Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

7

OperaGXSetup.exe

windows7-x64

8

OperaGXSetup.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    150s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/02/2023, 03:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    OperaGXSetup.exe

  • Size

    3.4MB

  • MD5

    9fdd13383071613517f84abb6558f002

  • SHA1

    d77fe9375bfd755111f3688a67dfef8ae70e167c

  • SHA256

    353ee8dee221b9078c04612d4a671769954fe163a49f2aaf348feac0a98d3725

  • SHA512

    46bc9f429dd40e114f460de88a26a6420cbfc313c8e468e760d282aa038437fe0979f2a088b66d512ba1e7997d131100beab60abe8bcc54fb31171828dbb7a98

  • SSDEEP

    98304:QXm+RrQpoS/OINhIwQcqg8eLN2o3QDb96aLX61vP87/TAg1s6JXd+U:QXVE2IYc5ULX61vAltd+U

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Signatures

  • Downloads MZ/PE file
  • Checks computer location settings 2 TTPs 19 IoCs

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE 64 IoCs
  • Loads dropped DLL 64 IoCs
  • Reads user/profile data of web browsers 2 TTPs

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer
  • Registers COM server for autorun 1 TTPs 3 IoCs
    persistence
  • UPX packed file 10 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Adds Run key to start application 2 TTPs 2 IoCs
    persistence
  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Enumerates connected drives 3 TTPs 3 IoCs

    Attempts to read the root path of hard drives other than the default C: drive.

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

  • Checks processor information in registry 2 TTPs 2 IoCs

    Processor information is often read in order to detect sandboxing environments.

