        401⤵
        
        PID:8896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        402⤵
        
        PID:8912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        403⤵
        
        PID:8924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        404⤵
        
        PID:8940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        405⤵
        
        PID:8960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        406⤵
        
        PID:8972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        407⤵
        
        PID:8988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        408⤵
        
        PID:9000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        409⤵
        
        PID:9016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        410⤵
        
        PID:9028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        411⤵
        
        PID:9044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        412⤵
        
        PID:9060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        413⤵
        
        PID:9072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        414⤵
        
        PID:9084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        415⤵
        
        PID:9100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        416⤵
        
        PID:9112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        417⤵
        
        PID:9124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        418⤵
        
        PID:9136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        419⤵
        
        PID:9152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        420⤵
        
        PID:9164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        421⤵
        
        PID:9180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        422⤵
        
        PID:9196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        423⤵
        
        PID:9208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        424⤵
        
        PID:9220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        425⤵
        
        PID:9236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        426⤵
        
        PID:9248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        427⤵
        
        PID:9264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        428⤵
        
        PID:9280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        429⤵
        
        PID:9296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        430⤵
        
        PID:9308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        431⤵
        
        PID:9320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        432⤵
        
        PID:9332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        433⤵
        
        PID:9344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        434⤵
        
        PID:9356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        435⤵
        
        PID:9372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        436⤵
        
        PID:9384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        437⤵
        
        PID:9396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        438⤵
        
        PID:9412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        439⤵
        
        PID:9428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        440⤵
        
        PID:9444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        441⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        442⤵
        
        PID:9472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        443⤵
        
        PID:9484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        444⤵
        
        PID:9500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        445⤵
        
        PID:9516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        446⤵
        
        PID:9532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        447⤵
        
        PID:9548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        448⤵
        
        PID:9564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        449⤵
        
        PID:9580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        450⤵
        
        PID:9596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        451⤵
        
        PID:9612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        452⤵
        
        PID:9624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        453⤵
        
        PID:9640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        454⤵
        
        PID:9652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        455⤵
        
        PID:9668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        456⤵
        
        PID:9684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        457⤵
        
        PID:9700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        458⤵
        
        PID:9712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        459⤵
        
        PID:9728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        460⤵
        
        PID:9744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        461⤵
        
        PID:9760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        462⤵
        
        PID:9776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        463⤵
        
        PID:9792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        464⤵
        
        PID:9804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        465⤵
        
        PID:9824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        466⤵
        
        PID:9840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        467⤵
        
        PID:9856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        468⤵
        
        PID:9872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        469⤵
        
        PID:9884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        470⤵
        
        PID:9900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        471⤵
        
        PID:9912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        472⤵
        
        PID:9932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        473⤵
        
        PID:9944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        474⤵
        
        PID:9956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        475⤵
        
        PID:9968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        476⤵
        
        PID:9984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        477⤵
        
        PID:9996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        478⤵
        
        PID:10008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        479⤵
        
        PID:10020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        480⤵
        
        PID:10032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        481⤵
        
        PID:10044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        482⤵
        
        PID:10064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        483⤵
        
        PID:10076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        484⤵
        
        PID:10088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        485⤵
        
        PID:10104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        486⤵
        
        PID:10116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        487⤵
        
        PID:10128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        488⤵
        
        PID:10140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        489⤵
        
        PID:10156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        490⤵
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        491⤵
        
        PID:10184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        492⤵
        
        PID:10196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        493⤵
        
        PID:10208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        494⤵
        
        PID:10224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        495⤵
        
        PID:3556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        496⤵
        
        PID:10244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        497⤵
        
        PID:10260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        498⤵
        
        PID:10272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        499⤵
        
        PID:10288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        500⤵
        
        PID:10304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        501⤵
        
        PID:10320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        502⤵
        
        PID:10336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        503⤵
        
        PID:10348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        504⤵
        
        PID:10364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        505⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        506⤵
        
        PID:10396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        507⤵
        
        PID:10408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        508⤵
        
        PID:10424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        509⤵
        
        PID:10436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        510⤵
        
        PID:10452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        511⤵
        
        PID:10468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        512⤵
        
        PID:10480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        513⤵
        
        PID:10492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        514⤵
        
        PID:10504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        515⤵
        
        PID:10520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        516⤵
        
        PID:10532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        517⤵
        
        PID:10544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        518⤵
        
        PID:10560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        519⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        520⤵
        
        PID:10588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        521⤵
        
        PID:10600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        522⤵
        
        PID:10612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        523⤵
        
        PID:10624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        524⤵
        
        PID:10640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        525⤵
        
        PID:10656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        526⤵
        
        PID:10668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        527⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        528⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        529⤵
        