  • Enumerates system info in registry 2 TTPs 5 IoCs
  • Modifies registry class 48 IoCs
  • Modifies system certificate store 2 TTPs 19 IoCs
    evasionspywaretrojan
  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of AdjustPrivilegeToken 64 IoCs
  • Suspicious use of FindShellTrayWindow 17 IoCs
  • Suspicious use of SendNotifyMessage 25 IoCs
  • Suspicious use of SetWindowsHookEx 43 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\OperaGXSetup.exe
    "C:\Users\Admin\AppData\Local\Temp\OperaGXSetup.exe"
    1⤵
    • Loads dropped DLL
    • Enumerates connected drives
    • Modifies system certificate store
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:4640
    • C:\Users\Admin\AppData\Local\Temp\OperaGXSetup.exe
      C:\Users\Admin\AppData\Local\Temp\OperaGXSetup.exe --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=94.0.4606.101 --initial-client-data=0x2f4,0x2f8,0x2fc,0x2d0,0x300,0x750ae660,0x750ae670,0x750ae67c
      2⤵
      • Loads dropped DLL
      PID:1048
    • C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\OperaGXSetup.exe
      "C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\OperaGXSetup.exe" --version
      2⤵
      • Executes dropped EXE
      • Loads dropped DLL
      PID:4280
    • C:\Users\Admin\AppData\Local\Temp\OperaGXSetup.exe
      "C:\Users\Admin\AppData\Local\Temp\OperaGXSetup.exe" --backend --install --import-browser-data=0 --enable-stats=1 --enable-installer-stats=1 --general-interests=1 --general-location=1 --personalized-content=1 --personalized-ads=1 --launchopera=1 --installfolder="C:\Users\Admin\AppData\Local\Programs\Opera GX" --profile-folder --language=en --singleprofile=0 --copyonly=0 --allusers=0 --setdefaultbrowser=0 --pintotaskbar=1 --pintostartmenu=1 --pin-additional-shortcuts=1 --run-at-startup=1 --server-tracking-data=server_tracking_data --initial-pid=4640 --package-dir-prefix="C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_20230208043248" --session-guid=9cdfb6d7-eabe-414e-be51-dd9d2ba66f08 --server-tracking-blob=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 --desktopshortcut=1 --wait-for-package --initial-proc-handle=0C0B000000000000
      2⤵
      • Loads dropped DLL
      • Enumerates connected drives
      • Suspicious use of WriteProcessMemory
      PID:2544
      • C:\Users\Admin\AppData\Local\Temp\OperaGXSetup.exe
        C:\Users\Admin\AppData\Local\Temp\OperaGXSetup.exe --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=94.0.4606.101 --initial-client-data=0x2e4,0x2e8,0x2ec,0x2c0,0x2f0,0x724ee660,0x724ee670,0x724ee67c
        3⤵
        • Loads dropped DLL
        PID:4032
      • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\installer.exe
        "C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\installer.exe" --backend --initial-pid=4640 --install --import-browser-data=0 --enable-stats=1 --enable-installer-stats=1 --general-interests=1 --general-location=1 --personalized-content=1 --personalized-ads=1 --launchopera=1 --installfolder="C:\Users\Admin\AppData\Local\Programs\Opera GX" --profile-folder --language=en --singleprofile=0 --copyonly=0 --allusers=0 --setdefaultbrowser=0 --pintotaskbar=1 --pintostartmenu=1 --pin-additional-shortcuts=1 --run-at-startup=1 --server-tracking-data=server_tracking_data --package-dir="C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481" --session-guid=9cdfb6d7-eabe-414e-be51-dd9d2ba66f08 --server-tracking-blob=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 --desktopshortcut=1 --install-subfolder=94.0.4606.101
        3⤵
        • Executes dropped EXE
        • Loads dropped DLL
        • Registers COM server for autorun
        • Enumerates connected drives
        • Modifies registry class
        • Suspicious use of FindShellTrayWindow
        • Suspicious use of SendNotifyMessage
        • Suspicious use of SetWindowsHookEx
        • Suspicious use of WriteProcessMemory
        PID:4484
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\installer.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\installer.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win64 --annotation=prod=OperaDesktopGX --annotation=ver=94.0.4606.101 --initial-client-data=0x2c0,0x2c4,0x2c8,0x29c,0x2cc,0x7ff8a708acb8,0x7ff8a708acc8,0x7ff8a708acd8
          4⤵
          • Executes dropped EXE
          • Loads dropped DLL
          PID:1852
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\launcher.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\launcher.exe" --start-maximized
          4⤵
          • Executes dropped EXE
          • Suspicious use of WriteProcessMemory
          PID:4080
          • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_gx_splash.exe
            "C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_gx_splash.exe" --instance-name=0603c28fa4a788d681a330bade7a1273
            5⤵
            • Executes dropped EXE
            PID:4916
          • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
            "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --start-maximized --ran-launcher --instance-name=0603c28fa4a788d681a330bade7a1273 --splash-handle=1032
            5⤵
            • Executes dropped EXE
            • Loads dropped DLL
            • Enumerates system info in registry
            • Suspicious use of WriteProcessMemory
            PID:4816
            • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_crashreporter.exe
              "C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_crashreporter.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win64 --annotation=prod=OperaDesktopGX --annotation=ver=94.0.4606.101 --initial-client-data=0x294,0x298,0x29c,0x270,0x2a0,0x7ff89eb80910,0x7ff89eb80920,0x7ff89eb80930
              6⤵
              • Executes dropped EXE
              PID:2024
            • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
              "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --enable-quic --start-stack-profiler --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=1888 --field-trial-handle=1968,i,18123572694213501378,11585845673978780528,131072 /prefetch:8
              6⤵
                PID:3424
              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=gpu-process --start-stack-profiler --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1624 --field-trial-handle=1968,i,18123572694213501378,11585845673978780528,131072 /prefetch:2
                6⤵
                • Executes dropped EXE
                • Loads dropped DLL
                PID:3356
      • C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\assistant\_sfx.exe
        "C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\assistant\_sfx.exe"
        2⤵
        • Executes dropped EXE
        PID:224
      • C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\assistant\assistant_installer.exe
        "C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\assistant\assistant_installer.exe" --version
        2⤵
        • Executes dropped EXE
        • Suspicious use of WriteProcessMemory
        PID:1668
        • C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\assistant\assistant_installer.exe
          "C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\assistant\assistant_installer.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=73.0.3856.382 --initial-client-data=0x26c,0x270,0x274,0x248,0x278,0x304f48,0x304f58,0x304f64
          3⤵
          • Executes dropped EXE
          PID:3824
    • C:\Windows\SysWOW64\DllHost.exe
      C:\Windows\SysWOW64\DllHost.exe /Processid:{60A90A2F-858D-42AF-8929-82BE9D99E8A1}
      1⤵
      • Suspicious use of SetWindowsHookEx
      PID:4908
    • C:\Windows\system32\AUDIODG.EXE
      C:\Windows\system32\AUDIODG.EXE 0x4a0 0x4f0
      1⤵
      • Suspicious use of AdjustPrivilegeToken
      PID:4004
    • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
      "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --start-maximized --ran-launcher --instance-name=0603c28fa4a788d681a330bade7a1273 --splash-handle=1032 --flag-switches-begin --flag-switches-end --enable-quic --lowered-browser
      1⤵
      • Checks computer location settings
      • Executes dropped EXE
      • Loads dropped DLL
      • Adds Run key to start application
      • Checks processor information in registry
      • Enumerates system info in registry
      • Modifies system certificate store
      • Suspicious behavior: EnumeratesProcesses
      • Suspicious use of AdjustPrivilegeToken
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SendNotifyMessage
      PID:1880
      • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_crashreporter.exe
        "C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_crashreporter.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win64 --annotation=prod=OperaDesktopGX --annotation=ver=94.0.4606.101 --initial-client-data=0x294,0x298,0x29c,0x270,0x2a0,0x7ff89eb80910,0x7ff89eb80920,0x7ff89eb80930
        2⤵
        • Executes dropped EXE
        PID:4884
      • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
        "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=gpu-process --start-stack-profiler --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1748 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:2
        2⤵
        • Executes dropped EXE
        • Loads dropped DLL
        PID:3420
      • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
        "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --enable-quic --start-stack-profiler --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=1896 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
        2⤵
        • Executes dropped EXE
        • Loads dropped DLL
        PID:4972
      • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
        "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=1692 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
        2⤵
        • Executes dropped EXE
        • Loads dropped DLL
        PID:2392
      • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
        "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=1892 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
        2⤵
          PID:4180
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=3000 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
          2⤵
          • Executes dropped EXE
          • Loads dropped DLL
          PID:4336
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=3012 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
          2⤵
          • Executes dropped EXE
          • Loads dropped DLL
          PID:1444
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=3024 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
          2⤵
          • Executes dropped EXE
          • Loads dropped DLL
          • Modifies registry class
          • Suspicious use of AdjustPrivilegeToken
          PID:4916
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=2988 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
          2⤵
          • Executes dropped EXE
          • Loads dropped DLL
          PID:960
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=2240 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
          2⤵
          • Executes dropped EXE
          • Loads dropped DLL
          PID:2200
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=14 --mojo-platform-channel-handle=3128 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
          • Checks computer location settings
          • Executes dropped EXE
          • Loads dropped DLL
          PID:4632
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=13 --mojo-platform-channel-handle=3136 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
          • Checks computer location settings
          • Executes dropped EXE
          • Loads dropped DLL
          PID:4592
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=15 --mojo-platform-channel-handle=4348 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
          • Checks computer location settings
          • Executes dropped EXE
          • Loads dropped DLL
          PID:2488
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=16 --mojo-platform-channel-handle=4364 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
          • Checks computer location settings
          • Executes dropped EXE
          • Loads dropped DLL
          PID:3424
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --mojo-platform-channel-handle=4396 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
          • Checks computer location settings
          • Executes dropped EXE
          • Loads dropped DLL
          PID:3288
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=18 --mojo-platform-channel-handle=4424 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
          • Checks computer location settings
          • Executes dropped EXE
          • Loads dropped DLL
          PID:3036
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --extension-process --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=19 --mojo-platform-channel-handle=4636 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
          • Checks computer location settings
          • Executes dropped EXE
          • Loads dropped DLL
          PID:3084
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --mojo-platform-channel-handle=4656 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
          • Checks computer location settings
          • Executes dropped EXE
          • Loads dropped DLL
          PID:2004
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --extension-process --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=5 --mojo-platform-channel-handle=4856 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
          • Checks computer location settings
          • Executes dropped EXE
          • Loads dropped DLL
          PID:4936
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=5064 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
          2⤵
          • Executes dropped EXE
          • Loads dropped DLL
          PID:5180
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --extension-process --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=6 --mojo-platform-channel-handle=5288 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
          • Checks computer location settings
          • Executes dropped EXE
          • Loads dropped DLL
          PID:5620
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=5468 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
          2⤵
          • Executes dropped EXE
          • Modifies registry class
          PID:5636
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --extension-process --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --mojo-platform-channel-handle=5740 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
          • Checks computer location settings
          • Executes dropped EXE
          PID:5656
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_autoupdate.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_autoupdate.exe" --user-data-dir="C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable" --pipeid=oauc_pipebbf75761f34e48ef16427d916ed763c8
          2⤵
          • Executes dropped EXE
          PID:5668
          • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_autoupdate.exe
            "C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_autoupdate.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win64 --annotation=prod=OperaDesktopGX --annotation=ver=94.0.4606.101 --initial-client-data=0x21c,0x220,0x224,0x1f8,0x228,0x7ff62fecbb58,0x7ff62fecbb68,0x7ff62fecbb78
            3⤵
            • Executes dropped EXE
            PID:5808
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --extension-process --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --mojo-platform-channel-handle=5972 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
          • Checks computer location settings
          • Executes dropped EXE
          PID:5720
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --extension-process --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=23 --mojo-platform-channel-handle=6388 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
          • Checks computer location settings
          • Executes dropped EXE
          PID:5828
        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --extension-process --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=24 --mojo-platform-channel-handle=6548 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
          2⤵
            PID:5956
          • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
            "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --extension-process --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=25 --mojo-platform-channel-handle=6600 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
            2⤵
            • Checks computer location settings
            • Executes dropped EXE
            PID:6124
          • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
            "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --extension-process --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=26 --mojo-platform-channel-handle=5572 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
            2⤵
            • Checks computer location settings
            • Executes dropped EXE
            PID:608
          • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
            "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=4844 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
            2⤵
            • Executes dropped EXE
            PID:2064
          • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
            "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=7316 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
            2⤵
              PID:4668
            • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
              "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=7188 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
              2⤵
              • Executes dropped EXE
              PID:4104
            • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
              "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=7180 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
              2⤵
              • Executes dropped EXE
              PID:4904
            • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
              "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=7092 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
              2⤵
              • Executes dropped EXE
              PID:2760
            • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
              "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=7040 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
              2⤵
              • Executes dropped EXE
              PID:4620
            • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
              "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=7056 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
              2⤵
                PID:2700
              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=7380 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                2⤵
                • Executes dropped EXE
                PID:5664
              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=7392 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                2⤵
                • Executes dropped EXE
                PID:5336
              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=7404 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                2⤵
                • Executes dropped EXE
                PID:3608
              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=3524 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                2⤵
                • Executes dropped EXE
                PID:1140
              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=5104 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                2⤵
                • Executes dropped EXE
                PID:1652
              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=3956 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                2⤵
                • Executes dropped EXE
                PID:4928
              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=3924 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                2⤵
                • Executes dropped EXE
                PID:5072
              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=5132 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                2⤵
                  PID:4952
                • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                  "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=5096 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                  2⤵
                  • Executes dropped EXE
                  PID:4204
                • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                  "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=3544 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                  2⤵
                  • Executes dropped EXE
                  PID:4588
                • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                  "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=3628 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                  2⤵
                    PID:8
                  • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                    "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=3620 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                    2⤵
                      PID:3864
                    • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                      "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=3592 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                      2⤵
                        PID:736
                      • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                        "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=3556 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                        2⤵
                          PID:4848
                        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=5960 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                          2⤵
                            PID:5584
                          • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                            "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=7844 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                            2⤵
                              PID:5220
                            • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                              "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8016 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                              2⤵
                                PID:4232
                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8712 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                2⤵
                                  PID:5820
                                • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                  "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8732 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                  2⤵
                                    PID:2712
                                  • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                    "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8744 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                    2⤵
                                    • Executes dropped EXE
                                    PID:4668
                                  • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                    "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8756 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                    2⤵
                                    • Executes dropped EXE
                                    PID:4952
                                  • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                    "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8768 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                    2⤵
                                      PID:1492
                                    • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                      "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8780 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                      2⤵
                                        PID:5972
                                      • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                        "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8792 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                        2⤵
                                          PID:2196
                                        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8804 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                          2⤵
                                            PID:6096
                                          • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                            "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8816 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                            2⤵
                                              PID:4596
                                            • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                              "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8828 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                              2⤵
                                                PID:4156
                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8840 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                2⤵
                                                  PID:3492
                                                • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                  "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8852 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                  2⤵
                                                    PID:904
                                                  • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                    "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=3832 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                    2⤵
                                                      PID:3872
                                                    • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                      "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8752 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                      2⤵
                                                        PID:3140
                                                      • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                        "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=6760 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                        2⤵
                                                          PID:5700
                                                        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=3504 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                          2⤵
                                                            PID:4188
                                                          • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                            "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8204 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                            2⤵
                                                              PID:1312
                                                            • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                              "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8392 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                              2⤵
                                                                PID:4276
                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=10148 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                                2⤵
                                                                  PID:4576
                                                                • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                  "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=10160 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                                  2⤵
                                                                    PID:5496
                                                                  • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                    "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=10144 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                                    2⤵
                                                                    • Executes dropped EXE
                                                                    • Loads dropped DLL
                                                                    PID:4180
                                                                  • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                    "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=10852 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                                    2⤵
                                                                      PID:5580
                                                                    • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                      "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=11012 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                                      2⤵
                                                                        PID:3228
                                                                      • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                        "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=11036 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                                        2⤵
                                                                          PID:5940
                                                                        • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                          "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=11348 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                                          2⤵
                                                                            PID:4860
                                                                          • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                            "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=10828 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                                            2⤵
                                                                            • Executes dropped EXE
                                                                            PID:2700
                                                                          • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                            "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=11612 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                                            2⤵
                                                                            • Checks computer location settings
                                                                            • Executes dropped EXE
                                                                            PID:5956
                                                                          • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                            "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=10164 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                                            2⤵
                                                                              PID:5680
                                                                            • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                              "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --extension-process --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=81 --mojo-platform-channel-handle=8832 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
                                                                              2⤵
                                                                              • Checks computer location settings
                                                                              PID:4648
                                                                            • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                              "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=renderer --extension-process --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=82 --mojo-platform-channel-handle=11780 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:1
                                                                              2⤵
                                                                              • Checks computer location settings
                                                                              PID:1528
                                                                            • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                              "C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --enable-quic --with-feature:address-bar-dropdown-unfiltered-full=off --with-feature:aliexpress-modal=off --with-feature:booking-modal=off --with-feature:continue-on-booking=on --with-feature:continue-shopping=on --with-feature:continue-shopping-2=on --with-feature:continue-shopping-5=on --with-feature:continue-shopping-structured-partners=on --with-feature:feature-remote-disable-updates-testing-flag=off --with-feature:feature-remote-updates-testing-flag=on --with-feature:gx-partners=off --with-feature:gx-video-to-phone=on --with-feature:logitech-led-support=on --with-feature:opera-account-popup=on --with-feature:play-again=on --with-feature:run-at-startup-default=on --with-feature:sd-suggestions-external=on --with-feature:side-profiles=on --with-feature:sitecheck-age=on --with-feature:tiktok-panel=off --with-feature:yandex-zen-leads-for-nonsdusers=off --with-feature:yandex-zen-lift-up=off --with-feature:yandex-zen-news-next=on --with-feature:installer-experiment-test=off --ab_tests=GXCTest10-test:DNA-99214_GXCTest10 --mojo-platform-channel-handle=8352 --field-trial-handle=1988,i,8135765272620026723,16946068707499206234,131072 /prefetch:8
                                                                              2⤵
                                                                                PID:3632
                                                                            • C:\Users\Admin\AppData\Local\Programs\Opera GX\launcher.exe
                                                                              "C:\Users\Admin\AppData\Local\Programs\Opera GX\launcher.exe" --scheduledautoupdate --autoupdaterequesttype=automatic --autoupdateoperaversion=94.0.4606.101 --newautoupdaterlogic
                                                                              1⤵
                                                                              • Executes dropped EXE
                                                                              PID:5564
                                                                              • C:\Users\Admin\AppData\Local\Temp\.opera\9B44A87EC5AC\installer.exe
                                                                                "C:\Users\Admin\AppData\Local\Temp\.opera\9B44A87EC5AC\installer.exe" --version
                                                                                2⤵
                                                                                • Executes dropped EXE
                                                                                PID:5240
                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_autoupdate.exe
                                                                                "C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_autoupdate.exe" --pipeid=oauc_task_pipec12dca2c6d0f4844aad7502765c89329 --user-data-dir="C:\Users\Admin\AppData\Local\Temp\.opera\9B44A87EC5AC" --scheduledtask
                                                                                2⤵
                                                                                • Executes dropped EXE
                                                                                PID:5964
                                                                                • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_autoupdate.exe
                                                                                  "C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_autoupdate.exe" --type=crashpad-handler --user-data-dir=C:\Users\Admin\AppData\Local\Temp\.opera\9B44A87EC5AC /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Temp\.opera\9B44A87EC5AC\Crash Reports" --crash-count-file=C:\Users\Admin\AppData\Local\Temp\.opera\9B44A87EC5AC\crash_count.txt --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win64 --annotation=prod=OperaDesktopGX --annotation=ver=94.0.4606.101 --initial-client-data=0x21c,0x220,0x224,0x1f8,0x228,0x7ff62fecbb58,0x7ff62fecbb68,0x7ff62fecbb78
                                                                                  3⤵
                                                                                  • Executes dropped EXE
                                                                                  PID:5344
                                                                                • C:\Users\Admin\AppData\Local\Temp\.opera\9B44A87EC5AC\installer.exe
                                                                                  "C:\Users\Admin\AppData\Local\Temp\.opera\9B44A87EC5AC\installer.exe" --version
                                                                                  3⤵
                                                                                    PID:1988

                                                                              Network

                                                                              MITRE ATT&CK Enterprise v6

                                                                              Replay Monitor

                                                                              Loading Replay Monitor...

                                                                              Downloads

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\d3dcompiler_47.dll
                                                                                Filesize

                                                                                4.7MB

                                                                                MD5

                                                                                79223064bebdbc7e2ce8753167a23935

                                                                                SHA1

                                                                                5c3db184e7337b6068b19f88bde979defc7bc235

                                                                                SHA256

                                                                                2b5cbf1e6c7542e62dcec2423870fef2f8dcc085e3d3001448f2062e04619452

                                                                                SHA512

                                                                                3c7bcf026081013afc9b35b5859995af80f9c5202af9779ba196f07a739699a6fb99920f342c383a2cade105efcc65a4d647be346d31e4702b1b804996c35436

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\installer.exe
                                                                                Filesize

                                                                                6.6MB

                                                                                MD5

                                                                                2acb6aaeac2244269951b0dc07b2940b

                                                                                SHA1

                                                                                c6fc0a2138208d41f7fab6ee4493493d9e571991

                                                                                SHA256

                                                                                e8e6c2c8785a0cf9bd881db4b7e39d838148e92cc81e29b923e04c3fcfaba330

                                                                                SHA512

                                                                                8c31866ac26971283578e9249432d1ce42baf955480afa5d11c2f38726e4d79f290de34e798fdeb2e2c61770b33745c95244814b0ad8fc34b132ff043c607b08

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\installer.exe
                                                                                Filesize

                                                                                6.6MB

                                                                                MD5

                                                                                2acb6aaeac2244269951b0dc07b2940b

                                                                                SHA1

                                                                                c6fc0a2138208d41f7fab6ee4493493d9e571991

                                                                                SHA256

                                                                                e8e6c2c8785a0cf9bd881db4b7e39d838148e92cc81e29b923e04c3fcfaba330

                                                                                SHA512

                                                                                8c31866ac26971283578e9249432d1ce42baf955480afa5d11c2f38726e4d79f290de34e798fdeb2e2c61770b33745c95244814b0ad8fc34b132ff043c607b08

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\libEGL.dll
                                                                                Filesize

                                                                                473KB

                                                                                MD5

                                                                                b6e514b7def12e11d20a479fd22a25aa

                                                                                SHA1

                                                                                9d73807991049c8fb2003d1239bc168fc319c5a8

                                                                                SHA256

                                                                                5576eba2353b75eeb2b35f658deae5b5113a8d30c606ddf362c4bc1c1221ddd0

                                                                                SHA512

                                                                                d529027a5ed9d1f59a427d7f8b4f046a7b51e2f62c1236f303990e8f706ef37a44055e0022ce2b43a64a35aa1fcdd2438cc7e6fc609a7f2cd469ab754590d7fd

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\libGLESv2.dll
                                                                                Filesize

                                                                                7.2MB

                                                                                MD5

                                                                                45255f64c6628cfbe1e7ef357f565616

                                                                                SHA1

                                                                                20ef70981f3d3d7a8867c7d028ab8e7ce8f70cee

                                                                                SHA256

                                                                                68b3b49dce189923c7207b6db87408d50e13363b952b50efd705d8bc6cf28cdc

                                                                                SHA512

                                                                                b811914fe67527914bb5274dc090e788fa171abcb7e441d8925268e03534e0611e5e54001867ae2a43565b630dccf7c1e84868c8b08ec724020f6f7be8a36721

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_browser.dll
                                                                                Filesize

                                                                                186.6MB

                                                                                MD5

                                                                                6732fd2ecf1753c83fb384599803c1e5

                                                                                SHA1

                                                                                57065b72c71bcd1a717cfd120e84819d03524073

                                                                                SHA256

                                                                                b9032e1a3da8faf0247c0441f4c7ddaccf6b543cb9b313934e171c665bbdc148

                                                                                SHA512

                                                                                d58477d1a23b00f6a25596d83eaffb20640da6fe8363b1dbd3e68bfc7185ea3ec9108d85ed45bd105d48370c00f503ea2ad7a971159b6be183c19348c97e07cc

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_browser.dll
                                                                                Filesize

                                                                                186.6MB

                                                                                MD5

                                                                                6732fd2ecf1753c83fb384599803c1e5

                                                                                SHA1

                                                                                57065b72c71bcd1a717cfd120e84819d03524073

                                                                                SHA256

                                                                                b9032e1a3da8faf0247c0441f4c7ddaccf6b543cb9b313934e171c665bbdc148

                                                                                SHA512

                                                                                d58477d1a23b00f6a25596d83eaffb20640da6fe8363b1dbd3e68bfc7185ea3ec9108d85ed45bd105d48370c00f503ea2ad7a971159b6be183c19348c97e07cc

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_browser.dll
                                                                                Filesize

                                                                                186.6MB

                                                                                MD5

                                                                                6732fd2ecf1753c83fb384599803c1e5

                                                                                SHA1

                                                                                57065b72c71bcd1a717cfd120e84819d03524073

                                                                                SHA256

                                                                                b9032e1a3da8faf0247c0441f4c7ddaccf6b543cb9b313934e171c665bbdc148

                                                                                SHA512

                                                                                d58477d1a23b00f6a25596d83eaffb20640da6fe8363b1dbd3e68bfc7185ea3ec9108d85ed45bd105d48370c00f503ea2ad7a971159b6be183c19348c97e07cc

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_browser.dll
                                                                                Filesize

                                                                                186.6MB

                                                                                MD5

                                                                                6732fd2ecf1753c83fb384599803c1e5

                                                                                SHA1

                                                                                57065b72c71bcd1a717cfd120e84819d03524073

                                                                                SHA256

                                                                                b9032e1a3da8faf0247c0441f4c7ddaccf6b543cb9b313934e171c665bbdc148

                                                                                SHA512

                                                                                d58477d1a23b00f6a25596d83eaffb20640da6fe8363b1dbd3e68bfc7185ea3ec9108d85ed45bd105d48370c00f503ea2ad7a971159b6be183c19348c97e07cc

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_browser.dll
                                                                                Filesize

                                                                                186.6MB

                                                                                MD5

                                                                                6732fd2ecf1753c83fb384599803c1e5

                                                                                SHA1

                                                                                57065b72c71bcd1a717cfd120e84819d03524073

                                                                                SHA256

                                                                                b9032e1a3da8faf0247c0441f4c7ddaccf6b543cb9b313934e171c665bbdc148

                                                                                SHA512

                                                                                d58477d1a23b00f6a25596d83eaffb20640da6fe8363b1dbd3e68bfc7185ea3ec9108d85ed45bd105d48370c00f503ea2ad7a971159b6be183c19348c97e07cc

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_browser.dll
                                                                                Filesize

                                                                                186.6MB

                                                                                MD5

                                                                                6732fd2ecf1753c83fb384599803c1e5

                                                                                SHA1

                                                                                57065b72c71bcd1a717cfd120e84819d03524073

                                                                                SHA256

                                                                                b9032e1a3da8faf0247c0441f4c7ddaccf6b543cb9b313934e171c665bbdc148

                                                                                SHA512

                                                                                d58477d1a23b00f6a25596d83eaffb20640da6fe8363b1dbd3e68bfc7185ea3ec9108d85ed45bd105d48370c00f503ea2ad7a971159b6be183c19348c97e07cc

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_crashreporter.exe
                                                                                Filesize

                                                                                2.3MB

                                                                                MD5

                                                                                4a093754db120b367d9b34b8008f1d1e

                                                                                SHA1

                                                                                fe4b71acb5a3b4a416b5dc969c17e41883c29232

                                                                                SHA256

                                                                                52c708f0f1fe8ce82c3cf02adefd88b919ce0b1dec968986274cbdd2e3fea170

                                                                                SHA512

                                                                                428e5f2ca5e4366663f3da483e57196c73e93d0ea0786dcbd0de55a59d00caf956e9145cb0dc771d6ac0a2913d58e9d435ea9af526bbf85567c8b8c6a2556b58

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_crashreporter.exe
                                                                                Filesize

                                                                                2.3MB

                                                                                MD5

                                                                                4a093754db120b367d9b34b8008f1d1e

                                                                                SHA1

                                                                                fe4b71acb5a3b4a416b5dc969c17e41883c29232

                                                                                SHA256

                                                                                52c708f0f1fe8ce82c3cf02adefd88b919ce0b1dec968986274cbdd2e3fea170

                                                                                SHA512

                                                                                428e5f2ca5e4366663f3da483e57196c73e93d0ea0786dcbd0de55a59d00caf956e9145cb0dc771d6ac0a2913d58e9d435ea9af526bbf85567c8b8c6a2556b58

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_elf.dll
                                                                                Filesize

                                                                                1.1MB

                                                                                MD5

                                                                                c0675231ce354acf9dc13ada26eea271

                                                                                SHA1

                                                                                1217588610e11b05aeb7e8a7cff6b20dc6d33ebc

                                                                                SHA256

                                                                                af1a3a0c1e9227d7bdd3e4d30bc823a183c05a1245538ce1538247341129b56a

                                                                                SHA512

                                                                                75ac0fca1409bb784dce21e4b8653330b1549599ba02b51233e5fc946eb924fa8e10c11f17e5ccbc2dcb91d1ae6cb234039379713cd44aa9b506dbcaad6f08f7

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_elf.dll
                                                                                Filesize

                                                                                1.1MB

                                                                                MD5

                                                                                c0675231ce354acf9dc13ada26eea271

                                                                                SHA1

                                                                                1217588610e11b05aeb7e8a7cff6b20dc6d33ebc

                                                                                SHA256

                                                                                af1a3a0c1e9227d7bdd3e4d30bc823a183c05a1245538ce1538247341129b56a

                                                                                SHA512

                                                                                75ac0fca1409bb784dce21e4b8653330b1549599ba02b51233e5fc946eb924fa8e10c11f17e5ccbc2dcb91d1ae6cb234039379713cd44aa9b506dbcaad6f08f7

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_elf.dll
                                                                                Filesize

                                                                                1.1MB

                                                                                MD5

                                                                                c0675231ce354acf9dc13ada26eea271

                                                                                SHA1

                                                                                1217588610e11b05aeb7e8a7cff6b20dc6d33ebc

                                                                                SHA256

                                                                                af1a3a0c1e9227d7bdd3e4d30bc823a183c05a1245538ce1538247341129b56a

                                                                                SHA512

                                                                                75ac0fca1409bb784dce21e4b8653330b1549599ba02b51233e5fc946eb924fa8e10c11f17e5ccbc2dcb91d1ae6cb234039379713cd44aa9b506dbcaad6f08f7

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_elf.dll
                                                                                Filesize

                                                                                1.1MB

                                                                                MD5

                                                                                c0675231ce354acf9dc13ada26eea271

                                                                                SHA1

                                                                                1217588610e11b05aeb7e8a7cff6b20dc6d33ebc

                                                                                SHA256

                                                                                af1a3a0c1e9227d7bdd3e4d30bc823a183c05a1245538ce1538247341129b56a

                                                                                SHA512

                                                                                75ac0fca1409bb784dce21e4b8653330b1549599ba02b51233e5fc946eb924fa8e10c11f17e5ccbc2dcb91d1ae6cb234039379713cd44aa9b506dbcaad6f08f7

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_elf.dll
                                                                                Filesize

                                                                                1.1MB

                                                                                MD5

                                                                                c0675231ce354acf9dc13ada26eea271

                                                                                SHA1

                                                                                1217588610e11b05aeb7e8a7cff6b20dc6d33ebc

                                                                                SHA256

                                                                                af1a3a0c1e9227d7bdd3e4d30bc823a183c05a1245538ce1538247341129b56a

                                                                                SHA512

                                                                                75ac0fca1409bb784dce21e4b8653330b1549599ba02b51233e5fc946eb924fa8e10c11f17e5ccbc2dcb91d1ae6cb234039379713cd44aa9b506dbcaad6f08f7

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_elf.dll
                                                                                Filesize

                                                                                1.1MB

                                                                                MD5

                                                                                c0675231ce354acf9dc13ada26eea271

                                                                                SHA1

                                                                                1217588610e11b05aeb7e8a7cff6b20dc6d33ebc

                                                                                SHA256

                                                                                af1a3a0c1e9227d7bdd3e4d30bc823a183c05a1245538ce1538247341129b56a

                                                                                SHA512

                                                                                75ac0fca1409bb784dce21e4b8653330b1549599ba02b51233e5fc946eb924fa8e10c11f17e5ccbc2dcb91d1ae6cb234039379713cd44aa9b506dbcaad6f08f7

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\opera_gx_splash.exe
                                                                                Filesize

                                                                                2.6MB

                                                                                MD5

                                                                                93fc206f5389040cca1783454aee5f32

                                                                                SHA1

                                                                                07f146ce2cd527ab73b619e9ebc560c6b5a7634a

                                                                                SHA256

                                                                                ebae017fbef00033c78157d9ad698420de370e8e583f13503a4333f0f7505c23

                                                                                SHA512

                                                                                69b9105c8ed2912b8698f6c3377315e31652f7849476c2d632b0ee1378b03d6fbb5162063b2886dc7ea1cd10a7602b0e448105ffdfc4c1d2954784409cae498e

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\vk_swiftshader.dll
                                                                                Filesize

                                                                                4.7MB

                                                                                MD5

                                                                                342e98a62f0d31f59dfbc8f81aae15f1

                                                                                SHA1

                                                                                9c212b6f04da078a2305b02ea935195d561583d1

                                                                                SHA256

                                                                                854e2d0c960bca48eca9037edae2a18253d9184c82046001ac9b1a01f0c0121f

                                                                                SHA512

                                                                                669a619cda13d93405ad0ffaff06414e67edff339f69642b36fb20dd96853a454c0d76279a3da34fff6245b7df6f781421ba50d0a95109644013c730e3487c90

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\94.0.4606.101\vulkan-1.dll
                                                                                Filesize

                                                                                895KB

                                                                                MD5

                                                                                d2df0ceb6c53e2c5cbac9a45011cbf45

                                                                                SHA1

                                                                                76c5face1474da51dd917954614f2f2e7238c54e

                                                                                SHA256

                                                                                7ed490b2441083cdcaed9742bea896ef4a71c739ab3cdbd4bdcd762e6938845b

                                                                                SHA512

                                                                                4a0f39b32d4144ce79c166d7a7f27cbaef47949537aaaf76adcf8b99969fc9e2c91c35dd4f945d0ecb6aefe21386575f31709b7d4848c3bf4e2244923e6c7106

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\installation_status.json
                                                                                Filesize

                                                                                11KB

                                                                                MD5

                                                                                b726cec2bfc4ab63338404839e04dd2e

                                                                                SHA1

                                                                                b8374bd8864f453f5413837f2b97abe6316025a9

                                                                                SHA256

                                                                                488dc5a45579e2036af5588dcc2815809b6afa22a7cd18712f519f433fb6694f

                                                                                SHA512

                                                                                a1aa0977fe00301739056ddf432f9dc4213318722f9ea8bb2047c9aad096e0cf7dda6c2465916c90c959cb6a1a82cdbf56cea0f16cb3bea2d2a500e598fc9f5d

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\installer_prefs.json
                                                                                Filesize

                                                                                1KB

                                                                                MD5

                                                                                e4822aa8bdb23a937a2696da64047006

                                                                                SHA1

                                                                                279a853fc1268319157c2ae51efd5821abf3815b

                                                                                SHA256

                                                                                f600535d44b5516e91b4fc726b1cfc3cdd2284d3b908768c99e70e012705e0f5

                                                                                SHA512

                                                                                b8b47325197b874e14a824e0ddfb85a53e7aa600a4d27ca52e54ef6baaa8a9b033a0bb196996436e74d1cc6f004966b1c364585487a7db4ae7b406d9ab41c8e6

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\launcher.exe
                                                                                Filesize

                                                                                2.4MB

                                                                                MD5

                                                                                f6f9b226b88e148ee3c9ab72fccfa3a4

                                                                                SHA1

                                                                                be6ecafe2ab0d35495ddd0a65b95433ef1ad8cf2

                                                                                SHA256

                                                                                2da8cdb213626bb2400eb0d72f2e7290fcfe44b231a7c1d639e5f4e64741dd76

                                                                                SHA512

                                                                                e647a0d37f356b3354dc6773ff8cf464ebbfafce96a241456c5a382af4086f85c49e2e777fda1699e9d135660fcb13e61729142f60f22009c82355525868e49e

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                                Filesize

                                                                                1.4MB

                                                                                MD5

                                                                                09f2c7a77efdd1ef3ad46865523824ab

                                                                                SHA1

                                                                                10b3c1144d06ef13824eaec0ed4adc45aa04c7ba

                                                                                SHA256

                                                                                589b04fde9432dd8d8e037d5627460ab31d13863f29237e9592829f7c7df3a29

                                                                                SHA512

                                                                                4ad3fff2dd3f4fdf0e8060236f21784d6802259ca033892826d26e5c1e2ed426556e7d874e645b7812491e29fad3ebc292dc9e93e4b473f6842c0b6ac6a68f72

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                                Filesize

                                                                                1.4MB

                                                                                MD5

                                                                                09f2c7a77efdd1ef3ad46865523824ab

                                                                                SHA1

                                                                                10b3c1144d06ef13824eaec0ed4adc45aa04c7ba

                                                                                SHA256

                                                                                589b04fde9432dd8d8e037d5627460ab31d13863f29237e9592829f7c7df3a29

                                                                                SHA512

                                                                                4ad3fff2dd3f4fdf0e8060236f21784d6802259ca033892826d26e5c1e2ed426556e7d874e645b7812491e29fad3ebc292dc9e93e4b473f6842c0b6ac6a68f72

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                                Filesize

                                                                                1.4MB

                                                                                MD5

                                                                                09f2c7a77efdd1ef3ad46865523824ab

                                                                                SHA1

                                                                                10b3c1144d06ef13824eaec0ed4adc45aa04c7ba

                                                                                SHA256

                                                                                589b04fde9432dd8d8e037d5627460ab31d13863f29237e9592829f7c7df3a29

                                                                                SHA512

                                                                                4ad3fff2dd3f4fdf0e8060236f21784d6802259ca033892826d26e5c1e2ed426556e7d874e645b7812491e29fad3ebc292dc9e93e4b473f6842c0b6ac6a68f72

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                                Filesize

                                                                                1.4MB

                                                                                MD5

                                                                                09f2c7a77efdd1ef3ad46865523824ab

                                                                                SHA1

                                                                                10b3c1144d06ef13824eaec0ed4adc45aa04c7ba

                                                                                SHA256

                                                                                589b04fde9432dd8d8e037d5627460ab31d13863f29237e9592829f7c7df3a29

                                                                                SHA512

                                                                                4ad3fff2dd3f4fdf0e8060236f21784d6802259ca033892826d26e5c1e2ed426556e7d874e645b7812491e29fad3ebc292dc9e93e4b473f6842c0b6ac6a68f72

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                                Filesize

                                                                                1.4MB

                                                                                MD5

                                                                                09f2c7a77efdd1ef3ad46865523824ab

                                                                                SHA1

                                                                                10b3c1144d06ef13824eaec0ed4adc45aa04c7ba

                                                                                SHA256

                                                                                589b04fde9432dd8d8e037d5627460ab31d13863f29237e9592829f7c7df3a29

                                                                                SHA512

                                                                                4ad3fff2dd3f4fdf0e8060236f21784d6802259ca033892826d26e5c1e2ed426556e7d874e645b7812491e29fad3ebc292dc9e93e4b473f6842c0b6ac6a68f72

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                                Filesize

                                                                                1.4MB

                                                                                MD5

                                                                                09f2c7a77efdd1ef3ad46865523824ab

                                                                                SHA1

                                                                                10b3c1144d06ef13824eaec0ed4adc45aa04c7ba

                                                                                SHA256

                                                                                589b04fde9432dd8d8e037d5627460ab31d13863f29237e9592829f7c7df3a29

                                                                                SHA512

                                                                                4ad3fff2dd3f4fdf0e8060236f21784d6802259ca033892826d26e5c1e2ed426556e7d874e645b7812491e29fad3ebc292dc9e93e4b473f6842c0b6ac6a68f72

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\opera.exe
                                                                                Filesize

                                                                                1.4MB

                                                                                MD5

                                                                                09f2c7a77efdd1ef3ad46865523824ab

                                                                                SHA1

                                                                                10b3c1144d06ef13824eaec0ed4adc45aa04c7ba

                                                                                SHA256

                                                                                589b04fde9432dd8d8e037d5627460ab31d13863f29237e9592829f7c7df3a29

                                                                                SHA512

                                                                                4ad3fff2dd3f4fdf0e8060236f21784d6802259ca033892826d26e5c1e2ed426556e7d874e645b7812491e29fad3ebc292dc9e93e4b473f6842c0b6ac6a68f72

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\pref_default_overrides
                                                                                Filesize

                                                                                2B

                                                                                MD5

                                                                                99914b932bd37a50b983c5e7c90ae93b

                                                                                SHA1

                                                                                bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

                                                                                SHA256

                                                                                44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

                                                                                SHA512

                                                                                27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Programs\Opera GX\server_tracking_data
                                                                                Filesize

                                                                                976B

                                                                                MD5

                                                                                5e1bc7cf5acdf523381b1b09453edf6e

                                                                                SHA1

                                                                                77b202f449742dfcb577f98aa6c7b33a71d4a9e2

                                                                                SHA256

                                                                                1fa41ecdabdbc9756309024bdc74bee56c4c233c1a83f733c7e01aad2ad771c9

                                                                                SHA512

                                                                                4248f1c17fcd8a299c546218b5850eb73c11f427d3194291e3f2ccccb42782390405c136b113fa76ada5d5226a354b7c3312cdd1eb97450fded76f0f8ab550d4

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\OperaGXSetup.exe
                                                                                Filesize

                                                                                3.4MB

                                                                                MD5

                                                                                9fdd13383071613517f84abb6558f002

                                                                                SHA1

                                                                                d77fe9375bfd755111f3688a67dfef8ae70e167c

                                                                                SHA256

                                                                                353ee8dee221b9078c04612d4a671769954fe163a49f2aaf348feac0a98d3725

                                                                                SHA512

                                                                                46bc9f429dd40e114f460de88a26a6420cbfc313c8e468e760d282aa038437fe0979f2a088b66d512ba1e7997d131100beab60abe8bcc54fb31171828dbb7a98

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\assistant\_sfx.exe
                                                                                Filesize

                                                                                1.4MB

                                                                                MD5

                                                                                e9a2209b61f4be34f25069a6e54affea

                                                                                SHA1

                                                                                6368b0a81608c701b06b97aeff194ce88fd0e3c0

                                                                                SHA256

                                                                                e950f17f4181009eeafa9f5306e8a9dfd26d88ca63b1838f44ff0efc738e7d1f

                                                                                SHA512

                                                                                59e46277ca79a43ed8b0a25b24eff013e251a75f90587e013b9c12851e5dd7283b6172f7d48583982f6a32069457778ee440025c1c754bf7bb6ce8ae1d2c3fc5

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\assistant\_sfx.exe
                                                                                Filesize

                                                                                1.4MB

                                                                                MD5

                                                                                e9a2209b61f4be34f25069a6e54affea

                                                                                SHA1

                                                                                6368b0a81608c701b06b97aeff194ce88fd0e3c0

                                                                                SHA256

                                                                                e950f17f4181009eeafa9f5306e8a9dfd26d88ca63b1838f44ff0efc738e7d1f

                                                                                SHA512

                                                                                59e46277ca79a43ed8b0a25b24eff013e251a75f90587e013b9c12851e5dd7283b6172f7d48583982f6a32069457778ee440025c1c754bf7bb6ce8ae1d2c3fc5

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\assistant\assistant_installer.exe
                                                                                Filesize

                                                                                1.8MB

                                                                                MD5

                                                                                4c8fbed0044da34ad25f781c3d117a66

                                                                                SHA1

                                                                                8dd93340e3d09de993c3bc12db82680a8e69d653

                                                                                SHA256

                                                                                afe569ce9e4f71c23ba5f6e8fd32be62ac9538e397cde8f2ecbe46faa721242a

                                                                                SHA512

                                                                                a04e6fd052d2d63a0737c83702c66a9af834f9df8423666508c42b3e1d8384300239c9ddacdc31c1e85140eb1193bcfac209f218750b40342492ffce6e9da481

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\assistant\assistant_installer.exe
                                                                                Filesize

                                                                                1.8MB

                                                                                MD5

                                                                                4c8fbed0044da34ad25f781c3d117a66

                                                                                SHA1

                                                                                8dd93340e3d09de993c3bc12db82680a8e69d653

                                                                                SHA256

                                                                                afe569ce9e4f71c23ba5f6e8fd32be62ac9538e397cde8f2ecbe46faa721242a

                                                                                SHA512

                                                                                a04e6fd052d2d63a0737c83702c66a9af834f9df8423666508c42b3e1d8384300239c9ddacdc31c1e85140eb1193bcfac209f218750b40342492ffce6e9da481

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\installer_prefs_include.json
                                                                                Filesize

                                                                                1KB

                                                                                MD5

                                                                                793ced7040ec1802091924b811ce6548

                                                                                SHA1

                                                                                606da0334b1cb890c40f6ecda3eca30325b06711

                                                                                SHA256

                                                                                08bcbb249b39adcde7cfb77d4117e3d0e3e6080165d6047ceb59b9563f4ef851

                                                                                SHA512

                                                                                ae571bde928bac94979d367b156396b61150e90e7ce4923660d5cdcde008ad0119f9de43caf9e57a166ae37d684a6c01ddf92197f276f0638701a94a258c1c4a

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\installer_prefs_include.json.backup
                                                                                Filesize

                                                                                1KB

                                                                                MD5

                                                                                793ced7040ec1802091924b811ce6548

                                                                                SHA1

                                                                                606da0334b1cb890c40f6ecda3eca30325b06711

                                                                                SHA256

                                                                                08bcbb249b39adcde7cfb77d4117e3d0e3e6080165d6047ceb59b9563f4ef851

                                                                                SHA512

                                                                                ae571bde928bac94979d367b156396b61150e90e7ce4923660d5cdcde008ad0119f9de43caf9e57a166ae37d684a6c01ddf92197f276f0638701a94a258c1c4a

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\opera_package
                                                                                Filesize

                                                                                118.6MB

                                                                                MD5

                                                                                c5aa699470f9dae9611ab026f6d2603b

                                                                                SHA1

                                                                                e4d2ababfc9ecede8628b9d77608ac517fe58dea

                                                                                SHA256

                                                                                0cb80948ec80ef48403c70dede0f9a1ac8aadcf5eab9e7f698c238c3aabf4bf7

                                                                                SHA512

                                                                                c7e3c1484e96abdcaceb2eae6d80d9123abe5b0c8500087cde14ee9f2220f7d715a33dd44a605e227226694a2a9674cf82f6eb21708e6beabfdaf76845832718

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202302080432481\pref_default_overrides
                                                                                Filesize

                                                                                2B

                                                                                MD5

                                                                                99914b932bd37a50b983c5e7c90ae93b

                                                                                SHA1

                                                                                bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

                                                                                SHA256

                                                                                44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

                                                                                SHA512

                                                                                27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\Opera_installer_2302080432469064640.dll
                                                                                Filesize

                                                                                5.0MB

                                                                                MD5

                                                                                6921f49e33afb83fbd49a2d8f3483b12

                                                                                SHA1

                                                                                6c55ef2f27559d64367ca93e454682ec1b0c58b4

                                                                                SHA256

                                                                                561aa3291df19199e91ec3e4404d371e3e5b80eff1a0c881b55055d50346c256

                                                                                SHA512

                                                                                a92b940a8ec93e7b128d8fff9a195819b024072362c93a61b5260065cba623c66b08310bff13b6aed43b17a5728a1f70bf1e2ae4fe455184c029dcea89318d66

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\Opera_installer_2302080432479381048.dll
                                                                                Filesize

                                                                                5.0MB

                                                                                MD5

                                                                                6921f49e33afb83fbd49a2d8f3483b12

                                                                                SHA1

                                                                                6c55ef2f27559d64367ca93e454682ec1b0c58b4

                                                                                SHA256

                                                                                561aa3291df19199e91ec3e4404d371e3e5b80eff1a0c881b55055d50346c256

                                                                                SHA512

                                                                                a92b940a8ec93e7b128d8fff9a195819b024072362c93a61b5260065cba623c66b08310bff13b6aed43b17a5728a1f70bf1e2ae4fe455184c029dcea89318d66

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\Opera_installer_2302080432484704280.dll
                                                                                Filesize

                                                                                5.0MB

                                                                                MD5

                                                                                6921f49e33afb83fbd49a2d8f3483b12

                                                                                SHA1

                                                                                6c55ef2f27559d64367ca93e454682ec1b0c58b4

                                                                                SHA256

                                                                                561aa3291df19199e91ec3e4404d371e3e5b80eff1a0c881b55055d50346c256

                                                                                SHA512

                                                                                a92b940a8ec93e7b128d8fff9a195819b024072362c93a61b5260065cba623c66b08310bff13b6aed43b17a5728a1f70bf1e2ae4fe455184c029dcea89318d66

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\Opera_installer_2302080433042512544.dll
                                                                                Filesize

                                                                                5.0MB

                                                                                MD5

                                                                                6921f49e33afb83fbd49a2d8f3483b12

                                                                                SHA1

                                                                                6c55ef2f27559d64367ca93e454682ec1b0c58b4

                                                                                SHA256

                                                                                561aa3291df19199e91ec3e4404d371e3e5b80eff1a0c881b55055d50346c256

                                                                                SHA512

                                                                                a92b940a8ec93e7b128d8fff9a195819b024072362c93a61b5260065cba623c66b08310bff13b6aed43b17a5728a1f70bf1e2ae4fe455184c029dcea89318d66

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\Opera_installer_2302080433044394032.dll
                                                                                Filesize

                                                                                5.0MB

                                                                                MD5

                                                                                6921f49e33afb83fbd49a2d8f3483b12

                                                                                SHA1

                                                                                6c55ef2f27559d64367ca93e454682ec1b0c58b4

                                                                                SHA256

                                                                                561aa3291df19199e91ec3e4404d371e3e5b80eff1a0c881b55055d50346c256

                                                                                SHA512

                                                                                a92b940a8ec93e7b128d8fff9a195819b024072362c93a61b5260065cba623c66b08310bff13b6aed43b17a5728a1f70bf1e2ae4fe455184c029dcea89318d66

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\Opera_installer_2302080433286334484.dll
                                                                                Filesize

                                                                                5.9MB

                                                                                MD5

                                                                                f238f7d4ce13f5253d33b7ca6b3b5a64

                                                                                SHA1

                                                                                6ffa8865f1000a97de5ee9a2285579e0503472ed

                                                                                SHA256

                                                                                c84c70ec3269958446aafa61cf15d8d50ee7b5adad911ccb1975c9b85df57f22

                                                                                SHA512

                                                                                3ccf788ffa6d0b409c81fb8e1e8125340d0eeca3b6faae64f591493fc227e19c4e06c7dcd1572a54407ced7b6f63e4ab02b375973bda0c62ccbcd769dd773720