        PID:10712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        530⤵
        
        PID:10728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        531⤵
        
        PID:10740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        532⤵
        
        PID:10756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        533⤵
        
        PID:10768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        534⤵
        
        PID:10784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        535⤵
        
        PID:10796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        536⤵
        
        PID:10808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        537⤵
        
        PID:10824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        538⤵
        
        PID:10840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        539⤵
        
        PID:10852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        540⤵
        
        PID:10872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        541⤵
        
        PID:10884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        542⤵
        
        PID:10896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        543⤵
        
        PID:10912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        544⤵
        
        PID:10928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        545⤵
        
        PID:10944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        546⤵
        
        PID:10956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        547⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        548⤵
        
        PID:10984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        549⤵
        
        PID:10996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        550⤵
        
        PID:11008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        551⤵
        
        PID:11020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        552⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        553⤵
        
        PID:11044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        554⤵
        
        PID:11060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        555⤵
        
        PID:11076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        556⤵
        
        PID:11088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        557⤵
        
        PID:11100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        558⤵
        
        PID:11116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        559⤵
        
        PID:11132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        560⤵
        
        PID:11144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        561⤵
        
        PID:11160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        562⤵
        
        PID:11172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        563⤵
        
        PID:11188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        564⤵
        
        PID:11204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        565⤵
        
        PID:11220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        566⤵
        
        PID:11236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        567⤵
        
        PID:11248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        568⤵
        
        PID:10372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        569⤵
        
        PID:1112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        570⤵
        
        PID:11268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        571⤵
        
        PID:11280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        572⤵
        
        PID:11296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        573⤵
        
        PID:11308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        574⤵
        
        PID:11320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        575⤵
        
        PID:11332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        576⤵
        
        PID:11348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        577⤵
        
        PID:11360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        578⤵
        
        PID:11376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        579⤵
        
        PID:11392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        580⤵
        
        PID:11408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        581⤵
        
        PID:11420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        582⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        583⤵
        
        PID:11452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        584⤵
        
        PID:11464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        585⤵
        
        PID:11476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        586⤵
        
        PID:11492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        587⤵
        
        PID:11508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        588⤵
        
        PID:11524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        589⤵
        
        PID:11540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        590⤵
        
        PID:11556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        591⤵
        
        PID:11572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        592⤵
        
        PID:11584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        593⤵
        
        PID:11596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        594⤵
        
        PID:11612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        595⤵
        
        PID:11624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        596⤵
        
        PID:11640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        597⤵
        
        PID:11652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        598⤵
        
        PID:11672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        599⤵
        
        PID:11684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        600⤵
        
        PID:11708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        601⤵
        
        PID:11720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        602⤵
        
        PID:11732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        603⤵
        
        PID:11744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        604⤵
        
        PID:11760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        605⤵
        
        PID:11776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        606⤵
        
        PID:11792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        607⤵
        
        PID:11808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        608⤵
        
        PID:11824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        609⤵
        
        PID:11840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        610⤵
        
        PID:11852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        611⤵
        
        PID:11868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        612⤵
        
        PID:11880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        613⤵
        
        PID:11892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        614⤵
        
        PID:11908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        615⤵
        
        PID:11924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        616⤵
        
        PID:11940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        617⤵
        
        PID:11952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        618⤵
        
        PID:11968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        619⤵
        
        PID:11984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        620⤵
        
        PID:11996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        621⤵
        
        PID:12008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        622⤵
        
        PID:12020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        623⤵
        
        PID:12036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        624⤵
        
        PID:12048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        625⤵
        
        PID:12060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        626⤵
        
        PID:12076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        627⤵
        
        PID:12092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        628⤵
        
        PID:12112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        629⤵
        
        PID:12128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        630⤵
        
        PID:12140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        631⤵
        
        PID:12160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        632⤵
        
        PID:12176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        633⤵
        
        PID:12192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        634⤵
        
        PID:12212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        635⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        636⤵
        
        PID:12240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        637⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        638⤵
        