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Local\Temp\Opera_installer_2302080433294331852.dll
                                                                                Filesize

                                                                                5.9MB

                                                                                MD5

                                                                                f238f7d4ce13f5253d33b7ca6b3b5a64

                                                                                SHA1

                                                                                6ffa8865f1000a97de5ee9a2285579e0503472ed

                                                                                SHA256

                                                                                c84c70ec3269958446aafa61cf15d8d50ee7b5adad911ccb1975c9b85df57f22

                                                                                SHA512

                                                                                3ccf788ffa6d0b409c81fb8e1e8125340d0eeca3b6faae64f591493fc227e19c4e06c7dcd1572a54407ced7b6f63e4ab02b375973bda0c62ccbcd769dd773720

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Opera GX Browser.lnk
                                                                                Filesize

                                                                                1KB

                                                                                MD5

                                                                                9ec05bf48ca3a9df99fbe012c196181b

                                                                                SHA1

                                                                                915590eaaedcd630909733642d9bc35a49797342

                                                                                SHA256

                                                                                8d0c3f4e593c2737e298a46804bc2afeb848a4bea3884f5cc7e3bb81e0647046

                                                                                SHA512

                                                                                b34ff0555cb4c245a14603a3e3c15ebbfb84a17430f133c6dd58dde2bb9812caed8d8a5a8c594acf3f56285ac7712a3da9e418793d8965bbf12e56552e33fdce

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera GX Browser.lnk
                                                                                Filesize

                                                                                1KB

                                                                                MD5

                                                                                9ec05bf48ca3a9df99fbe012c196181b

                                                                                SHA1

                                                                                915590eaaedcd630909733642d9bc35a49797342

                                                                                SHA256

                                                                                8d0c3f4e593c2737e298a46804bc2afeb848a4bea3884f5cc7e3bb81e0647046

                                                                                SHA512

                                                                                b34ff0555cb4c245a14603a3e3c15ebbfb84a17430f133c6dd58dde2bb9812caed8d8a5a8c594acf3f56285ac7712a3da9e418793d8965bbf12e56552e33fdce

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports\settings.dat
                                                                                Filesize

                                                                                40B

                                                                                MD5

                                                                                54afd9020664fed8f11d1bdccf5cfcb1

                                                                                SHA1

                                                                                0e0100ee29ef06fbaad3042ca19f247d4ccdb545

                                                                                SHA256

                                                                                7a233571cbf47150b3d7ccf592a2443cb6172b591798325309fcb8e04386be2f

                                                                                SHA512

                                                                                bcda6b0ac0c082319ddbb4dc6166bfea3db47f80cea58e7b22b098f1b6045243d30e7df5d59769768c545ee3f7a5a7034ee7a271b923f07256eed53c79379bf2

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports\settings.dat
                                                                                Filesize

                                                                                40B

                                                                                MD5

                                                                                54afd9020664fed8f11d1bdccf5cfcb1

                                                                                SHA1

                                                                                0e0100ee29ef06fbaad3042ca19f247d4ccdb545

                                                                                SHA256

                                                                                7a233571cbf47150b3d7ccf592a2443cb6172b591798325309fcb8e04386be2f

                                                                                SHA512

                                                                                bcda6b0ac0c082319ddbb4dc6166bfea3db47f80cea58e7b22b098f1b6045243d30e7df5d59769768c545ee3f7a5a7034ee7a271b923f07256eed53c79379bf2

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports\settings.dat
                                                                                Filesize

                                                                                40B

                                                                                MD5

                                                                                54afd9020664fed8f11d1bdccf5cfcb1

                                                                                SHA1

                                                                                0e0100ee29ef06fbaad3042ca19f247d4ccdb545

                                                                                SHA256

                                                                                7a233571cbf47150b3d7ccf592a2443cb6172b591798325309fcb8e04386be2f

                                                                                SHA512

                                                                                bcda6b0ac0c082319ddbb4dc6166bfea3db47f80cea58e7b22b098f1b6045243d30e7df5d59769768c545ee3f7a5a7034ee7a271b923f07256eed53c79379bf2

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports\settings.dat
                                                                                Filesize

                                                                                40B

                                                                                MD5

                                                                                54afd9020664fed8f11d1bdccf5cfcb1

                                                                                SHA1

                                                                                0e0100ee29ef06fbaad3042ca19f247d4ccdb545

                                                                                SHA256

                                                                                7a233571cbf47150b3d7ccf592a2443cb6172b591798325309fcb8e04386be2f

                                                                                SHA512

                                                                                bcda6b0ac0c082319ddbb4dc6166bfea3db47f80cea58e7b22b098f1b6045243d30e7df5d59769768c545ee3f7a5a7034ee7a271b923f07256eed53c79379bf2

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports\settings.dat
                                                                                Filesize

                                                                                40B

                                                                                MD5

                                                                                54afd9020664fed8f11d1bdccf5cfcb1

                                                                                SHA1

                                                                                0e0100ee29ef06fbaad3042ca19f247d4ccdb545

                                                                                SHA256

                                                                                7a233571cbf47150b3d7ccf592a2443cb6172b591798325309fcb8e04386be2f

                                                                                SHA512

                                                                                bcda6b0ac0c082319ddbb4dc6166bfea3db47f80cea58e7b22b098f1b6045243d30e7df5d59769768c545ee3f7a5a7034ee7a271b923f07256eed53c79379bf2

                                                                                Download Submit

                                                                              • C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Local State
                                                                                Filesize

                                                                                1KB

                                                                                MD5

                                                                                66abfa338e7ed10e755a65f398bbbf95

                                                                                SHA1

                                                                                e30b6f9de47ad6c9ccf8d6a0fb819a5b35361736

                                                                                SHA256

                                                                                c1459eb7d6611737c6250d56d859d6f355bdd76df749c18e57299c7eeaa22070

                                                                                SHA512

                                                                                10f3957974cdd3773d91cdbce2748294713c4d05f8e5cead6ba0ad60d998d3340fd192128f7cf24a900629b0290082fd9473c2c8840d839c91e0b19a56bd960f

                                                                                Download Submit

                                                                              • memory/1048-137-0x0000000000400000-0x00000000009A8000-memory.dmp

                                                                                Filesize

                                                                                5.7MB

                                                                                Download

                                                                              • memory/1048-241-0x0000000000400000-0x00000000009A8000-memory.dmp

                                                                                Filesize

                                                                                5.7MB

                                                                                Download

                                                                              • memory/2544-210-0x0000000000400000-0x00000000009A8000-memory.dmp

                                                                                Filesize

                                                                                5.7MB

                                                                                Download

                                                                              • memory/2544-145-0x0000000000400000-0x00000000009A8000-memory.dmp

                                                                                Filesize

                                                                                5.7MB

                                                                                Download

                                                                              • memory/4032-147-0x0000000000400000-0x00000000009A8000-memory.dmp

                                                                                Filesize

                                                                                5.7MB

                                                                                Download

                                                                              • memory/4032-222-0x0000000000400000-0x00000000009A8000-memory.dmp

                                                                                Filesize

                                                                                5.7MB

                                                                                Download

                                                                              • memory/4280-140-0x0000000000400000-0x00000000009A8000-memory.dmp

                                                                                Filesize

                                                                                5.7MB

                                                                                Download

                                                                              • memory/4640-133-0x0000000000400000-0x00000000009A8000-memory.dmp

                                                                                Filesize

                                                                                5.7MB

                                                                                Download

                                                                              • memory/4640-236-0x0000000000400000-0x00000000009A8000-memory.dmp

                                                                                Filesize

                                                                                5.7MB

                                                                                Download