        PID:12272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        639⤵
        
        PID:10936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        640⤵
        
        PID:2664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        641⤵
        
        PID:4004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        642⤵
        
        PID:1220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        643⤵
        
        PID:12292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        644⤵
        
        PID:12308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        645⤵
        
        PID:12324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        646⤵
        
        PID:12340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        647⤵
        
        PID:12356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        648⤵
        
        PID:12372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        649⤵
        
        PID:12388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        650⤵
        
        PID:12404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        651⤵
        
        PID:12420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        652⤵
        
        PID:12436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        653⤵
        
        PID:12452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        654⤵
        
        PID:12468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        655⤵
        
        PID:12484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        656⤵
        
        PID:12500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        657⤵
        
        PID:12516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        658⤵
        
        PID:12528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        659⤵
        
        PID:12544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        660⤵
        
        PID:12560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        661⤵
        
        PID:12572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        662⤵
        
        PID:12588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        663⤵
        
        PID:12604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        664⤵
        
        PID:12620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        665⤵
        
        PID:12636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        666⤵
        
        PID:12652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        667⤵
        
        PID:12668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        668⤵
        
        PID:12688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        669⤵
        
        PID:12700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        670⤵
        
        PID:12716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        671⤵
        
        PID:12732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        672⤵
        
        PID:12748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        673⤵
        
        PID:12764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        674⤵
        
        PID:12780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        675⤵
        
        PID:12796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        676⤵
        
        PID:12812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        677⤵
        
        PID:12828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        678⤵
        
        PID:12856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        679⤵
        
        PID:12872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        680⤵
        
        PID:12888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        681⤵
        
        PID:12904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        682⤵
        
        PID:12920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        683⤵
        
        PID:12936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        684⤵
        
        PID:12952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        685⤵
        
        PID:12964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        686⤵
        
        PID:12980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        687⤵
        
        PID:12996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        688⤵
        
        PID:13012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        689⤵
        
        PID:13028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        690⤵
        
        PID:13044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        691⤵
        
        PID:13056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        692⤵
        
        PID:13068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        693⤵
        
        PID:13080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        694⤵
        
        PID:13092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        695⤵
        
        PID:13112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        696⤵
        
        PID:13128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        697⤵
        
        PID:13144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        698⤵
        
        PID:13156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        699⤵
        
        PID:13168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        700⤵
        
        PID:13188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        701⤵
        
        PID:13200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        702⤵
        
        PID:13216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        703⤵
        
        PID:13232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        704⤵
        
        PID:13248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        705⤵
        
        PID:13260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        706⤵
        
        PID:13280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        707⤵
        
        PID:13296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        708⤵
        
        PID:4484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        709⤵
        
        PID:2424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        710⤵
        
        PID:13324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        711⤵
        
        PID:13340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        712⤵
        
        PID:13352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        713⤵
        
        PID:13368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        714⤵
        
        PID:13380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        715⤵
        
        PID:13396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        716⤵
        
        PID:13412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        717⤵
        
        PID:13428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        718⤵
        
        PID:13444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        719⤵
        
        PID:13460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        720⤵
        
        PID:13472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        721⤵
        
        PID:13488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        722⤵
        
        PID:13508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        723⤵
        
        PID:13524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        724⤵
        
        PID:13540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        725⤵
        
        PID:13556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        726⤵
        
        PID:13572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        727⤵
        
        PID:13588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        728⤵
        
        PID:13604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        729⤵
        
        PID:13620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        730⤵
        
        PID:13636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        731⤵
        
        PID:13652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        732⤵
        
        PID:13668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        733⤵
        
        PID:13684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        734⤵
        
        PID:13700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        735⤵
        
        PID:13716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        736⤵
        
        PID:13728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        737⤵
        
        PID:13744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        738⤵
        
        PID:13760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        739⤵
        
        PID:13776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        740⤵
        
        PID:13792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        741⤵
        
        PID:13808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        742⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        743⤵
        
        PID:13840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        744⤵
        
        PID:13856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        745⤵
        
        PID:13872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        746⤵
        
        PID:13884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        747⤵
        
        PID:13900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        748⤵
        
        PID:13912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        749⤵
        
        PID:13924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        750⤵
        
        PID:13940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        751⤵
        
        PID:13956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        752⤵
        
        PID:13968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        753⤵
        
        PID:13984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        754⤵
        
        PID:13996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        755⤵
        
        PID:14012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        756⤵
        
        PID:14028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        757⤵
        
        PID:14044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        758⤵
        
        PID:14060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        759⤵
        
        PID:14076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        760⤵
        
        PID:14092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        761⤵
        
        PID:14108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        762⤵
        
        PID:14124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        763⤵
        
        PID:14140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        764⤵
        
        PID:14156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        765⤵
        
        PID:14172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        766⤵
        
        PID:14184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        767⤵
        
        PID:14200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        768⤵
        
        PID:14216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        769⤵
        
        PID:14232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        770⤵
        
        PID:14248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        771⤵
        
        PID:14264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        772⤵
        
        PID:14276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        773⤵
        
        PID:14288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        774⤵
        
        PID:14304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        775⤵
        
        PID:14320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        776⤵
        
        PID:13320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        777⤵
        
        PID:14352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        778⤵
        
        PID:14368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        779⤵
        
        PID:14384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        780⤵
        
        PID:14400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        781⤵
        
        PID:14416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        782⤵
        
        PID:14432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        783⤵
        
        PID:14444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        784⤵
        
        PID:14456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        785⤵
        
        PID:14472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        786⤵
        
        PID:14488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        787⤵
        
        PID:14504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        788⤵
        
        PID:14520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        789⤵
        
        PID:14536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        790⤵
        
        PID:14552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        791⤵
        
        PID:14568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        792⤵
        
        PID:14580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        793⤵
        
        PID:14596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        794⤵
        
        PID:14612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        795⤵
        
        PID:14632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        796⤵
        
        PID:14648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        797⤵
        
        PID:14660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        798⤵
        
        PID:14676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        799⤵
        
        PID:14692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        800⤵
        
        PID:14708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        801⤵
        
        PID:14720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        802⤵
        
        PID:14736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        803⤵
        
        PID:14752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        804⤵
        
        PID:14768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        805⤵
        
        PID:14780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        806⤵
        
        PID:14796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        807⤵
        
        PID:14812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        808⤵
        
        PID:14828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        809⤵
        
        PID:14840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        810⤵
        
        PID:14856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        811⤵
        
        PID:14872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        812⤵
        
        PID:14888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        813⤵
        
        PID:14904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        814⤵
        
        PID:14920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        815⤵
        
        PID:14936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        816⤵
        
        PID:14952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        817⤵
        
        PID:14968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        818⤵
        
        PID:14984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        819⤵
        
        PID:14996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        820⤵
        
        PID:15008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        821⤵
        
        PID:15024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        822⤵
        
        PID:15040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        823⤵
        
        PID:15056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        824⤵
        
        PID:15072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        825⤵
        
        PID:15088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        826⤵
        
        PID:15104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        827⤵
        
        PID:15120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        828⤵
        
        PID:15132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        829⤵
        
        PID:15144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        830⤵
        
        PID:15160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        831⤵
        
        PID:15176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        832⤵
        
        PID:15192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        833⤵
        
        PID:15204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        834⤵
        
        PID:15220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        835⤵
        
        PID:15236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        836⤵
        
        PID:15248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        837⤵
        
        PID:15264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        838⤵
        
        PID:15276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        839⤵
        
        PID:15292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        840⤵
        
        PID:15308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        841⤵
        
        PID:15324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        842⤵
        
        PID:15336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        843⤵
        
        PID:15348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        844⤵
        
        PID:14620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        845⤵
        
        PID:15372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        846⤵
        
        PID:15392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        847⤵
        
        PID:15408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        848⤵
        
        PID:15424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        849⤵
        
        PID:15440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        850⤵
        
        PID:15456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        851⤵
        
        PID:15472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        852⤵
        
        PID:15488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        853⤵
        
        PID:15500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        854⤵
        
        PID:15516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        855⤵
        
        PID:15532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        856⤵
        
        PID:15548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        857⤵
        
        PID:15564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        858⤵
        
        PID:15576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        859⤵
        
        PID:15588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        860⤵
        
        PID:15600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        861⤵
        
        PID:15612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        862⤵
        
        PID:15628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        863⤵
        
        PID:15644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        864⤵
        
        PID:15660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        865⤵
        
        PID:15672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        866⤵
        
        PID:15684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        867⤵
        
        PID:15700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        868⤵
        
        PID:15716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        869⤵
        
        PID:15732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        870⤵
        
        PID:15748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        871⤵
        
        PID:15764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        872⤵
        
        PID:15780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        873⤵
        
        PID:15796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        874⤵
        
        PID:15812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        875⤵
        
        PID:15828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        876⤵
        
        PID:15844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        877⤵
        
        PID:15860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        878⤵
        
        PID:15876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        879⤵
        
        PID:15892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        880⤵
        
        PID:15908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        881⤵
        
        PID:15924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        882⤵
        
        PID:15940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        883⤵
        
        PID:15956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        884⤵
        
        PID:15972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        885⤵
        
        PID:15988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        886⤵
        
        PID:16000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        887⤵
        
        PID:16016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        888⤵
        
        PID:16032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        889⤵
        
        PID:16048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        890⤵
        
        PID:16060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        891⤵
        
        PID:16076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        892⤵
        
        PID:16092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        893⤵
        
        PID:16104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        894⤵
        
        PID:16120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        895⤵
        
        PID:16136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        896⤵
        
        PID:16152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        897⤵
        
        PID:16168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        898⤵
        
        PID:16180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        899⤵
        
        PID:16192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        900⤵
        
        PID:16204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        901⤵
        
        PID:16220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        902⤵
        
        PID:16236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\16612b52a741bce51d03d40f646cfdb6_JaffaCakes118.dll,#1
        903⤵
        
        PID:16252

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4560-0-0x0000000075470000-0x00000000756F4000-memory.dmp

Filesize
2.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads