Free Automated Malware Analysis Service - powered by Falcon Sandbox - Viewing online file analysis results for 'Avro Keyboard 5.6.0 Silent

malicious

Threat Score: 100/100 AV Detection: 23% Labeled as: Win/grayware_confidence_70% #evasive

Avro Keyboard 5.6.0 Silent - Lava.exe

This report is generated from a file or URL submitted to this webservice on September 2nd 2019 17:53:14 (UTC)
Guest System: Windows 7 64 bit, Professional, 6.1 (build 7601), Service Pack 1
Report generated by Falcon Sandbox v8.30 © Hybrid Analysis

Overview Sample unavailable Re-analyze Hash Seen Before Show Similar Samples Report False-Positive Request Report Deletion

Incident Response

Risk Assessment

Remote Access: Reads terminal service related keys (often RDP related)
Spyware: Found a string that may be used as part of an injection method
Persistence: Modifies auto-execute functionality by setting/creating a value in the registry
Writes data to a remote process
Fingerprint: Queries process information
Queries sensitive IE security settings
Reads the active computer name
Evasive: Marks file for deletion
Possibly checks for the presence of an Antivirus engine
The input sample contains a known anti-VM trick

MITRE ATT&CK™ Techniques Detection

This report has 29 indicators that were mapped to 23 attack techniques and 8 tactics. View all details

Persistence
ATT&CK ID	Name	Tactics	Description	Malicious Indicators	Suspicious Indicators	Informative Indicators
T1060	Registry Run Keys / Start Folder	Persistence	Adding an entry to the "run keys" in the Registry or startup folder will cause the program referenced to be executed when a user logs in. Learn more		Modifies auto-execute functionality by setting/creating a value in the registry
T1215	Kernel Modules and Extensions	Persistence	Loadable Kernel Modules (or LKMs) are pieces of code that can be loaded and unloaded into the kernel upon demand. Learn more			Opens the Kernel Security Device Driver (KsecDD) of Windows
T1179	Hooking	Credential Access Persistence Privilege Escalation	Windows processes often leverage application programming interface (API) functions to perform tasks that require reusable system resources. Learn more		Installs hooks/patches the running process
Privilege Escalation
ATT&CK ID	Name	Tactics	Description	Malicious Indicators	Suspicious Indicators	Informative Indicators
T1055	Process Injection	Defense Evasion Privilege Escalation	Process injection is a method of executing arbitrary code in the address space of a separate live process. Learn more	Writes data to a remote process	2 confidential indicators
T1179	Hooking	Credential Access Persistence Privilege Escalation	Windows processes often leverage application programming interface (API) functions to perform tasks that require reusable system resources. Learn more		Installs hooks/patches the running process
Defense Evasion
ATT&CK ID	Name	Tactics	Description	Malicious Indicators	Suspicious Indicators	Informative Indicators
T1055	Process Injection	Defense Evasion Privilege Escalation	Process injection is a method of executing arbitrary code in the address space of a separate live process. Learn more	Writes data to a remote process	2 confidential indicators
T1112	Modify Registry	Defense Evasion	Adversaries may interact with the Windows Registry to hide configuration information within Registry keys, remove information as part of cleaning up, or as part of other techniques to aid in [[Persistence]] and [[Execution]]. Learn more		Modifies proxy settings 1 confidential indicators
T1107	File Deletion	Defense Evasion	Malware, tools, or other non-native files dropped or created on a system by an adversary may leave traces behind as to what was done within a network and how. Learn more		Marks file for deletion
T1497	Unknown technique	Defense Evasion Discovery		The input sample contains a known anti-VM trick
Credential Access
ATT&CK ID	Name	Tactics	Description	Malicious Indicators	Suspicious Indicators	Informative Indicators
T1179	Hooking	Credential Access Persistence Privilege Escalation	Windows processes often leverage application programming interface (API) functions to perform tasks that require reusable system resources. Learn more		Installs hooks/patches the running process
Discovery
ATT&CK ID	Name	Tactics	Description	Malicious Indicators	Suspicious Indicators	Informative Indicators
T1012	Query Registry	Discovery	Adversaries may interact with the Windows Registry to gather information about the system, configuration, and installed software. Learn more		Reads information about supported languages Queries sensitive IE security settings Reads the active computer name 1 confidential indicators	Reads the registry for installed applications
T1082	System Information Discovery	Discovery	An adversary may attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture. Learn more		Contains ability to query CPU information Contains ability to read monitor info	Contains ability to query the machine version
T1124	System Time Discovery	Discovery	The system time is set and stored by the Windows Time Service within a domain to maintain time synchronization between systems and services in an enterprise network. Learn more			Contains ability to query machine time
T1497	Unknown technique	Defense Evasion Discovery		The input sample contains a known anti-VM trick
T1120	Peripheral Device Discovery	Discovery	Adversaries may attempt to gather information about attached peripheral devices and components connected to a computer system. Learn more			Queries volume information of an entire harddrive Queries volume information
T1063	Security Software Discovery	Discovery	Adversaries may attempt to get a listing of security software, configurations, defensive tools, and sensors that are installed on the system. Learn more		1 confidential indicators
T1083	File and Directory Discovery	Discovery	Adversaries may enumerate files and directories or may search in specific locations of a host or network share for certain information within a file system. Learn more			Contains ability to query volume size
T1057	Process Discovery	Discovery	Adversaries may attempt to get information about running processes on a system. Learn more		1 confidential indicators
T1010	Application Window Discovery	Discovery	Adversaries may attempt to get a listing of open application windows. Learn more			Scanning for window names
T1033	System Owner/User Discovery	Discovery	===Windows=== Adversaries may attempt to identify the primary user, currently logged in user, set of users that commonly uses a system, or whether a user is actively using the system. Learn more			Contains ability to lookup the windows account name
Lateral Movement
ATT&CK ID	Name	Tactics	Description	Malicious Indicators	Suspicious Indicators	Informative Indicators
T1076	Remote Desktop Protocol	Lateral Movement	Remote desktop is a common feature in operating systems. Learn more		Reads terminal service related keys (often RDP related)
Collection
ATT&CK ID	Name	Tactics	Description	Malicious Indicators	Suspicious Indicators	Informative Indicators
T1114	Email Collection	Collection	Adversaries may target user email to collect sensitive information from a target. Learn more		1 confidential indicators
Exfiltration
ATT&CK ID	Name	Tactics	Description	Malicious Indicators	Suspicious Indicators	Informative Indicators
T1002	Data Compressed	Exfiltration	An adversary may compress data (e. Learn more			Matched Compiler/Packer signature

Additional Context

Related Sandbox Artifacts

Associated SHA256s: 167d064194e3141f85e977b944ac8ca147c4a0206a658ed973674553d0227b5b

Indicators

Not all malicious and suspicious indicators are displayed. Get your own cloud service or the full version to view all details.

Malicious Indicators 5
Environment Awareness
- The input sample contains a known anti-VM trick
  
  details
  
  Found VM detection artifact "CPUID trick" in "Avro Keyboard 5.6.0 Silent - Lava.exe.bin" (Offset: 86744)
  
  source
  
  Binary File
  
  relevance
  
  5/10
  
  ATT&CK ID
  
  T1497 (Show technique in the MITRE ATT&CK™ matrix)
General
- Contains ability to start/interact with device drivers
  
  details
  
  DeviceIoControl@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  DeviceIoControl@kernel32.dll (Show Stream)
  DeviceIoControl@kernel32.dll (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  8/10
Installation/Persistance
- Writes data to a remote process
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote 32 bytes to a remote process "%TEMP%\7ZipSfx.000\Avro Keyboard 5.6.0 - Lava.exe" (Handle: 688)
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote 52 bytes to a remote process "C:\Users\%USERNAME%\AppData\Local\Temp\7ZipSfx.000\Avro Keyboard 5.6.0 - Lava.exe" (Handle: 688)
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote 4 bytes to a remote process "C:\Users\%USERNAME%\AppData\Local\Temp\7ZipSfx.000\Avro Keyboard 5.6.0 - Lava.exe" (Handle: 688)
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote 8 bytes to a remote process "C:\Users\%USERNAME%\AppData\Local\Temp\7ZipSfx.000\Avro Keyboard 5.6.0 - Lava.exe" (Handle: 688)
  "Avro Keyboard 5.6.0 - Lava.exe" wrote 1500 bytes to a remote process "C:\Users\%USERNAME%\AppData\Local\Temp\is-A3QPM.tmp\Avro Keyboard 5.6.0 - Lava.tmp" (Handle: 208)
  "Avro Keyboard 5.6.0 - Lava.exe" wrote 4 bytes to a remote process "C:\Users\%USERNAME%\AppData\Local\Temp\is-A3QPM.tmp\Avro Keyboard 5.6.0 - Lava.tmp" (Handle: 208)
  "Avro Keyboard 5.6.0 - Lava.exe" wrote 8 bytes to a remote process "C:\Users\%USERNAME%\AppData\Local\Temp\is-A3QPM.tmp\Avro Keyboard 5.6.0 - Lava.tmp" (Handle: 208)
  "Avro Keyboard 5.6.0 - Lava.exe" wrote 32 bytes to a remote process "C:\Users\%USERNAME%\AppData\Local\Temp\is-A3QPM.tmp\Avro Keyboard 5.6.0 - Lava.tmp" (Handle: 208)
  "Avro Keyboard 5.6.0 - Lava.exe" wrote 52 bytes to a remote process "C:\Users\%USERNAME%\AppData\Local\Temp\is-A3QPM.tmp\Avro Keyboard 5.6.0 - Lava.tmp" (Handle: 208)
  
  source
  
  API Call
  
  relevance
  
  6/10
  
  ATT&CK ID
  
  T1055 (Show technique in the MITRE ATT&CK™ matrix)
Unusual Characteristics
- Contains ability to reboot/shutdown the operating system
  
  details
  
  ExitWindowsEx@USER32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  ExitWindowsEx@USER32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  ExitWindowsEx@user32.dll (Show Stream)
  ExitWindowsEx@user32.dll (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  5/10
- Contains native function calls
  
  details
  
  NtdllDefWindowProc_W@NTDLL.DLL from AvroKeyboard5.6.0Silent-Lava.exe (PID: 4044) (Show Stream)
  NtdllDefWindowProc_W@NTDLL.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  NtdllDefWindowProc_W@NTDLL.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  5/10

Suspicious Indicators 29
Anti-Reverse Engineering
- PE file has unusual entropy sections
  
  details
  
  .rsrc with unusual entropies 7.55164278665
  
  source
  
  Static Parser
  
  relevance
  
  10/10
Environment Awareness
- Contains ability to query CPU information
  
  details
  
  cpuid from AvroKeyboard5.6.0Silent-Lava.exe (PID: 4044) (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  10/10
  
  ATT&CK ID
  
  T1082 (Show technique in the MITRE ATT&CK™ matrix)
- Contains ability to read monitor info
  
  details
  
  GetMonitorInfoA@USER32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  GetMonitorInfoA@USER32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  GetMonitorInfoA@USER32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  GetMonitorInfoA@USER32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  5/10
  
  ATT&CK ID
  
  T1082 (Show technique in the MITRE ATT&CK™ matrix)
- Reads the active computer name
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" (Path: "HKLM\SYSTEM\CONTROLSET001\CONTROL\COMPUTERNAME\ACTIVECOMPUTERNAME"; Key: "COMPUTERNAME")
  "Avro Keyboard 5.6.0 - Lava.tmp" (Path: "HKLM\SYSTEM\CONTROLSET001\CONTROL\COMPUTERNAME\ACTIVECOMPUTERNAME"; Key: "COMPUTERNAME")
  
  source
  
  Registry Access
  
  relevance
  
  5/10
  
  ATT&CK ID
  
  T1012 (Show technique in the MITRE ATT&CK™ matrix)
External Systems
- Found an IP/URL artifact that was identified as malicious by at least one reputation engine
  
  details
  
  1/71 reputation engines marked "http://www.jrsoftware.org/ishelp/index.php" as malicious (1% detection rate)
  
  source
  
  External System
  
  relevance
  
  10/10
General
- Contains ability to find and load resources of a specific module
  
  details
  
  LoadResource@KERNEL32.dll (Show Stream)
  LoadResource@KERNEL32.DLL from AvroKeyboard5.6.0Silent-Lava.exe (PID: 4044) (Show Stream)
  LockResource@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.exe (PID: 2944) (Show Stream)
  LoadResource@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.exe (PID: 2944) (Show Stream)
  SizeofResource@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.exe (PID: 2944) (Show Stream)
  FindResourceW@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.exe (PID: 2944) (Show Stream)
  LockResource@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  SizeofResource@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  LoadResource@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  FindResourceW@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  FindResourceW@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  1/10
- Reads configuration files
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" read file "C:\Users\%USERNAME%\Searches\desktop.ini"
  "AvroKeyboard5.6.0Silent-Lava.exe" read file "C:\Users\%USERNAME%\Videos\desktop.ini"
  "AvroKeyboard5.6.0Silent-Lava.exe" read file "C:\Users\%USERNAME%\Pictures\desktop.ini"
  "AvroKeyboard5.6.0Silent-Lava.exe" read file "C:\Users\%USERNAME%\Contacts\desktop.ini"
  "AvroKeyboard5.6.0Silent-Lava.exe" read file "C:\Users\%USERNAME%\Favorites\desktop.ini"
  "AvroKeyboard5.6.0Silent-Lava.exe" read file "C:\Users\%USERNAME%\Music\desktop.ini"
  "AvroKeyboard5.6.0Silent-Lava.exe" read file "C:\Users\%USERNAME%\Downloads\desktop.ini"
  "AvroKeyboard5.6.0Silent-Lava.exe" read file "C:\Users\%USERNAME%\Documents\desktop.ini"
  "AvroKeyboard5.6.0Silent-Lava.exe" read file "C:\Users\%USERNAME%\Links\desktop.ini"
  "AvroKeyboard5.6.0Silent-Lava.exe" read file "C:\Users\%USERNAME%\Saved Games\desktop.ini"
  "AvroKeyboard5.6.0Silent-Lava.exe" read file "C:\Users\desktop.ini"
  "AvroKeyboard5.6.0Silent-Lava.exe" read file "C:\Users\%USERNAME%\Desktop\desktop.ini"
  "Avro Keyboard 5.6.0 - Lava.tmp" read file "C:\Windows\win.ini"
  "Avro Keyboard 5.6.0 - Lava.tmp" read file "%PROGRAMFILES%\(x86)\desktop.ini"
  "Avro Keyboard 5.6.0 - Lava.tmp" read file "C:\Users\%USERNAME%\Desktop\desktop.ini"
  
  source
  
  API Call
  
  relevance
  
  4/10
Installation/Persistance
- Drops executable files
  
  details
  
  "Avro Keyboard 5.6.0 - Lava.exe" has type "PE32 executable (GUI) Intel 80386 for MS Windows"
  "_setup64.tmp" has type "PE32+ executable (console) x86-64 for MS Windows"
  "is-G1Q2V.tmp" has type "PE32 executable (GUI) Intel 80386 for MS Windows"
  
  source
  
  Binary File
  
  relevance
  
  10/10
- Modifies auto-execute functionality by setting/creating a value in the registry
  
  details
  
  "Avro Keyboard 5.6.0 - Lava.tmp" (Access type: "CREATE"; Path: "HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN")
  "Avro Keyboard 5.6.0 - Lava.tmp" (Access type: "SETVAL"; Path: "HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN"; Key: "AVRO KEYBOARD"; Value: "%PROGRAMFILES%\(x86)\Avro Keyboard\Avro Keyboard.exe")
  
  source
  
  Registry Access
  
  relevance
  
  8/10
  
  ATT&CK ID
  
  T1060 (Show technique in the MITRE ATT&CK™ matrix)
Remote Access Related
- Reads terminal service related keys (often RDP related)
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" (Path: "HKLM\SYSTEM\CONTROLSET001\CONTROL\TERMINAL SERVER"; Key: "TSUSERENABLED")
  
  source
  
  Registry Access
  
  relevance
  
  10/10
  
  ATT&CK ID
  
  T1076 (Show technique in the MITRE ATT&CK™ matrix)
System Destruction
- Marks file for deletion
  
  details
  
  "C:\AvroKeyboard5.6.0Silent-Lava.exe" marked "%TEMP%\7ZipSfx.000\Avro Keyboard 5.6.0 - Lava.exe" for deletion
  "C:\AvroKeyboard5.6.0Silent-Lava.exe" marked "C:\Users\%USERNAME%\AppData\Local\Temp\7ZipSfx.000" for deletion
  "%TEMP%\7ZipSfx.000\Avro Keyboard 5.6.0 - Lava.exe" marked "C:\Users\%USERNAME%\AppData\Local\Temp\is-A3QPM.tmp\Avro Keyboard 5.6.0 - Lava.tmp" for deletion
  "%TEMP%\7ZipSfx.000\Avro Keyboard 5.6.0 - Lava.exe" marked "C:\Users\%USERNAME%\AppData\Local\Temp\is-A3QPM.tmp" for deletion
  "%TEMP%\is-A3QPM.tmp\Avro Keyboard 5.6.0 - Lava.tmp" marked "C:\Users\%USERNAME%\AppData\Local\Temp\is-R3MU3.tmp\_isetup\_setup64.tmp" for deletion
  "%TEMP%\is-A3QPM.tmp\Avro Keyboard 5.6.0 - Lava.tmp" marked "C:\Users\%USERNAME%\AppData\Local\Temp\is-R3MU3.tmp\_isetup\_shfoldr.dll" for deletion
  "%TEMP%\is-A3QPM.tmp\Avro Keyboard 5.6.0 - Lava.tmp" marked "C:\Users\%USERNAME%\AppData\Local\Temp\is-R3MU3.tmp\_isetup" for deletion
  "%TEMP%\is-A3QPM.tmp\Avro Keyboard 5.6.0 - Lava.tmp" marked "C:\Users\%USERNAME%\AppData\Local\Temp\is-R3MU3.tmp" for deletion
  
  source
  
  API Call
  
  relevance
  
  10/10
  
  ATT&CK ID
  
  T1107 (Show technique in the MITRE ATT&CK™ matrix)
- Opens file with deletion access rights
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" opened "C:\Users\%USERNAME%\AppData\Local\Temp\7ZipSfx.000\Avro Keyboard 5.6.0 - Lava.exe" with delete access
  "AvroKeyboard5.6.0Silent-Lava.exe" opened "C:\Users\%USERNAME%\AppData\Local\Temp\7ZipSfx.000" with delete access
  "Avro Keyboard 5.6.0 - Lava.exe" opened "C:\Users\%USERNAME%\AppData\Local\Temp\is-A3QPM.tmp\Avro Keyboard 5.6.0 - Lava.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.exe" opened "C:\Users\%USERNAME%\AppData\Local\Temp\is-A3QPM.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\Program Files (x86)\Avro Keyboard\is-G1Q2V.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\Program Files (x86)\Avro Keyboard\is-NHRLH.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\Program Files (x86)\Avro Keyboard\is-744LI.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\Program Files (x86)\Avro Keyboard\is-VKV60.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\Program Files (x86)\Avro Keyboard\is-HCF9G.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "%ALLUSERSPROFILE%\Avro Keyboard\Skin\is-2A2MP.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\ProgramData\Avro Keyboard\Skin\is-FTIO1.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\ProgramData\Avro Keyboard\Skin\is-Q8BBR.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\ProgramData\Avro Keyboard\Skin\is-PTAHT.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\ProgramData\Avro Keyboard\Skin\is-M3VFU.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\ProgramData\Avro Keyboard\Skin\is-VH78A.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\ProgramData\Avro Keyboard\Keyboard Layouts\is-FKSVD.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\ProgramData\Avro Keyboard\Keyboard Layouts\is-MMQID.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\ProgramData\Avro Keyboard\Keyboard Layouts\is-5A2PQ.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\ProgramData\Avro Keyboard\Keyboard Layouts\is-H1J09.tmp" with delete access
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "C:\Program Files (x86)\Avro Keyboard\is-UR45S.tmp" with delete access
  
  source
  
  API Call
  
  relevance
  
  7/10
System Security
- Modifies proxy settings
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" (Access type: "DELETEVAL"; Path: "HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\ZONEMAP"; Key: "PROXYBYPASS")
  "AvroKeyboard5.6.0Silent-Lava.exe" (Access type: "DELETEVAL"; Path: "HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\ZONEMAP"; Key: "PROXYBYPASS")
  
  source
  
  Registry Access
  
  relevance
  
  10/10
  
  ATT&CK ID
  
  T1112 (Show technique in the MITRE ATT&CK™ matrix)
- Queries sensitive IE security settings
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" (Path: "HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SECURITY"; Key: "DISABLESECURITYSETTINGSCHECK")
  
  source
  
  Registry Access
  
  relevance
  
  8/10
  
  ATT&CK ID
  
  T1012 (Show technique in the MITRE ATT&CK™ matrix)
Unusual Characteristics
- CRC value set in PE header does not match actual value
  
  details
  
  "Avro Keyboard 5.6.0 Silent - Lava.exe.bin" claimed CRC 106051 while the actual is CRC 7217817
  "Avro Keyboard 5.6.0 - Lava.exe" claimed CRC 7080297 while the actual is CRC 5208031
  "is-G1Q2V.tmp" claimed CRC 1321312 while the actual is CRC 27271
  
  source
  
  Static Parser
  
  relevance
  
  10/10
- Imports suspicious APIs
  
  details
  
  GetDriveTypeW
  GetModuleFileNameW
  GetVersionExW
  GetFileAttributesW
  LoadLibraryA
  GetStartupInfoA
  FindNextFileW
  GetFileSize
  GetCommandLineW
  CreateDirectoryW
  DeleteFileW
  GetProcAddress
  GetModuleHandleA
  FindResourceExA
  CreateThread
  GetTempPathW
  FindFirstFileW
  GetModuleHandleW
  LockResource
  WriteFile
  CreateFileW
  Sleep
  VirtualAlloc
  ShellExecuteW
  ShellExecuteExW
  RegCloseKey
  OpenProcessToken
  RegOpenKeyExW
  VirtualProtect
  UnhandledExceptionFilter
  LoadLibraryExW
  LoadLibraryW
  FindResourceW
  CreateProcessW
  GetTickCount
  RegCreateKeyExW
  RegDeleteValueW
  GetUserNameW
  RegEnumKeyExW
  RegDeleteKeyW
  DeviceIoControl
  CopyFileW
  ExitThread
  TerminateProcess
  OpenProcess
  GetComputerNameW
  GetCursorPos
  SetWindowsHookExW
  GetLastActivePopup
  FindWindowExW
  FindWindowW
  GetWindowThreadProcessId
  
  source
  
  Static Parser
  
  relevance
  
  1/10
- Installs hooks/patches the running process
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "b84013fc73ffe0" to virtual address "0x75183AD8" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "d83a0200" to virtual address "0x75184E38" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "d83a0200" to virtual address "0x75184D78" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "d83a1875" to virtual address "0x75190258" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "b4361875" to virtual address "0x75190278" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "b4361875" to virtual address "0x7519025C" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "d83a1875" to virtual address "0x751901FC" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "c0df8e771cf98d77ccf88d770d648f7700000000c011d57600000000fc3ed57600000000e013d576000000009457337525e08e77c6e08e7700000000bc6a327500000000cf31d5760000000093193375000000002c32d57600000000" to virtual address "0x77091000" (part of module "NSI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "6012fc73" to virtual address "0x76CFE324" (part of module "WININET.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "b8c015fc73ffe0" to virtual address "0x751836B4" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "d83a1875" to virtual address "0x75190274" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "b4360200" to virtual address "0x75184D68" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "71115f017a3b5e01ab8b02007f950200fc8c0200729602006cc805001ecd5b017d265b01" to virtual address "0x763507E4" (part of module "USER32.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "68130000" to virtual address "0x75371680" (part of module "WS2_32.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "d83a1875" to virtual address "0x751901E0" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "b4361875" to virtual address "0x75190200" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "b4360200" to virtual address "0x75184EA4" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "b4361875" to virtual address "0x751901E4" (part of module "SSPICLI.DLL")
  "AvroKeyboard5.6.0Silent-Lava.exe" wrote bytes "b83012fc73ffe0" to virtual address "0x75371368" (part of module "WS2_32.DLL")
  "Avro Keyboard 5.6.0 - Lava.exe" wrote bytes "71115f017a3b5e01ab8b02007f950200fc8c0200729602006cc805001ecd5b017d265b01" to virtual address "0x763507E4" (part of module "USER32.DLL")
  
  source
  
  Hook Detection
  
  relevance
  
  10/10
  
  ATT&CK ID
  
  T1179 (Show technique in the MITRE ATT&CK™ matrix)
- Reads information about supported languages
  
  details
  
  "Avro Keyboard 5.6.0 - Lava.tmp" (Path: "HKLM\SYSTEM\CONTROLSET001\CONTROL\NLS\LOCALE"; Key: "00000409")
  
  source
  
  Registry Access
  
  relevance
  
  3/10
  
  ATT&CK ID
  
  T1012 (Show technique in the MITRE ATT&CK™ matrix)
Hiding 11 Suspicious Indicators
- All indicators are available only in the private webservice or standalone version

Informative 27
Anti-Reverse Engineering
- Found strings in conjunction with a procedure lookup that resolve to a known API export symbol
  
  details
  
  Found reference to API Wow64RevertWow64FsRedirection@KERNEL32.DLL from AvroKeyboard5.6.0Silent-Lava.exe (PID: 4044) (Show Stream)
  Found reference to API GetNativeSystemInfo@KERNEL32.DLL from AvroKeyboard5.6.0Silent-Lava.exe (PID: 4044) (Show Stream)
  Found reference to API Wow64DisableWow64FsRedirection@KERNEL32.DLL from AvroKeyboard5.6.0Silent-Lava.exe (PID: 4044) (Show Stream)
  Found reference to API GetLongPathNameW@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.exe (PID: 2944) (Show Stream)
  Found reference to API GetLongPathNameW@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  10/10
- PE file contains zero-size sections
  
  details
  
  Raw size of ".bss" is zero
  Raw size of ".tls" is zero
  Raw size of ".data" is zero
  
  source
  
  Static Parser
  
  relevance
  
  10/10
Environment Awareness
- Contains ability to query machine time
  
  details
  
  GetLocalTime@KERNEL32.dll (Show Stream)
  GetSystemTimeAsFileTime@KERNEL32.DLL from AvroKeyboard5.6.0Silent-Lava.exe (PID: 4044) (Show Stream)
  GetLocalTime@KERNEL32.DLL from AvroKeyboard5.6.0Silent-Lava.exe (PID: 4044) (Show Stream)
  GetSystemTimeAsFileTime@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  GetLocalTime@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  GetSystemTimeAsFileTime@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  1/10
  
  ATT&CK ID
  
  T1124 (Show technique in the MITRE ATT&CK™ matrix)
- Contains ability to query the machine version
  
  details
  
  GetVersionExW@KERNEL32.DLL from AvroKeyboard5.6.0Silent-Lava.exe (PID: 4044) (Show Stream)
  GetVersionExW@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.exe (PID: 2944) (Show Stream)
  GetVersion@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.exe (PID: 2944) (Show Stream)
  GetVersion@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  GetVersionExW@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  GetVersion@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  GetVersion@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  GetVersion@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  GetVersionExW@kernel32.dll (Show Stream)
  GetVersion@kernel32.dll (Show Stream)
  GetVersion@kernel32.dll (Show Stream)
  GetVersion@kernel32.dll (Show Stream)
  GetVersionExW@kernel32.dll (Show Stream)
  GetVersionExW@kernel32.dll (Show Stream)
  GetVersion@kernel32.dll (Show Stream)
  GetVersionExW@kernel32.dll (Show Stream)
  GetVersion@kernel32.dll (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  1/10
  
  ATT&CK ID
  
  T1082 (Show technique in the MITRE ATT&CK™ matrix)
- Contains ability to query the system locale
  
  details
  
  GetUserDefaultUILanguage@KERNEL32.DLL from AvroKeyboard5.6.0Silent-Lava.exe (PID: 4044) (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  1/10
- Contains ability to query volume size
  
  details
  
  GetDiskFreeSpaceExW@KERNEL32.dll (Show Stream)
  GetDiskFreeSpaceExW@KERNEL32.DLL from AvroKeyboard5.6.0Silent-Lava.exe (PID: 4044) (Show Stream)
  GetDiskFreeSpaceW@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.exe (PID: 2944) (Show Stream)
  GetDiskFreeSpaceW@kernel32.dll (Show Stream)
  GetDiskFreeSpaceW@kernel32.dll (Show Stream)
  GetDiskFreeSpaceW@kernel32.dll (Show Stream)
  GetDiskFreeSpaceW@kernel32.dll (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  3/10
  
  ATT&CK ID
  
  T1083 (Show technique in the MITRE ATT&CK™ matrix)
- Makes a code branch decision directly after an API that is environment aware
  
  details
  
  Found API call GetVersion@KERNEL32.DLL directly followed by "cmp ax, 0005h" and "jc 0047FB3Fh" from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  Found API call GetVersion@KERNEL32.DLL directly followed by "cmp ax, 0005h" and "jnc 004B81E7h" from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  Found API call GetVersion@kernel32.dll directly followed by "cmp edx, 05h" and "jne 0040648Bh" (Show Stream)
  Found API call GetVersion@kernel32.dll directly followed by "cmp edx, 05h" and "jne 00408DF3h" (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  10/10
- Queries volume information
  
  details
  
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "%PROGRAMFILES%\(x86)\Avro Keyboard\Avro Keyboard.exe" at 00022729-00001972-00000046-29289802817
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-31590230506
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\Program Files (x86)\Avro Keyboard\Avro Keyboard.exe" at 00022729-00001972-00000046-31611855980
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-34411138940
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36315365153
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\Program Files (x86)\Avro Keyboard\Avro Keyboard.exe" at 00022729-00001972-00000046-36316463808
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36405087461
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\Program Files (x86)\Avro Keyboard\Skin Designer.exe" at 00022729-00001972-00000046-36406265232
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36549242397
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\Program Files (x86)\Avro Keyboard\Layout Editor.exe" at 00022729-00001972-00000046-36550361808
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36682367363
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\Program Files (x86)\Avro Keyboard\Avro Spell Checker.exe" at 00022729-00001972-00000046-36683610852
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36842100525
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\Program Files (x86)\Avro Keyboard\Configuring_system.htm" at 00022729-00001972-00000046-36843506557
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36901409584
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\Program Files (x86)\Avro Keyboard\Avro Keyboard.exe" at 00022729-00001972-00000046-36902588313
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36994144635
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\Program Files (x86)\Avro Keyboard\Avro Spell Checker.exe" at 00022729-00001972-00000046-36995214947
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-37144468643
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\Program Files (x86)\Avro Keyboard\Avro Spell Checker.exe" at 00022729-00001972-00000046-37146078844
  
  source
  
  API Call
  
  relevance
  
  2/10
  
  ATT&CK ID
  
  T1120 (Show technique in the MITRE ATT&CK™ matrix)
- Queries volume information of an entire harddrive
  
  details
  
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-31590230506
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-34411138940
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36315365153
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36405087461
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36549242397
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36682367363
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36842100525
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36901409584
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-36994144635
  "Avro Keyboard 5.6.0 - Lava.tmp" queries volume information of "C:\" at 00022729-00001972-00000046-37144468643
  
  source
  
  API Call
  
  relevance
  
  8/10
  
  ATT&CK ID
  
  T1120 (Show technique in the MITRE ATT&CK™ matrix)
- Reads the registry for installed applications
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" (Path: "HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\AVRO KEYBOARD 5.6.0 - LAVA.EXE")
  "AvroKeyboard5.6.0Silent-Lava.exe" (Path: "HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\AVRO KEYBOARD 5.6.0 - LAVA.EXE")
  "Avro Keyboard 5.6.0 - Lava.tmp" (Path: "HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\AVRO KEYBOARD 5.6.0 - LAVA.TMP")
  "Avro Keyboard 5.6.0 - Lava.tmp" (Path: "HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\AVRO KEYBOARD 5.6.0 - LAVA.TMP")
  "Avro Keyboard 5.6.0 - Lava.tmp" (Path: "HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\AVRO KEYBOARD_IS1")
  "Avro Keyboard 5.6.0 - Lava.tmp" (Path: "HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\AVRO KEYBOARD_IS1")
  
  source
  
  Registry Access
  
  relevance
  
  10/10
  
  ATT&CK ID
  
  T1012 (Show technique in the MITRE ATT&CK™ matrix)
General
- Contains ability to create named pipes for inter-process communication (IPC)
  
  details
  
  CreateNamedPipeW@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  CreateNamedPipeW@KERNEL32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  10/10
- Creates a writable file in a temporary directory
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" created file "%TEMP%\7ZipSfx.000\Avro Keyboard 5.6.0 - Lava.exe"
  "Avro Keyboard 5.6.0 - Lava.exe" created file "%TEMP%\is-A3QPM.tmp\Avro Keyboard 5.6.0 - Lava.tmp"
  "Avro Keyboard 5.6.0 - Lava.tmp" created file "%TEMP%\is-R3MU3.tmp\_isetup\_setup64.tmp"
  "Avro Keyboard 5.6.0 - Lava.tmp" created file "%TEMP%\is-R3MU3.tmp\_isetup\_shfoldr.dll"
  
  source
  
  API Call
  
  relevance
  
  1/10
- Creates mutants
  
  details
  
  "\Sessions\1\BaseNamedObjects\Local\ZonesCacheCounterMutex"
  "\Sessions\1\BaseNamedObjects\Local\ZonesLockedCacheCounterMutex"
  "Local\ZonesCacheCounterMutex"
  "Local\ZonesLockedCacheCounterMutex"
  "\Sessions\1\BaseNamedObjects\Local\RstrMgr3887CAB8-533F-4C85-B0DC-3E5639F8D511"
  "\Sessions\1\BaseNamedObjects\Local\RstrMgr-3887CAB8-533F-4C85-B0DC-3E5639F8D511-Session0000"
  "Local\RstrMgr3887CAB8-533F-4C85-B0DC-3E5639F8D511"
  "Local\RstrMgr-3887CAB8-533F-4C85-B0DC-3E5639F8D511-Session0000"
  
  source
  
  Created Mutant
  
  relevance
  
  3/10
- Drops files marked as clean
  
  details
  
  Antivirus vendors marked dropped file "_setup64.tmp" as clean (type is "PE32+ executable (console) x86-64 for MS Windows"), Antivirus vendors marked dropped file "is-MAKUQ.tmp" as clean (type is "PDF document version 1.5"), Antivirus vendors marked dropped file "is-G1Q2V.tmp" as clean (type is "PE32 executable (GUI) Intel 80386 for MS Windows")
  
  source
  
  Binary File
  
  relevance
  
  10/10
- Overview of unique CLSIDs touched in registry
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "Computer" (Path: "HKCU\WOW6432NODE\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "Network" (Path: "HKCU\WOW6432NODE\CLSID\{208D2C60-3AEA-1069-A2D7-08002B30309D}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "Recycle Bin" (Path: "HKCU\WOW6432NODE\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "Control Panel" (Path: "HKCU\WOW6432NODE\CLSID\{26EE0668-A00A-44D7-9371-BEB064C98683}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "UsersFiles" (Path: "HKCU\WOW6432NODE\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "UsersLibraries" (Path: "HKCU\WOW6432NODE\CLSID\{031E4825-7B94-4DC3-B131-E946B44C8DD5}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "CLSID_SearchFolder" (Path: "HKCU\WOW6432NODE\CLSID\{04731B67-D933-450A-90E6-4ACD2E9408FE}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "IE History and Feeds Shell Data Source for Windows Search" (Path: "HKCU\WOW6432NODE\CLSID\{11016101-E366-4D22-BC06-4ADA335C892B}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "Public Folder" (Path: "HKCU\WOW6432NODE\CLSID\{4336A54D-038B-4685-AB02-99BB52D3FB8B}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "Control Panel command object for Start menu and desktop" (Path: "HKCU\WOW6432NODE\CLSID\{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "@%systemroot%\system32\mssvp.dll,-110" (Path: "HKCU\WOW6432NODE\CLSID\{89D83576-6BD1-4C86-9454-BEB04E94C819}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "CLSID_SearchHome" (Path: "HKCU\WOW6432NODE\CLSID\{9343812E-1C37-4A49-A12E-4B2D810D956B}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "Other Users Folder" (Path: "HKCU\WOW6432NODE\CLSID\{B4FB3F98-C1EA-428D-A78A-D1F5659CBA93}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "@%systemroot%\system32\mssvp.dll,-112" (Path: "HKCU\WOW6432NODE\CLSID\{BD7A2E7B-21CB-41B2-A086-B309680C6B7E}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "CLSID_StartMenuProviderFolder" (Path: "HKCU\WOW6432NODE\CLSID\{DAF95313-E44D-46AF-BE1B-CBACEA2C3065}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "CLSID_StartMenuPathCompleteProviderFolder" (Path: "HKCU\WOW6432NODE\CLSID\{E345F35F-9397-435C-8F95-4E922C26259E}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "Games Explorer" (Path: "HKCU\WOW6432NODE\CLSID\{ED228FDF-9EA8-4870-83B1-96B02CFE0D52}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "Computers and Devices" (Path: "HKCU\WOW6432NODE\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\SHELLFOLDER")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "Memory Mapped Cache Mgr" (Path: "HKCU\WOW6432NODE\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D}")
  "AvroKeyboard5.6.0Silent-Lava.exe" touched "delegate folder that appears in Users Files Folder" (Path: "HKCU\WOW6432NODE\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\SHELLFOLDER")
  
  source
  
  Registry Access
  
  relevance
  
  3/10
- Process launched with changed environment
  
  details
  
  Process "Avro Keyboard 5.6.0 - Lava.exe" (Show Process) was launched with new environment variables: "7zSfxFolder20="C:\Windows\Fonts", 7zSfxFolder21="C:\Users\%USERNAME%\AppData\Roaming\Microsoft\Windows\Templates", CommonDocuments="C:\Users\%USERNAME%\Documents", MyDocs="C:\Users\%USERNAME%\Documents", UserDesktop="C:\Users\%USERNAME%\Desktop", 7zSfxString34="7-Zip: Extraction error.", 7zSfxString35="Back", 7zSfxString36="Next", 7zSfxString37="Finish", 7zSfxString30="Could not create file "%s".", 7zSfxString31="Could not overwrite file "%s".", 7zSfxString32="Error in command line:", 7zSfxString33="7-Zip: Internal error
  code 0x%08X.", 7zSfxFolder28="C:\Users\%USERNAME%\AppData\Local", 7zSfxFolder29="C:\Users\%USERNAME%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup", 7zSfxFolder26="C:\Users\%USERNAME%\AppData\Roaming", 7zSfxFolder27="C:\Users\%USERNAME%\AppData\Roaming\Microsoft\Windows\Printer Shortcuts", 7zSfxFolder24="%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\Startup", 7zSfxString38="Cancel", 7zSfxFolder25="C:\Users\%USERNAME%\Desktop", 7zSfxString39="Application error:", 7zSfxFolder22="C:\ProgramData\Microsoft\Windows\Start Menu", 7zSfxFolder23="C:\ProgramData\Microsoft\Windows\Start Menu\Programs", 7zSfxFolder53="C:\Users\%USERNAME%\Music", 7zSfxFolder54="C:\Users\%USERNAME%\Pictures", 7zSfxString2="7z SFX", 7zSfxString1="SFX module version:", 7zSfxString23="Really cancel the installation?", 7zSfxString24="No "HelpText" in the configuration file.", 7zSfxString25="OK", 7zSfxString26="Cancel", 7zSfxString20="7-Zip: Internal error
  code %u.", 7zSfxFolder19="C:\Users\%USERNAME%\AppData\Roaming\Microsoft\Windows\Network Shortcuts", 7zSfxString21="Extraction path", 7zSfxString22="Extraction path:", 7zSfxFolder59="C:\Users\%USERNAME%\AppData\Local\Microsoft\Windows\Burn\Burn", 7zSfxFolder16="C:\Users\%USERNAME%\Desktop", 7zSfxFolder13="C:\Users\%USERNAME%\Music", 7zSfxString27="Yes", 7zSfxFolder14="C:\Users\%USERNAME%\Videos", 7zSfxString28="No", 7zSfxFolder11="C:\Users\%USERNAME%\AppData\Roaming\Microsoft\Windows\Start Menu", 7zSfxFolder55="C:\Users\%USERNAME%\Videos", 7zSfxString29=" s", 7zSfxFolder56="C:\Windows\resources", 7zSfxFolder42="C:\Program Files (x86)", 7zSfxFolder43="C:\Program Files (x86)\Common Files", 7zSfxFolder40="C:\Users\%USERNAME%\Windows\SysWOW64", 7zSfxString12="Could not create folder "%s".", 7zSfxString13="Could not delete file or folder "%s".", 7zSfxString9="Could not read SFX configuration or configuration not found.", 7zSfxString14="Could not find command for "%s".", 7zSfxString8="Non 7z archive.", 7zSfxString15="Could not find "setup.exe".", 7zSfxString7="Could not open archive file "%s".", 7zSfxString6="Could not get SFX filename.", 7zSfxString5="Extracting", 7zSfxFolder08="C:\Users\%USERNAME%\AppData\Roaming\Microsoft\Windows\Recent", 7zSfxString10="Could not write SFX configuration.", 7zSfxString4=": error", 7zSfxFolder09="C:\Users\%USERNAME%\AppData\Roaming\Microsoft\Windows\SendTo", 7zSfxString11="Error in line %d of configuration data:", 7zSfxString3="7z SFX: error", 7zSfxFolder06="C:\Users\%USERNAME%\Favorites", 7zSfxFolder07="C:\Users\%USERNAME%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup", 7zSfxFolder48="C:\Users\%USERNAME%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools", 7zSfxFolder05="C:\Users\%USERNAME%\Documents", 7zSfxFolder02="C:\Users\%USERNAME%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs", 7zSfxFolder46="C:\Users\%USERNAME%\Documents", 7zSfxString16="Error during execution "%s".", 7zSfxFolder47="C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools", 7zSfxString17="7-Zip: Unsupported method.", 7zSfxFolder00="C:\Users\%USERNAME%\Desktop", 7zSfxFolder44="C:\Program Files (x86)\Common Files", 7zSfxString18="7-Zip: CRC error.", 7zSfxFolder45="C:\ProgramData\Microsoft\Windows\Templates", 7zSfxString19="7-Zip: Data error.", 7zSfxFolder31="C:\Users\%USERNAME%\Favorites", 7zSfxFolder32="C:\Users\%USERNAME%\AppData\Local\Microsoft\Windows\Temporary Internet Files", 7zSfxFolder30="C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup", MyDocuments="C:\Users\%USERNAME%\Documents", 7zSfxString40="7z SFX: warning", 7zSfxString41=": warning", 7zSfxString42="Not enough free space for extracting.", 7zSfxString43="Insufficient physical memory.", 7zSfxString44="Copyright (c) 2005-2010 Oleg Scherbakov", 7zSfxFolder39="C:\Users\%USERNAME%\Pictures", 7zSfxFolder37="C:\Windows\system32", 7zSfxFolder38="C:\Program Files (x86)", 7zSfxFolder35="C:\ProgramData", 7zSfxFolder36="C:\Windows", CommonDesktop="C:\Users\%USERNAME%\Desktop", 7zSfxFolder33="C:\Users\%USERNAME%\AppData\Roaming\Microsoft\Windows\Cookies", 7zSfxFolder34="C:\Users\%USERNAME%\AppData\Local\Microsoft\Windows\History""
  
  source
  
  Monitored Target
  
  relevance
  
  10/10
- Scanning for window names
  
  details
  
  "Avro Keyboard 5.6.0 - Lava.tmp" searching for class "Shell_TrayWnd"
  
  source
  
  API Call
  
  relevance
  
  10/10
  
  ATT&CK ID
  
  T1010 (Show technique in the MITRE ATT&CK™ matrix)
- Spawns new processes
  
  details
  
  Spawned process "Avro Keyboard 5.6.0 - Lava.exe" with commandline "/SILENT" (Show Process)
  Spawned process "Avro Keyboard 5.6.0 - Lava.tmp" with commandline "/SL5="$100166
  6480863
  199168
  %TEMP%\7ZipSfx.000\Avro Keyboard 5. ..." (Show Process)
  
  source
  
  Monitored Target
  
  relevance
  
  3/10
- Spawns new processes that are not known child processes
  
  details
  
  Spawned process "Avro Keyboard 5.6.0 - Lava.exe" with commandline "/SILENT" (Show Process)
  Spawned process "Avro Keyboard 5.6.0 - Lava.tmp" with commandline "/SL5="$100166
  6480863
  199168
  %TEMP%\7ZipSfx.000\Avro Keyboard 5. ..." (Show Process)
  
  source
  
  Monitored Target
  
  relevance
  
  3/10
Installation/Persistance
- Connects to LPC ports
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" connecting to "\ThemeApiPort"
  "Avro Keyboard 5.6.0 - Lava.exe" connecting to "\ThemeApiPort"
  "Avro Keyboard 5.6.0 - Lava.tmp" connecting to "\ThemeApiPort"
  
  source
  
  API Call
  
  relevance
  
  1/10
- Contains ability to lookup the windows account name
  
  details
  
  GetUserNameW@ADVAPI32.DLL from Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972) (Show Stream)
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  5/10
  
  ATT&CK ID
  
  T1033 (Show technique in the MITRE ATT&CK™ matrix)
- Dropped files
  
  details
  
  "Avro Spell Checker.lnk" has type "MS Windows shortcut Item id list present Points to a file or directory Has Description string Has Relative path Has Working directory Archive ctime=Mon Sep 2 17:55:22 2019 mtime=Mon Sep 2 17:55:22 2019 atime=Mon Aug 26 20:40:44 2019 length=1065072 window=hide"
  "Avro Keyboard.lnk" has type "MS Windows shortcut Item id list present Points to a file or directory Has Description string Has Relative path Has Working directory Archive ctime=Mon Sep 2 17:55:22 2019 mtime=Mon Sep 2 17:55:22 2019 atime=Mon Aug 26 20:40:46 2019 length=4627568 window=hide"
  "Skin Designer.lnk" has type "MS Windows shortcut Item id list present Points to a file or directory Has Description string Has Relative path Has Working directory Archive ctime=Mon Sep 2 17:55:22 2019 mtime=Mon Sep 2 17:55:22 2019 atime=Mon Aug 26 20:40:52 2019 length=1382000 window=hide"
  "Avro Keyboard 5.6.0 - Lava.exe" has type "PE32 executable (GUI) Intel 80386 for MS Windows"
  "Layout Editor.lnk" has type "MS Windows shortcut Item id list present Points to a file or directory Has Description string Has Relative path Has Working directory Archive ctime=Mon Sep 2 17:55:22 2019 mtime=Mon Sep 2 17:55:22 2019 atime=Mon Aug 26 20:40:50 2019 length=1519728 window=hide"
  "Configuring your system.lnk" has type "MS Windows shortcut Item id list present Points to a file or directory Has Relative path Has Working directory Archive ctime=Mon Sep 2 17:55:23 2019 mtime=Mon Sep 2 17:55:23 2019 atime=Fri Sep 24 15:25:48 2010 length=3785 window=hide"
  "Avro Keyboard on the Web.lnk" has type "MS Windows shortcut Item id list present Has Description string Has Relative path Has Working directory ctime=Mon Jan 1 00:00:00 1601 mtime=Mon Jan 1 00:00:00 1601 atime=Mon Jan 1 00:00:00 1601 length=0 window=hide"
  "is-OODVK.tmp" has type "XML 1.0 document ASCII text with CRLF line terminators"
  "is-PTAHT.tmp" has type "XML 1.0 document UTF-8 Unicode (with BOM) text with CRLF line terminators"
  "is-1PHDE.tmp" has type "XML 1.0 document ASCII text with CRLF line terminators"
  "is-M3VFU.tmp" has type "XML 1.0 document UTF-8 Unicode (with BOM) text with CRLF line terminators"
  "is-0NU0V.tmp" has type "GIF image data version 89a 404 x 485"
  "is-8C1UQ.tmp" has type "Non-ISO extended-ASCII text with CRLF line terminators"
  "_setup64.tmp" has type "PE32+ executable (console) x86-64 for MS Windows"
  "is-MAKUQ.tmp" has type "PDF document version 1.5"
  
  source
  
  Binary File
  
  relevance
  
  3/10
- Touches files in the Windows directory
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" touched file "C:\Windows\Globalization\Sorting\SortDefault.nls"
  "AvroKeyboard5.6.0Silent-Lava.exe" touched file "C:\Windows\AppPatch\sysmain.sdb"
  "AvroKeyboard5.6.0Silent-Lava.exe" touched file "C:\Windows\SysWOW64\shdocvw.dll"
  "AvroKeyboard5.6.0Silent-Lava.exe" touched file "C:\Windows\SysWOW64\en-US\shdocvw.dll.mui"
  "AvroKeyboard5.6.0Silent-Lava.exe" touched file "C:\Windows\SysWOW64\en-US\propsys.dll.mui"
  "AvroKeyboard5.6.0Silent-Lava.exe" touched file "C:\Windows\SysWOW64\ieframe.dll"
  "AvroKeyboard5.6.0Silent-Lava.exe" touched file "C:\Windows\SysWOW64\en-US\ieframe.dll.mui"
  "AvroKeyboard5.6.0Silent-Lava.exe" touched file "%LOCALAPPDATA%\Microsoft\Windows\Caches"
  "AvroKeyboard5.6.0Silent-Lava.exe" touched file "C:\Users\%USERNAME%\AppData\Local\Microsoft\Windows\Caches\cversions.1.db"
  "AvroKeyboard5.6.0Silent-Lava.exe" touched file "C:\Windows\SysWOW64\en-US\setupapi.dll.mui"
  "AvroKeyboard5.6.0Silent-Lava.exe" touched file "C:\Users\%USERNAME%\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000017.db"
  
  source
  
  API Call
  
  relevance
  
  7/10
Network Related
- Found potential URL in binary/memory
  
  details
  
  Pattern match: "h.Bk/Cm/Cm/Bl.Bk-?h"
  Heuristic match: "*DE#vaq.sV"
  Pattern match: "http://www.omicronlab.com/"
  Pattern match: "http://forum.omicronlab.com/"
  Pattern match: "http://www.jrsoftware.org/ishelp/index.php?topic=setupcmdline"
  Pattern match: "http://schemas.microsoft.com/SMI/2005/Windo"
  Pattern match: "http://www.VistaArc.com/"
  
  source
  
  File/Memory
  
  relevance
  
  10/10
Spyware/Information Retrieval
- Found a reference to a known community page
  
  details
  
  "myspace maispes" (Indicator: "myspace")
  "twitter TuiTar" (Indicator: "twitter")
  "youtube iuTiub" (Indicator: "youtube")
  
  source
  
  File/Memory
  
  relevance
  
  7/10
System Security
- Opens the Kernel Security Device Driver (KsecDD) of Windows
  
  details
  
  "AvroKeyboard5.6.0Silent-Lava.exe" opened "\Device\KsecDD"
  "Avro Keyboard 5.6.0 - Lava.tmp" opened "\Device\KsecDD"
  
  source
  
  API Call
  
  relevance
  
  10/10
  
  ATT&CK ID
  
  T1215 (Show technique in the MITRE ATT&CK™ matrix)
Unusual Characteristics
- Matched Compiler/Packer signature
  
  details
  
  "Avro Keyboard 5.6.0 Silent - Lava.exe.bin" was detected as "Microsoft visual C++ 5.0"
  "Avro Keyboard 5.6.0 - Lava.exe" was detected as "Borland Delphi 4.0"
  "_setup64.tmp" was detected as "Morphine v1.2 (DLL)"
  "is-G1Q2V.tmp" was detected as "Borland Delphi 4.0"
  
  source
  
  Static Parser
  
  relevance
  
  10/10
  
  ATT&CK ID
  
  T1002 (Show technique in the MITRE ATT&CK™ matrix)

File Details

All Details:

Avro Keyboard 5.6.0 Silent - Lava.exe

Filename: Avro Keyboard 5.6.0 Silent - Lava.exe
Size: 6.9MiB (7194537 bytes)
Type: peexe executable
Description: PE32 executable (GUI) Intel 80386, for MS Windows
Architecture
: WINDOWS
SHA256
: a4bf9c373bec962d59b18278a23a3fdc0c6849f90da7dd49b3196399c5891607
MD5
: 8c8b4cdf13035ef9437a4febfff14db9
SHA1
: f8a6e2b03f49c9c874957be742eddf4fa12baeaf
ssdeep
: 196608:+58T8HotrWb9T8DPlbAFLkebQAb5V3Wws17F:+O8ItrM+TlbNebQAb5817F
imphash
: c769210c368165fcb9c03d3f832f55eb
authentihash
: 1eb4ec24c1e22daea67fe8ddbd41af6448d03544b7b7eab0b8ff601a0c7bb2ed
Compiler/Packer
: Microsoft visual C++ 5.0

Resources

Language
: NEUTRAL
Icon

Visualization

Input File (PortEx)

Version Info

LegalCopyright: Lava
FileVersion: 5.6.0.0
CompanyName: CyberSpace
ProductName: Avro Keyboard
CompiledBy: Compiled by SFXMaker
ProductVersion: 5.6.0.0
FileDescription: Created By Lava
Translation: 0x0000 0x04b0

Classification (TrID)

33.6% (.EXE) OS/2 Executable (generic)
33.1% (.EXE) Generic Win/DOS Executable
33.1% (.EXE) DOS Executable Generic

File Sections

Details	Name	Entropy	Virtual Address	Virtual Size	Raw Size	MD5	Characteristics
Name .text Entropy 6.60951084962 Virtual Address 0x1000 Virtual Size 0x11713 Raw Size 0x11800 MD5 a33aa34b7879bccd6f1864408fd68dcf	.text	6.60951084962	0x1000	0x11713	0x11800	a33aa34b7879bccd6f1864408fd68dcf	-
Name .rdata Entropy 5.5403621921 Virtual Address 0x13000 Virtual Size 0x30ee Raw Size 0x3200 MD5 007197a7f03fd570aac173835b4d4e9d	.rdata	5.5403621921	0x13000	0x30ee	0x3200	007197a7f03fd570aac173835b4d4e9d	-
Name .data Entropy 3.63946504735 Virtual Address 0x17000 Virtual Size 0x292c Raw Size 0x800 MD5 9627e4496a259b33307cd6b8b9dae798	.data	3.63946504735	0x17000	0x292c	0x800	9627e4496a259b33307cd6b8b9dae798	-
Name .rsrc Entropy 7.55164278665 Virtual Address 0x1a000 Virtual Size 0x162d8 Raw Size 0x16400 MD5 7fadb3c1435b2beec51a070170ea9868	.rsrc	7.55164278665	0x1a000	0x162d8	0x16400	7fadb3c1435b2beec51a070170ea9868	-

File Resources

Details	Name	RVA	Size	Type	Language
Name RT_ICON RVA 0x1a388 Size 0xea8 Type data Language Neutral	RT_ICON	0x1a388	0xea8	data	Neutral
Name RT_ICON RVA 0x1b230 Size 0x668 Type dBase IV DBT of `.DBF, block length 1536, next free block index 40, next free block 2147999999, next used block 3840 Language Russian	RT_ICON	0x1b230	0x668	dBase IV DBT of `.DBF, block length 1536, next free block index 40, next free block 2147999999, next used block 3840	Russian
Name RT_ICON RVA 0x1b898 Size 0x8a8 Type dBase IV DBT of @.DBF, block length 1024, next free block index 40, next free block 14656420, next used block 15252373 Language Neutral	RT_ICON	0x1b898	0x8a8	dBase IV DBT of @.DBF, block length 1024, next free block index 40, next free block 14656420, next used block 15252373	Neutral
Name RT_ICON RVA 0x1c140 Size 0x2e8 Type dBase IV DBT of @.DBF, block length 512, next free block index 40, next free block 8, next used block 8323072 Language Russian	RT_ICON	0x1c140	0x2e8	dBase IV DBT of @.DBF, block length 512, next free block index 40, next free block 8, next used block 8323072	Russian
Name RT_ICON RVA 0x1c428 Size 0x568 Type GLS_BINARY_LSB_FIRST Language Neutral	RT_ICON	0x1c428	0x568	GLS_BINARY_LSB_FIRST	Neutral
Name RT_ICON RVA 0x1c990 Size 0x1e8 Type data Language Russian	RT_ICON	0x1c990	0x1e8	data	Russian
Name RT_ICON RVA 0x1cb78 Size 0x1ca8 Type data Language Neutral	RT_ICON	0x1cb78	0x1ca8	data	Neutral
Name RT_ICON RVA 0x1e820 Size 0x128 Type GLS_BINARY_LSB_FIRST Language Russian	RT_ICON	0x1e820	0x128	GLS_BINARY_LSB_FIRST	Russian
Name RT_ICON RVA 0x1e948 Size 0xca8 Type dBase IV DBT of @.DBF, block length 3072, next free block index 40, next free block 1431655765, next used block 1431655765 Language Neutral	RT_ICON	0x1e948	0xca8	dBase IV DBT of @.DBF, block length 3072, next free block index 40, next free block 1431655765, next used block 1431655765	Neutral
Name RT_ICON RVA 0x1f5f0 Size 0x368 Type GLS_BINARY_LSB_FIRST Language Neutral	RT_ICON	0x1f5f0	0x368	GLS_BINARY_LSB_FIRST	Neutral
Name RT_ICON RVA 0x1f958 Size 0xc4df Type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced Language Neutral	RT_ICON	0x1f958	0xc4df	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced	Neutral
Name RT_ICON RVA 0x2be38 Size 0x25a8 Type data Language Neutral	RT_ICON	0x2be38	0x25a8	data	Neutral
Name RT_ICON RVA 0x2e3e0 Size 0x10a8 Type data Language Neutral	RT_ICON	0x2e3e0	0x10a8	data	Neutral
Name RT_ICON RVA 0x2f488 Size 0x468 Type GLS_BINARY_LSB_FIRST Language Neutral	RT_ICON	0x2f488	0x468	GLS_BINARY_LSB_FIRST	Neutral
Name RT_GROUP_ICON RVA 0x2f8f0 Size 0x92 Type MS Windows icon resource - 10 icons, 48x48 Language Neutral	RT_GROUP_ICON	0x2f8f0	0x92	MS Windows icon resource - 10 icons, 48x48	Neutral
Name RT_GROUP_ICON RVA 0x2f984 Size 0x3e Type MS Windows icon resource - 4 icons, 48x48, 16 colors Language Russian	RT_GROUP_ICON	0x2f984	0x3e	MS Windows icon resource - 4 icons, 48x48, 16 colors	Russian
Name RT_VERSION RVA 0x2f9c4 Size 0x278 Type data Language Neutral	RT_VERSION	0x2f9c4	0x278	data	Neutral
Name RT_VERSION RVA 0x2fc3c Size 0x354 Type data Language English	RT_VERSION	0x2fc3c	0x354	data	English
Name RT_MANIFEST RVA 0x2ff90 Size 0x346 Type ASCII text, with CRLF line terminators Language English	RT_MANIFEST	0x2ff90	0x346	ASCII text, with CRLF line terminators	English

File Imports

No API names/ordinals defined for this module import

CreateCompatibleBitmap

CreateCompatibleDC

CreateFontIndirectW

DeleteDC

DeleteObject

GetCurrentObject

GetDeviceCaps

GetObjectW

SelectObject

SetStretchBltMode

StretchBlt

CloseHandle

CompareFileTime

CreateDirectoryW

CreateEventW

CreateFileW

CreateThread

DeleteCriticalSection

DeleteFileW

EnterCriticalSection

ExitProcess

ExpandEnvironmentStringsW

FindClose

FindFirstFileW

FindNextFileW

FindResourceExA

FormatMessageW

GetCommandLineW

GetDiskFreeSpaceExW

GetDriveTypeW

GetEnvironmentVariableW

GetExitCodeThread

GetFileAttributesW

GetFileSize

GetLastError

GetLocaleInfoW

GetLocalTime

GetModuleFileNameW

GetModuleHandleA

GetModuleHandleW

GetProcAddress

GetStartupInfoA

GetStdHandle

GetSystemDefaultLCID

GetSystemDefaultUILanguage

GetSystemDirectoryW

GetSystemTimeAsFileTime

GetTempPathW

GetUserDefaultUILanguage

GetVersionExW

GlobalAlloc

GlobalFree

GlobalMemoryStatusEx

InitializeCriticalSection

IsBadReadPtr

LeaveCriticalSection

LoadLibraryA

LoadResource

LocalFree

LockResource

lstrcatW

lstrcmpiA

lstrcmpiW

lstrcmpW

lstrcpyW

lstrlenA

lstrlenW

MulDiv

MultiByteToWideChar

ReadFile

RemoveDirectoryW

ResetEvent

ResumeThread

SetCurrentDirectoryW

SetEndOfFile

SetEnvironmentVariableW

SetEvent

SetFileAttributesW

SetFilePointer

SetFileTime

SetLastError

SetThreadLocale

SizeofResource

Sleep

SuspendThread

SystemTimeToFileTime

TerminateThread

VirtualAlloc

VirtualFree

WaitForMultipleObjects

WaitForSingleObject

WideCharToMultiByte

WriteFile

??1type_info@@UAE@XZ

??2@YAPAXI@Z

??3@YAXPAX@Z

?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z

__dllonexit

__getmainargs

__p__commode

__p__fmode

__set_app_type

__setusermatherr

_acmdln

_adjust_fdiv

_beginthreadex

_controlfp

_CxxThrowException

_EH_prolog

_except_handler3

_exit

_initterm

_onexit

_purecall

_wcsnicmp

_wtol

_XcptFilter

exit

free

malloc

memcmp

memcpy

memmove

memset

strncmp

CoCreateInstance

CoInitialize

CreateStreamOnHGlobal

OleLoadPicture

SysAllocString

VariantClear

SHBrowseForFolderW

ShellExecuteExW

ShellExecuteW

SHGetFileInfoW

SHGetMalloc

SHGetPathFromIDListW

SHGetSpecialFolderPathW

CallWindowProcW

CharUpperW

ClientToScreen

CopyImage

CreateWindowExW

DefWindowProcW

DestroyWindow

DialogBoxIndirectParamW

DispatchMessageW

DrawIconEx

DrawTextW

EnableMenuItem

EnableWindow

EndDialog

GetClassNameA

GetClientRect

GetDC

GetDlgItem

GetKeyState

GetMenu

GetMessageW

GetParent

GetSysColor

GetSystemMenu

GetSystemMetrics

GetWindow

GetWindowDC

GetWindowLongW

GetWindowRect

GetWindowTextLengthW

GetWindowTextW

IsWindow

KillTimer

LoadIconW

LoadImageW

MessageBeep

MessageBoxA

ReleaseDC

ScreenToClient

SendMessageW

SetFocus

SetTimer

SetWindowLongW

SetWindowPos

SetWindowTextW

ShowWindow

SystemParametersInfoW

wsprintfA

wsprintfW

wvsprintfW

Screenshots

Loading content, please wait...

Hybrid Analysis

Tip: Click an analysed process below to view more details.

Analysed 3 processes in total.

AvroKeyboard5.6.0Silent-Lava.exe (PID: 4044)
- Avro Keyboard 5.6.0 - Lava.exe /SILENT (PID: 2944) Hash Seen Before
  - Avro Keyboard 5.6.0 - Lava.tmp /SL5="$100166,6480863,199168,%TEMP%\7ZipSfx.000\Avro Keyboard 5.6.0 - Lava.exe" /SILENT (PID: 1972) Hash Seen Before

Logged Script Calls	Logged Stdout	Extracted Streams	Memory Dumps
Reduced Monitoring	Network Activityy	Network Error	Multiscan Match

Network Analysis

DNS Requests

No relevant DNS requests were made.

Contacted Hosts

No relevant hosts were contacted.

HTTP Traffic

No relevant HTTP requests were made.

Extracted Strings

Download All Memory Strings (26KiB)

!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

!-Gwms&?

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

!;"!<-:Nx

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

!Cq4OXD63

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

!ct&EP#M

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

!D %J")O$.T'2Y(6]*:b,=f-?h.Bk/Cm/Cm/Bl.Bk-?h,<e*:b(5\&1X$-S")N $I

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

!faR@V;)

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

!fs37cP4Hb

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

!i0GRig>o

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

!M:`U5"/Y

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

!OPENARRAY

Ansi based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

!r<0|"qZ3

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

!Require Windows$PE

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

!This program cannot be run in DOS mode.$

Ansi based on Dropped File (_setup64.tmp.404114402)

!XC)6YMz)

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

" goto Repeat

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

"$I!WRg9}

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

"%PROGRAMFILES%\(x86)\Avro Keyboard\Avro Keyboard.exe" "%1"

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

"%PROGRAMFILES%\(x86)\Avro Keyboard\unins000.exe"

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

"%PROGRAMFILES%\(x86)\Avro Keyboard\unins000.exe" /SILENT

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

"(,A,A,+$$

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

"]SRf?g.e

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

"a:Be`A[i

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

"B`LJ2l"A

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

"BeforeInstall" or "AfterInstall" parameter with no CodeRunner

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

"Check" parameter with no CodeRunner

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

"code" constant with no CodeRunner

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

"HelpText"

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

"l%)t=x Wg

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

"l} \a>m]c

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

"pIV^e5|Ou

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

"RTLConsts

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.0041B000.00000002.mdmp)

"setup.exe"

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

"Unable to find a Table of Contents$No topic-based help system installed

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

#%g||)E<z

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

#(AAAAAAAAAAA(;

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

#2Yv2#'XsF3

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

#:-S #:-S

Ansi based on Dropped File (is-8C1UQ.tmp)

#:@0APy&`

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

#=b'uR`X_

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

#ga*!c<,|D

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

#Igzt*"x0~

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

#lnp=19It9f

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

#{|~,*0?Z"J

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

$#*j*7`fs

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

$)WX%L't<

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

$*9=='Qa,l

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

$+*<50Y{h

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

$+A-A-A-A--%H

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

$2(biQlE

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

$6lD"V^"~

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

$7(7,7074787<7@7D7H7L7P7T7X7\7`7d7h7l7p7t7x7|7ï¿½

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

$8 AB{UI8Wk

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

$g\#rwOB'

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

$WPJv%YK

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

$ZW8/6*(J

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

%.48s~%.8x

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

%.4u-%.2u-%.2u

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

%.4u-%.2u-%.2u %.2u:%.2u:%.2u.%.3u

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

%04X%c%04X%c

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

%0DhV~gpW

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

%3M}1D+S

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

%GUID:"Computer"%

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%PROGRAMFILES%\(x86)\Avro Keyboard

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%PROGRAMFILES%\(x86)\Avro Keyboard\

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%PROGRAMFILES%\(x86)\Avro Keyboard\Avro Keyboard.exe

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%PROGRAMFILES%\(x86)\Avro Keyboard\Avro Keyboard.exe,1

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%PROGRAMFILES%\(x86)\Avro Keyboard\Avro Keyboard.exe,2

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%ProgramFiles(x86)%\

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

%r$i,x_%3K)

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

%s Log %s #%.3u.txt

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

%s-%d%s.bin

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

%s-%d.bin

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

%s\%s_is1

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

%SystemDrive%\Program Files (x86)\Avro Keyboard\Avro Keyboard.exe

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\Avro Spell Checker.exe

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\Bangla Typing with Avro Mouse.pdf

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\Bangla Typing with Avro Phonetic.pdf

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\Bangla Typing with Fixed Keyboard Layouts.pdf

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\Before You Start.pdf

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\Configuring_system.htm

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\Customizing Avro Keyboard.pdf

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\Editing Keyboard Layout.pdf

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\help_on_help.htm

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\images\err1.gif

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\images\regional_options_2000.jpg

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\images\regional_options_xp.gif

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\Layout Editor.exe

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\MPL-1.1.txt

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\open_type_font_list.htm

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\Overview.pdf

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\Skin Designer.exe

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\Unicode to Bijoy.exe

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\Program Files (x86)\Avro Keyboard\unins000.exe

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\autodict.dct

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Database.db3

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Keyboard Layouts\Avro Easy.avrolayout

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Keyboard Layouts\Bornona.avrolayout

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Keyboard Layouts\Munir_Optima__uni_.avrolayout

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Keyboard Layouts\National (Jatiya).avrolayout

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Keyboard Layouts\Probhat.avrolayout

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Skin\Aero7 dark.avroskin

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Skin\Avro Classic.avroskin

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Skin\Avro Flat (cyan).avroskin

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Skin\Avro Flat (Mint).avroskin

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Skin\Avro Flat (Red).avroskin

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Skin\Avro Flat (Yellow).avroskin

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Skin\Avro Luna.avroskin

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Skin\Avro Royal.avroskin

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Skin\Avro Vista 2.avroskin

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Skin\Avro Vista.avroskin

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemDrive%\ProgramData\Avro Keyboard\Skin\iAvro.avroskin

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemPath%\Fonts\kalpurush ANSI.ttf

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemPath%\Fonts\kalpurush.ttf

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemPath%\Fonts\Siyam Rupali ANSI.ttf

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemPath%\Fonts\Siyamrupali.ttf

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

%SystemPath%\SysWOW64\AvroSpell.dll

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

&3+xnm.NQ`

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

&\IWk9x9K

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

&I/h<End^

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

&jk^[a:.]

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

&kz{WN]`.

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

&MgdBV/=k

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

&N`>?Qp^f

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

'<D<w<u6)p

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

'ER+8u#TI

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

'N*8rc@AL8

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

'OuB$J*dW

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

'PAR/u[7>

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

'VEv-(#BT

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

'Wk,&EjLn

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

'XMizr<*

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

($=2rl9?p

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

(46VVV86H

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

(6@&CY+?n

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

([nVIf7g

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

(Default)

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

(gn2,kwM\

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

(I,W]5O?YF

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

(invalid)

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

(J2nv"^Uw

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

(jAF;@'.,N;

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

(Ko1_xe%EQ

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

(or portions thereof) either on an

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

(UadhK!~

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

(xFCEs@t{

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

)(kUrk]{M

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

).GW-i_vQ

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

)4iWA\@o

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

)BN:I<Km

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

)DJ_gFlb=YX

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

)FPX9;-3rt

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

)Jq|/#<[~

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

)mZry4JY:X

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

)OKaY{DClBN,%

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

)RiDWf!b9/

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

)Ue03D;c'OW

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

)YZ5q6f<e.8

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

*-:) *-:)

Ansi based on Dropped File (is-8C1UQ.tmp)

*2555555bbbbbbbnnnnnoSSSSSnbnnbbb

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

*4[y6),g}I3

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

*_t @;cF5&

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

*DE#vaq.sV

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

*HWf]hB\v!8Q

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

*N^DY6X1En_

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

*Oc^%q}/`

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

*ShellAPI

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.0041B000.00000002.mdmp)

*tcx=hC-E

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

*V[\yj3)A

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

+*WcHGx1X^

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jcAABjt2Bjt2Bj

Ansi based on Dropped File (is-PTAHT.tmp)

++jc++jc++jc++jc++jc++jc9ePd++jc++jc++jc++jc++jc6sm327CZ++jc++jc++jcAP3r3/3r

Ansi based on Dropped File (is-PTAHT.tmp)

++jc++jc9ePd++jc++jc++jc++jc++jc6sm327CZ++jc++jc++jc++jc++jc++jcAABjt2Bjt2Bj

Ansi based on Dropped File (is-PTAHT.tmp)

+//+tbi2///+n5uaS0ZFYF5eX11dXlxcenh4NTMzenh4S0lJSUdHe3l5NjQ0dnR0XVtbX11dYmBg

Ansi based on Dropped File (is-M3VFU.tmp)

+//7/9/r+ 2uPmzdnbvMbNuMPHxs/Tw8jL+vz9BAEDCgQFCwACAAABAAAEx9PZnq+4nK22oa2zyMzR9vX3//// /////Pr6////+vr6nJ6errCw/f////7/7+7yo6Km//7///7/+/v7/f39////7f/6///89fz1//Lt YQEImTE4TggI6aal///5z4yPYQEL5b2/9v36+/////398fz6/////fz+4+fs1dzlxc7XvMbNtr/D ztXY9P7

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

+//9+//9+//9+//9+//9+//9+//9+//9+//9+//9+//9+//9+//9+wA=

Ansi based on Dropped File (is-PTAHT.tmp)

+/v70NDQeWheejYQejYQejYQejYQejYQaCgG0H050H0535VY35ZXaCgGj0sdj0sdj0sdsI534eHh

Ansi based on Dropped File (is-PTAHT.tmp)

+/v70NDQiW9huFIbuFIbuFIbuFIbuFIboDci0H050H054JZY4JVXqDopymgtymgtymgtzZx/4eHh

Ansi based on Dropped File (is-PTAHT.tmp)

+/v70NDQkHtp04I904I904I904I904I9r2E40H050H054JZY35ZYs2dG35ZY35ZY35ZY17OU4eHh

Ansi based on Dropped File (is-PTAHT.tmp)

+/v7APn5+QD4+PgA9fX1AOjo6ADi4uIAx8fHAMLCwgC0tLQApaWlAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

+=&3:lGO>

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

+a/Iw.55_

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

+BRbjfJ5eXlbeb1bW1tbWwFbW1t5W6S9zs7Ozr2kWgBaAFsAWwBbAFsAWwBaAFqkvc7Ozs69pFt5

Ansi based on Dropped File (is-1PHDE.tmp)

+fn5/f39/Pz8+vr6+Pj49/f38PDw0NDQ8PDw+/v7ycnJeHd3ekcqfDgSfDgSfDgSfDgSfDgSaCkH

Ansi based on Dropped File (is-PTAHT.tmp)

+fn5/f39/Pz8+vr6+Pj49/f38PDw0NDQ8PDw+/v7ycnJeXd3olQuskoXskoXskoXskoXskoXlzId

Ansi based on Dropped File (is-PTAHT.tmp)

+fn5/f39/Pz8+vr6+Pj49/f38PDw0NDQ8PDw+/v7ycnJeXh3uHhHz3o4z3o4z3o4z3o4z3o4qVcv

Ansi based on Dropped File (is-PTAHT.tmp)

+llKCmlaGnlqKolqKolaGnlKCmk5+llqKolaGnlKCm k5+lk5+llKCmlaGnlqKolqCqlZ+plZ+plZ+plqCqmKKsmaOtmqSuprK4sb3Dsr7EucXLws7UyNTa usbMjZmfoKaxo6m0cXqEXGVvrLbAmaWvnKu0nKu0lqKoj5uhiZWbiZWbjpqglKCmlqKolaGnlp6l lp6llp6ll5+mmaGom6OqnKSrnaWslaGnlaGnlKCmlKCmlKCmlKCmlK

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

+mFwsC{du

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

+NwEmwQEFZiYFZKYBJKSkpK2Kyq2mAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQE

Ansi based on Dropped File (is-M3VFU.tmp)

+O3j+fDp6ub0enf/gX7/gX7+dHH94t/0+vfz+vfz4N30Yl/4b237fnz/Yl/4ranw9+7m+Ozi+Ovh

Ansi based on Dropped File (is-PTAHT.tmp)

+OXU6ap05p1ftm1K35ZYAAC2bUrmnV/mnV/mnV/mnV/mnV/mnV/mnV/mnV/mnV/mnV/mnV+2bUrf

Ansi based on Dropped File (is-PTAHT.tmp)

+OXU7r6U5p1f5p1f6ap06ap05p1f6ap06ap0/PLq5p1f8MSf/PLq5p1f5p1f5p1ftm1K35ZY4JZY

Ansi based on Dropped File (is-PTAHT.tmp)

+PoCAvoP9/0EBAQEBAQEBAQEBAQEBAQEBAQEBAQE/fcP+gIC9vb29fQCAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

+pphAMOMaQDGwb4A3nYvAIpKHwDadTIAoVYlANp1NADUcjMAsGAqAPaGPADyhDwA8oY+APSJQAD2

Ansi based on Dropped File (is-M3VFU.tmp)

+QBgAGAAjwCFADwAgQCHAB0AUwBgACUACgB4ACwAEwDEACAAAgA4AGEAjgDAAC8AsQADAAcACgBQ

Ansi based on Dropped File (is-1PHDE.tmp)

+QDy8/QA6OnqANbX2ADBwsMAuLm6ALO0tQCrrK0Arq+xAMnKzABUVFUAUlJTAEFBQgB6ensAZ2do

Ansi based on Dropped File (is-1PHDE.tmp)

+rkZ2pkZ2p kZ2pkZ2pkp6qj5+rjp6qjZ2pi5uniZmlh5ejhpaihZWhgZGehpaji5uoi5uoh5ekhZWiiJili5uo i5uni5unipqmipqmipqmipqmipqmipqmipqhipqhipqhiJqhh5qhhZuhhZuhg5uhhZuhiJuiiJui iZuiipqhi5igipefiZaeiZyfh5qdhZibhJeahZibh5qdiZyfi56hhZCUhpGViJOXiZSYiZSYiJOX hpGVhZ

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

+t0H<F}Rj

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

+tLg1[<]NT

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

+ufb++jc++jc++jc++jc9+TZ6tnU7dvQ9OLW+ufb++jc++jc6sm327CZ++jc++jc++jcAP3r3/3r

Ansi based on Dropped File (is-PTAHT.tmp)

+X[Ojy7o=

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

,!@Install@!UTF-8!

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

,!@InstallEnd@!

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

,8Qf';2B2O

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

,^Y]<Y<*>I

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

,F^ANjoSg

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

,grTzC-(FvY

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

,No.r#Ogt5

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

,p0%bc:"6

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

,rW~xt!$SH]

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

,y~_LDe~T%

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

,zl*a:ip

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

-'RP&D o

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

-- File entry --

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

-- Icon entry --

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

-0#^A"P'b

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

-1b?8NjoB

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

-b%%E.wtZ

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

-ed]:VuVl

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

-l|sD!1+L

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

-P1a3(bEt

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

-qqrD569q;h

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

-R|XS/P!e"

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

. ;dMc}g

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

..\DISK%d\

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

.?AUCInBufferException@@

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

.?AUCOutBufferException@@

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

.?AUCSystemException@@

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

.?AVCInArchiveException@N7z@NArchive@@

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

.?AVtype_info@@

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

.^H\[!8?f&G

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

.DEFAULT\Control Panel\International

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.00401000.00000020.mdmp)

.iM#ZI e

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

.j+>}'Uu[

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

.KdO<-gk6V

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

.mf+1E9n!

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

.mQD2/b~d:6

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

.NET Framework CreateAssemblyCache function failed

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

.NET Framework not found

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

.NET Framework version %s not found

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

.Qn,wL.m+9

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

.ShellClassInfo

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

.x\h'=p8,WU

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

.}TCx)62

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

/ **************************************

Ansi based on Dropped File (is-8C1UQ.tmp)

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

/ **************************************/ Avro Phonetic Autocorrect dictionary/ Copyright (c) OmicronLab. All rights reserved./ Web: http://www.omicronlab.com/// Warning: DO NOT EDIT THIS FILE MANUALLY/ **************************************#:-S #:-S#-o #-o$-) $-)& O(:| (:|*) *)*-:) *-:):!! :!!:-" :-":"> :">:# :#:-# :-#:-$ :-$:& :&:-& :-&:( :(:'( :'(:-( :-(:(( :((:(:) :(:):(|) :(|):) :):-) :-):)) :)):)] :)]:)~ :)~:)>- :)>-:-)>.... :-)>....:* :*:-* :-*:/ :/:-/ :-/:-? :-?:-?? :-??:-@ :-@:@) :@):[ :[:\ :\:] :]:^) :^):^o :^o:{ :{:| :|:} :}:( :(:< :<:-< :-<:> :>:3 :3:-9 :-9:ar! :ar!:b :b:-b :-b:-B :-B:-bd :-bd:bz :bz:c :c:-c :-c:c) :c):D :D:-D :-D:-h :-h:-j :-j:-L :-L:O :O:-O :-O:o) :o):O) :O):o3 :o3:p :p:-p :-p:P :P:-P :-P:-q :-q:S :S:-S :-S:-SS :-SS:-t :-t:Ã :Ã:-Ã :-Ã:u :u:-w :-w:x :x:X :X:-X :-X;( ;(;) ;);-) ;-);)) ;));

Ansi based on Dropped File (is-8C1UQ.tmp)

/ Avro Phonetic Autocorrect dictionary

Ansi based on Dropped File (is-8C1UQ.tmp)

/ Warning: DO NOT EDIT THIS FILE MANUALLY

Ansi based on Dropped File (is-8C1UQ.tmp)

/ Web: http://www.omicronlab.com/

Ansi based on Dropped File (is-8C1UQ.tmp)

/!:`|AaSV

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

/!ptDoez

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

/*V'K,BY]

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

/+///+/P378PHv+vv56Ojo8PDw8PDw8/Pz/f39+vr69/f3/////v7+/v7+/v7+/v7+/v7+/v7+ /v7+/v7+3vH+TTqxZVPE4ur79v/59Pj98vT0///7//v+/Pn76O3w0N3fxNPWwc/VwcrTvsXOxtLY 3OjucHyCW2dtV2Nph5OZqra8o6+1oKywsLu/usPH3OHk+Pz9/Pz8///////+/P37////9vb29fT2 /Pv/7uzy8vD29fP58PDw//

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//+///+v/++P799/38/vz7/vz7////5+ruuLvDn6avmKGriJGeXWdnUlxc SlNWbnp8l6KmmqSrmaSsn6qymKWtoK21oqyzoquvz9TX+fz//fz+//7///////////////////// /////////////////////////////////v7+/v7+/f39//////////////////////////////// //v6//z9//////7/9fT48/P59fj919rfnKWuhY

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

///////// ////////+vz9+/3++/3+/P7//f///f///f///f///f///f///P7//P7//P7//f///f///f//+vX3 //7/9Pb3sre6AAADnqGmcHB2AAAECRQYDhUmfIGQ+v//+//++/j//vz////5//////////////// ////////////////////////////////////////////////8P78+Pr7+fn/gIySFCAmAAAEAAAB AAsJcHy

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

/////////+////////+///7vP2yNHV1N/jo6+zprK4vcnPQU1TYW1zLjpAX2tx3Ojurbm/usbM s7/FrLi+sb3DtcHHr7vBvMjO2+ft/P7+9/n59/n5+/39+/399vj49vj4+vz8+vr6+vr6+vr6+vr6 +vr6+vr6+vr6+vr6//////////////////////////////////////////////////////////// //////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// ////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

////////////////////+fn5AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////+vn9IgywIgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////+vr6JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//////////////////////// /////////////////////f//4eTp3+bvoKy4pbXCp7fDYnF6aHh/anR+a3eBobK7mqu0pba/pbG7 r7XAsLS/r7jC0Nfg+/7//v7+///+//7+//7//f//+vr6/f39////+/v7+vr6////+vn7//7///// //////////////////////////////////////////////////////////////7///7/////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

///////////////////////// //////////////////////////////////////////////////////////////////////////// //////7//v3/+/7/6e3yxc3UtL3Gr7jBtsLM097mSVRYGiMmMDk8KjU5gYyUz9vltL3BtL3GtMDK uMTQwMzWvsfQzNPW+v///v7+/////////////////Pz8/f39////9/b4//7//v3///7///7

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

///////////////////////// /////////////////////////////////////////////f///f///f///f///f///f///f///f// /f///f///f///f///f///f///f///f///////////P7++Pz99Pn68fj78Pn88fr98vf67/T36Ovv +v7//f///f///P7+/////f///f///f///f///f///f///f///f//8ff+zNbdo7G3c4WMbH6

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// /f//8fX2+P3+4uns4uvu6fL15+ru+/7/9/r+AAABAAABCwsLAAAAAAAAAAAIytXd5vD3

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// ////////////////////////////////////////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// ////////////////////////////////////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//////////////////////////////////////////////////+//++v/+9vz79fr79fz/8fr+ 4Ovvztnd+fv7s7W1IyUlCQsLGRsb3d/f/f//5efn+fn5/////////v7+/////v7+/Pz8/////v7+ /v7+/v7+/v7+/v7+/v7+/v7+/v7+//////////////////////////////////////////////// //////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

////////////////////////////////////////////////////// /////v7+/v7+/v7+/v7+/f39/f39/f39/Pz8+/v7+vr6+fn5+Pj49PXz8PDw8e7w4d3i7Obr5+Hi 2tXSp6Gcot+bqeehkLCBo+uZouyairF9ou2XpPGWrqKKsLympraUnbl+sOmko9Kao8GQtOWnkMeW l82Stuiuk7WQt8rB0Nrh3eXl0dvP2dja49ja2Nbcys

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

///////////////////////////////////////////////////////// /////////////////////f//4eTp3+bvoKy4pbXCp7fDYnF6aHh/anR+a3eBobK7mqu0pba/pbG7 r7XAsLS/r7jC0Nfg+/7//v7+///+//7+//7//f//+vr6/f39////+/v7+vr6////+vn7//7///// ///////////////////////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

///////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// /f//8fX2+P3+4uns4uvu6fL15+ru+/7/9/r

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//////////////////////////////////////////////////////////////////////// //////7//v3/+/7/6e3yxc3UtL3Gr7jBtsLM097mSVRYGiMmMDk8KjU5gYyUz9vltL3BtL3GtMDK uMTQwMzWvsfQzNPW+v///v7+/////////////////Pz8/f39////9/b4//7//v3///7///7//Pv9 /fz+//7/////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

///////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// ///////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// ///////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//////////////////////////////////////////////////////////////////f/++/3+ 9vn+3eLrzNLdvMXPucTMq7m/o7K7f46XanmCY3J7XGt0maixkqGql6avmqq3rLjCwcrO7vPy///+ ///+/f39/f////////////////////////////////////////////////////////////////// ///////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

////////////////////////////////////////////////////9/f3cnJyJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////////////////////////////f39/JSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

/////////////////////////////////////////f///f///f///f///f///f///f///f// /f///f///f///f///f///f///f///f///////////P7++Pz99Pn68fj78Pn88fr98vf67/T36Ovv +v7//f///f///P7+/////f///f///f///f///f///f///f///f//8ff+zNbdo7G3c4WMbH6FZXR9 eISOnaexpLG/s73Hz9Xa/P7+

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

////////////////////////////////////////9/b8cGLMIgywIgywIgywIgywIgywIgywMBjP

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////////////////9/f3cnJyJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////////////////9vb2WlpaAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////////////////QEBAJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////////////yMjIJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

//////////////////////////////////3/+P/+//3/ //3//f/5//r99v/yb4T/NTn/OEX1Ojb/Z4Dou9PJ8Nvx//r/7P/////+/////////fz+8vP35evw y9fdrr7Enay1mKewpLO8lqWuWWhxYG94t8bPqLfAtrjDtLrFrrnBtMLIv87RzNnb3enp6PDw//// ////////////////////////////////////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

/////////////////////////////////f/++/3+ 9vn+3eLrzNLdvMXPucTMq7m/o7K7f46XanmCY3J7XGt0maixkqGql6avmqq3rLjCwcrO7vPy///+ ///+/f39/f////////////////////////////////////////////////////////////////// ////////////////////////////////////////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

////////////////////////////////1dHwIgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjP

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////////1tbWJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////////7fb54uvu1t/j y9baxtDXws7UvsnRucTMuMfQXGt0XWx1PUxVU2JriZihi5qjlqWuqbG46vD1/f///vz7///+///+ //7///7///////////////////////////////////z////7+v//7Pn3s6H+6O77/f/5//z/+f78 //3//PT/+v/48///amj+YWH/yNnV+////f////////3///3/+fr+

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

////////////////////////////////f39/JSUlJSUlJSUlJSUlJSUlJSUlJSUlMBjPIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////////z8/PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////1tbWJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////aWlpAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////f39/JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////fXDRIgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////h3vUIgywIgywIgywIgywIgywIgywIgywIgywIgywMBjPJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////QEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////WUnEIgywIgywIgywIgywIgywIgywIgywIgywIgywIgywMBjP

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////////XFxcJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

//////////////////////////f///P7/9Pj55+7x 4uvvzdfevMfPzNnhoa2zKzc9N0NJAAIIgo6U2+ftws7UxNDWvsvTvcnTucfTv83ZvcfRz9fe+f3+ /Pz8//////////////////////////////////////////////////////////////////////// ///////////////////////////////////////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

////////////////////////1dHwIgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////1tbWJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////79 9/X1////6Ofp2tvf9vn+3uHmYWVqHT04Ag8NOjU2trCxyc7NtcC++/////7//vP2+vP2+fb4+fv8 nqChvLm7//3/1crNl6Ckrre7cnt/oquvjJWZnKWp9v//n6istbS46+ru8O/z8/L2/fz/+fj8/fz/ 9vX5////////////////////////////////+v//+v//+v//+v//+v//+v//+v//+v//+P

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

////////////////////////em3QIgywIgywIgywMBjPMBjPIgywIgywIgywIgyw////IgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////fHx8JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl////JSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////z8/PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////////ZmZmAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////AAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////6urqHh4eAAAAAAAAlpaW////MDAwAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////7e3tPz8/JSUlJSUlpaWl////Tk5OJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////7ev4PCm5IgywIgywpJve////TDq/IgywIgywIgywIgywIgywIgywMBjP

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////AAAAv7+/////////r6+vQEBAQEBAQEBAQEBAz8/P////////n5+fAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////IgywyMLr////////urPmWUnEWUnEWUnEWUnE1dHw////////rKThIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////JSUlyMjI////////u7u7XFxcXFxcXFxcXFxc1tbW////////ra2tJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////////Tk5OJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////1KeSu3VU////okMWokMWu3VU////okMWu3VU+fLv////5s3B////u3VUokMW

Ansi based on Dropped File (is-PTAHT.tmp)

////////////////472h1Jhr////xHI1xHI11Jhr////xHI11Jhr+/by////79nJ////1JhrxHI1

Ansi based on Dropped File (is-PTAHT.tmp)

////////////////AAAA////////AAAA////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////////d3d3JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////dWfOIgywIgywIgywIgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjPIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////////Igyw////////Igyw////IgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////////JSUl////////JSUl////JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////mZmZAAAAAAAAAAAAu7u7zMzMIiIiAAAAiIiI////ZmZm////AAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////////p57fIgywIgywIgywxL7q087vPyy7IgywmI7a////em3Q////IgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////////qKioJSUlJSUlJSUlxcXF09PTQkJCJSUlmZmZ////fHx8////JSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////////v7+/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAv7+/////

Ansi based on Dropped File (is-OODVK.tmp)

////////////////wqGPn2xQ////fDYQfDYQn2xQ////fDYQn2xQ9vLv////3Mm/////n2xQfDYQ

Ansi based on Dropped File (is-PTAHT.tmp)

////////////////YGBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////////yMjIJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlyMjI////

Ansi based on Dropped File (is-OODVK.tmp)

////////////////yMLrIgywIgywIgywIgywMBjPMBjPIgywIgywIgywIgywIgywIgywyMLr////

Ansi based on Dropped File (is-OODVK.tmp)

////////////0dHRKCgoJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////0MzuJQ+xIgywIgywIgywIgywIgywIgywIgywIgywIgywMBjPJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////0MzuJQ+xIgywIgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////1dHwPiq6IgywIgywIgywIgywIgywMBjPMBjPIgywIgywIgywIgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////1tbWaWlpJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////1tbWQEBAJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////5OTkTk5OJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////8fHxTk5OJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////8fHxTk5OJSUlTk5O8fHx////////////8fHxJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////8vH6Lxq1////////////////9/b8IgywIgywIgywIgywIgywIgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////aWlphYWF////////8fHxMzMzJSUlJSUlTk5O////////////d3d3JSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////ICAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////n5+fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////Piq6IgywIgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgywIgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////QEBAJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////ra2tJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////rKThIgywIgywIgywIgywIgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjPIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////u7u7XFxcXFxcu7u7////////////5OTkQEBAJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////v7+/v7+/7+/v////////39/fEBAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////ycnJAwMDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////////yMjIyMjI8fHx////////5OTkMzMzJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////////yMLryMLr8fD6////////4+H1MBu1IgywIgywIgywIgywMBjPMBjPIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////////z8/PICAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

/////////v7++/v73d3d1tbW5OTk9/f39/f3+vr62trahHBjj0sdj0sdj0sdj0sdj0sdaCgG35ZY

Ansi based on Dropped File (is-PTAHT.tmp)

/////////v7++/v73d3d1tbW5OTk9/f39/f3+vr62tralHloymgtymgtymgtymgtymgtqDop35VY

Ansi based on Dropped File (is-PTAHT.tmp)

/////////v7++/v73d3d1tbW5OTk9/f39/f3+vr62tramoV035ZY35ZY35ZY35ZY35ZYs2dG35ZY

Ansi based on Dropped File (is-PTAHT.tmp)

/////////v7+/////v7+////////////////8PDw2+jwu8jQqLW9q7jApbK6kZ6mh5ScjZqi W210V2lwkqSrj6Cpl6ixnK22l6ezlKSwuMvQ8v3//f///Pb3//7///7/8ff8xdHXCAIThIGQAAAI o6Kr+/7/+P38+v/++v/8//////////////////////////////////////////////////////// /////////v7+//7+//79///+

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

////////1tbWQEBAJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////39/fv7+/v7+/v7+/v7+/v7+/v7+/v7+/j4+PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////4+H1yMLryMLryMLryMLryMLryMLryMLrnpTcIgywIgywIgywIgywMBjPMBjPIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////5OTkyMjIyMjIyMjIyMjIyMjIyMjIyMjIn5+fJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////7+/vAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////7e3tPz8/JSUlJSUlpaWl////Tk5OJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////8fD6IgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgywIgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////8fHxd3d38fHx////////////8fHxTk5OJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////8fHxJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////AAAA////////AAAA////////AAAA////////AAAA////////AAAA////AAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////AAAA////////AAAA////////AAAA////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////////aWlpJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////d3d3MzMzhYWF1tbW////////1tbWkpKSMzMzJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////dWfOMBu1g3fT1dHw////////1dHwkYbYMBu1IgywIgywIgywIgywIgywIgywMBjPMBjP

Ansi based on Dropped File (is-OODVK.tmp)

////////fHx8JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl////JSUl////////JSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////Igyw////////Igyw////////Igyw////////Igyw////////Igyw////IgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////Igyw////////Igyw////////Igyw////IgywIgywIgywIgywIgywIgywMBjPMBjPIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////JSUl////////JSUl////////JSUl////////JSUl////////JSUl////JSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////JSUl////////JSUl////////JSUl////////JSUl////JSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////JSUl////////JSUl////////JSUl////JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////JSUl////////JSUl////////JSUl////JSUlJSUlJSUlJSUlJSUlJSUlJSUlMBjPIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////JSUl////JSUlJSUlJSUlJSUlJSUlJSUlJSUlMBjPIgywIgywIgywIgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////////Tk5OJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////XFxcJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////////YGBgEBAQcHBwz8/P////////z8/PgICAEBAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

///////7/+vj4+///+P//+P// +v/+/vz8//7//v7+/////v7+////////////////8PDw2+jwu8jQqLW9q7jApbK6kZ6mh5ScjZqi W210V2lwkqSrj6Cpl6ixnK22l6ezlKSwuMvQ8v3//f///Pb3//7///7/8ff8xdHXCAIThIGQAAAI o6Kr+/7/+P38+v/++v/8///////////////////////////////////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

///////XuaiiQxaiQxaiQxaTLxnEcTcAAJMxG6tIFqtIFrt2UOLQwv////////////j08KtIFqtI

Ansi based on Dropped File (is-PTAHT.tmp)

//////7+/vv7+93d3dbW1uTk5Pf39/f39/r6+tra2pqFdN+WWN+WWN+WWN+WWN+WWLNnRt+WWOCW

Ansi based on Dropped File (is-PTAHT.tmp)

/////2f/7///8ejc8aRwj2ru49/rx 6NbPXxATbjg9/+3s+v/++//+/f78+v/+/f////3+4Ont3ebqzNTbvsjPtb7Hsr3Fr7rCmqSuipmi bXyFZ3Z/TFtkUmFqeomSe4qTgZCZhJCarrfA+P//+/39///+//////7//f//fYKFq6+0q621ycrU 9fb//f3/9Pb3/f///v7+9fr5/f39///++P37+//8/+zuWAIMmV1j//369P/5+u/nWwo

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

/////Pz+Lxq1Igyw2NTx////gnbSIgywpJve////Y1PHIgywIgywIgywIgywIgywIgywMBjPMBjP

Ansi based on Dropped File (is-OODVK.tmp)

/////Pz8Dw8PAAAA0tLS////b29vAAAAlpaW////S0tLAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

/////Pz8MjIyJSUl2dnZ////hISEJSUlpaWl////ZWVlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////04I91opK/Pfy897L3Jtk04I95bSL////04I904I95bSL////04I904I904I904I904I904I9

Ansi based on Dropped File (is-PTAHT.tmp)

////1Jhr1Jhr////xHI12KF4+/by////58euxHI11Jhr////xHI1xHI11Jhr////xHI1xHI1xHI1

Ansi based on Dropped File (is-PTAHT.tmp)

////1tbWkpKSMzMzJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////39/fEBAQICAgcHBwYGBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////4+H1MBu1Piq6g3fTdWfOIgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////5OTkMzMzQEBAhYWFd3d3JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRltnBN451g451ftnBN6qRl6qRl6qRl6qRl

Ansi based on Dropped File (is-PTAHT.tmp)

////7+/vYGBg7+/v////////////7+/vMDAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////7beK5p1f////8MSf7beK////5p1f5p1f9di/////+uvf5p1f8MSf////9di//////fj07beK

Ansi based on Dropped File (is-PTAHT.tmp)

////8fD6dWfO8fD6////////////8fD6TDq/IgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjP

Ansi based on Dropped File (is-OODVK.tmp)

////8fHxd3d38fHx////////////8fHxTk5OJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////8PDwDw8P////////////////w8PDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////8vH6Lxq1////////////////y8bsIgywIgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjP

Ansi based on Dropped File (is-OODVK.tmp)

////8vLyMjIy////////////////zMzMJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////AAAA////////////////////////////////AAAA////////AAAA////AAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////aFnJIgywIgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgywIgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////ampqJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////ejYQg0Mg9vLv3Mm/lV5AejYQr4Zw////ejYQejYQr4Zw////ejYQejYQejYQejYQejYQejYQ

Ansi based on Dropped File (is-PTAHT.tmp)

////Igyw////////////////////////////////Igyw////////Igyw////IgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////IgywIgywIgywIgywIgywIgywIgywIgywIgywMBjPJSUlJSUlJSUlJSUlJSUlJSUlJSUlQEBA

Ansi based on Dropped File (is-OODVK.tmp)

////IgywIgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgywIgywIgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////JSUl////////////////////////////////JSUl////////JSUl////JSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////JSUl////JSUlJSUlJSUlJSUlJSUlJSUlJSUlMBjPIgywIgywIgywIgywIgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////JSUlJSUlJSUlJSUlJSUlJSUlJSUlMBjPIgywIgywIgywIgywIgywIgywIgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////MDAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////n2xQn2xQ////fDYQqHlg9vLv////y6+ffDYQn2xQ////fDYQfDYQn2xQ////fDYQfDYQfDYQ

Ansi based on Dropped File (is-PTAHT.tmp)

////ra2tJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////sbGxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////TDq/IgywIgywIgywIgywIgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////Tk5OJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

////u3VUu3VU////okMWwYJk+fLv////2rSiokMWu3VU////okMWokMWu3VU////okMWokMWokMW

Ansi based on Dropped File (is-PTAHT.tmp)

////u7XnIgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgywIgywIgywIgywIgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

////uFIbvV4q+vPw7NHCxnVJuFIb1Jd2////uFIbuFIb1Jd2////uFIbuFIbuFIbuFIbuFIbuFIb

Ansi based on Dropped File (is-PTAHT.tmp)

////UVFRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

////vLy8JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

///cyb98NhB8NhB8NhB8NhBoKAbEcTcAAGgoBn04EX04EX04EX04Ee7k3////////7GIcH04EX04

Ansi based on Dropped File (is-PTAHT.tmp)

///ltIvltIv////Tgj3Wikr89/Lz3svcm2TTgj3ltIv////Tgj3Tgj3ltIv////Tgj3Tgj3Tgj3T

Ansi based on Dropped File (is-PTAHT.tmp)

///Tgj3Tgj3Tgj3Tgj3ltIv////Tgj3Tgj3ltIv////fo3H////WikrTgj3Tgj3////ltIvTgj3/

Ansi based on Dropped File (is-PTAHT.tmp)

///v7+//// /////////////v7+/f39/Pz8+fj6+/r8+/7/4OXovsfLrbe+o7C4sL3Fpq61bHR7aHB3W2NqUFhf mKCnxs7Vpa20m620mKivl6Wrq7a6ucLF0NXY8vb3+vz9//////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//39//////////////7+//7+///////////8///8 ///8///8///8///8///8///8//39//39//39//7+//////////7+//7+7fj27vj42eLl3eXs3OPs y9HemJ2soqe2fo6VbHyDRFFZWGVtytffu8bOu8bOv8rSvsvTwM3VvsvTv8zUxNHZwc7WwM3VxtPb 5+7x+v//+v//9/z9+///+v/++fv7/f/////+///+///+///+///+/v/9

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//7//f7/6eruAgUJAQQIAAADAAcKAAADAAADAAIFAAADAAADAAADAAADAAQH AAADAAMGAAADAAYJAAEEAAADAAMANEA68/33+v/86vDr/f/8+Pn1///8///8//76///8///89/by ///8///8///7//7///7///7///7///7///7///7///7/+vz9/P7//f///f//+Pr7+fv8+fv8/f// +Pr6+///7vP0AAgIAAADAAMGAAAEAwEHAAAB

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//7/f35Ozs2uLiztbWxs7OyNDQz9fX2eHo0trhxs7V vcXMt7/GucHIwcnQhIyTcHyCTVlfdYGHmKSqlqKol6OplqKopbG3m6Oqk5uijZWckJifnKSrrLS7 t7/GvMTLz9Xc1dvi3uTr5Orx5+306O716e/26e/27vT77/X88Pb97/X87PL56vD36/H47fP69/r+ 9Pf78vX58PP37fD06Ovv4OPn297ixc3UwMjPwMjPwcnQxc3U0dngy9

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//8fHR12dHTk4uIcGhqKiIjCwMAfHR0gHh46ODi1s7P///8+PDyBf3/o5uYbGRkgHh57eXnj4eEf

Ansi based on Dropped File (is-M3VFU.tmp)

//9///9/// 9///9///9///8vr68/v79Pz89Pz89Pz88/v78vr68fn59fz/9fz/9fz/9fz/9fz/9fz/9fz/9fz/ 7vX47vX47vX47vX47vX47vX47vX47vX48vb38vb38vb38vb38vb38vb38vb38vb39Pj59Pj59Pj5 9Pj59Pj59Pj59Pj59Pj58PT18PT18PT18PT18PT18PT18PT18PT17vP07/T18fb38/j59Pn69fr7 9fr79f

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm

Ansi based on Dropped File (is-PTAHT.tmp)

//Dm//Dm//Dm6su6zJZ75cOx7NLE7dbI7tfK7tnN7tjL7dbJ7dXH7dTG7tfK79rP79zQ8N3S8N3S

Ansi based on Dropped File (is-PTAHT.tmp)

//Dm//Dm//Dm6su6zJZ75MCt6su66su66su66su66su66su66su66su66su66su66su66su66su6

Ansi based on Dropped File (is-PTAHT.tmp)

//Dm//DmAACKw4GKw4GKw4GKw4GKw4GKw4GKw4GKw4GKw4GKw4GKw4GKw4GKw4GKw4GKw4GKw4GK

Ansi based on Dropped File (is-PTAHT.tmp)

//f///f//+vz9 5ujp4eTs193kzdXcy9XcucTI9vz/+fz/AAADAQQJAAADBggJAAICAAABfoSJvsnRlaOv/Pr6//// ////+vr6/Pz8+/39/f//+/39usbM7Pj+sLm94+rt9/v8/f//////9/X0//////////////////// /////////////f///f///f///f///f///f///f///f///////////f//7fD03OLn1d3kxc/WvMfP u8P

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//P3//f7//f7/ /f7///3/9vX5//7///7//f7/6eruAgUJAQQIAAADAAcKAAADAAADAAIFAAADAAADAAADAAADAAQH AAADAAMGAAADAAYJAAEEAAADAAMANEA68/33+v/86vDr/f/8+Pn1///8///8//76///8///89/by ///8///8///7//7///7///7///7///7///7///7///7/+vz9/P7//f///f//+Pr7+fv8+fv8/f// +Pr

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

//r1//r1//r1//r1//r1//r1//r1//r1//r1//r1//r1//r1//r1//r1//r1//r1//r1//r1//r1

Ansi based on Dropped File (is-PTAHT.tmp)

//r1//r1//r1//r1//r1//r1//r1AADt9Ont9Ont9Ont9Ont9Ont9Ojt9Ojs9Ojs9Ojs9Ojs9Ojs

Ansi based on Dropped File (is-PTAHT.tmp)

//r1//r1//r1AP/9+//9+//9+//9+//9+//9+//9+//9+//9+//9+//9+//9+//9+//9+//9+//9

Ansi based on Dropped File (is-PTAHT.tmp)

//v7+//////////////////////// /v7+/v7+///+///+//79//79//79//79///+///+//////////////////////////////////// //////////////////////////////////////////////////////////////////////////// ///////////////////////////////////////////////////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

/1Fzv71mM71mM71mM71mM71mM71mM71mM71mM71mM71mM71mM71mM71mM59LIb1nM71nM71nM59L

Ansi based on Dropped File (is-PTAHT.tmp)

/7_D13N!4m

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

/8+Pn17e7q8/Tw+vv3+fr29vfz9fby+vr6/f39//// /////////v7+/v7+//////////////////////////////////////////////////////////// ///////////////////////////////////////////+///+///+///+//79///+///+///+//3/ //j7//7//////P379fn0/f/8+//7/v7+/v7+/v7+/v7+/v7+/v7+/v

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

/8p3Ns6AQ9ibbNGJUf///9ibbN+thv///8p3Nsp3Nt+thv///8p3Nsp3Nsp3Nsp3Nsp3Nsp3NqZV

Ansi based on Dropped File (is-PTAHT.tmp)

/9/z/9/z/9/z/8vz89Pv++f7/+/7/9vn+4efsytTbu8nPuMLMucPNprC6ZXF7 ZHB6T1tlIC84rLvExNDWucXLucXLuMTKtsLIuMTKwc3T1eHn9Pf89/r/+Pv/9Pf88vX69Pf89/r/ 9/r/8fj78vn88/r99Pv+9Pv+8/r98vn88fj79/v/9vr/9vr/9vr/9vr/9vr/9vr/9vr/9fn+9fn+ 9fn+9fn+9vr/9vr/9vr/9vr/+P3/9/z/9/z

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

/9vz77Pz77Pb21drj4+nwzdDY3ODl9vn9/f//AAAAAwMDAgABAAABBwsM +P//nqqslaCkrrfA0tvl/////////f39/f///f//9vf7srW5jpGV+///+///+///+///+///ur6/ c3d4+/////////////////////////////////////775v/19v/7/+7spoKCVQgPdxch/8rN//39 ////9v//9P//7vTz9Pb27fHy2+Pj09jb7vH19/v

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

/:*?"<>|

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

/<ACRGe$e

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

/AD4+fkA9/j4APP09ADw8fEA7u/vAOvs7ADo6ekA5ebmAOPk5ADh4uIA4OHhANzd3QDb3NwA19jY

Ansi based on Dropped File (is-1PHDE.tmp)

/BM@E,(gt

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

/CloseApplications

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/Components=

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/DB6md?H_>#M

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

/DebugSpawnServer

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/DEBUGWND=

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/DETACHEDMSG

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/f//AAAAAwMDAgABAAABBwsM +P//nqqslaCkrrfA0tvl/////////f39/f///f//9vf7srW5jpGV+///+///+///+///+///ur6/ c3d4+/////////////////////////////////////////////////////////////////////// /Pz8+vr6/f//+f3+7vP26O/y197h09jb7vH19/v89fn6AwUFAAAAAAAABQUFnaqs5PP2q7vC

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

/f38/Pz29vbX19fj4+P19fXz8/P7+/vQ0NCQe2nTgj3Tgj3Tgj3Tgj3Tgj2vYTjQfTnQfTnQfTmv

Ansi based on Dropped File (is-PTAHT.tmp)

/FIRSTPHASEWND=

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/fv//fv//fv//fv//fv//fv//fv//fv//fsAAA==

Ansi based on Dropped File (is-PTAHT.tmp)

/fv//fv//fv//fv//fv//fv//fv//fv//fv//fv//fv//fv//fv//fv//fv//fv//fv//fv//fv/

Ansi based on Dropped File (is-PTAHT.tmp)

/g6Ztx5uNBmmDxmmDxmmDxmmDxuoEBmmDxelDhCiCgueBwOZAgCWAACUAACSAAuWDId+Ua5lNb1n

Ansi based on Dropped File (is-PTAHT.tmp)

/gAAnPUAAJrzAACW7AAAk+gAAJLlAACR5AAAjd4AAIraAACJ1wAAh9QAAIbTAACF0gAAdrkAAG+v

Ansi based on Dropped File (is-M3VFU.tmp)

/gC532xtbb3JycnJvW1tkm1tbW2X+gAA2W1tbW2SbW29ycnJyb1tbZJgAADZyLcA+m19AAAAkm1t

Ansi based on Dropped File (is-1PHDE.tmp)

/gDP/gDP/gLG8gLG8gDP/h1bZR2MGRyWERyWERyWERyWERyWERyWERqVEBGTCwyRCAKPAQKOAQKO

Ansi based on Dropped File (is-PTAHT.tmp)

/INITPROCWND=

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/iwvLi8vC9nZC87ZL87OzsLRwsLRzsLCwsLCwsLCwsLCwsLCwsLCwsLCwsLCwsLCwsLCwsLCwsLC

Ansi based on Dropped File (is-M3VFU.tmp)

/LoadInf=

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/MergeTasks=

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/MQABgYFAAgIBwAJCQgADQ0MADIyMAAcHBsAIiIhAE9PTQAnJyYAY2NhAGFhXwBaWlgAMzMyAD09

Ansi based on Dropped File (is-M3VFU.tmp)

/Nm4ofz8/Pfz8OXOvtGifd+WWN+WWN+WWLNnRt+WWOCWWN+WWLNnRt+WWN+WWN+WWNezlOHh4f//

Ansi based on Dropped File (is-PTAHT.tmp)

/NoCancel

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/NoCloseApplications

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/NoRestart

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/NoRestartApplications

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/NOTIFYWND=

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/Ns8bOtcjQtsnRtsnRtMfP scTMsMPLsMPLusPQvMXSvcbTucPNu8XPytTezdriwc7WiI+YeYKLa3iAWGhuP09VOERKOkRLU1lg s8HHsL7Er7vBr7u/sbzAqra4mqOmiZKVjZigipWdgo2Vcn2FX2pyTllhQk1VPUhQExYaCw4SAgUJ AAEFAAEFAAEFAAAEAAADAAQJAAEGAAAEAAAFAAQJAgYLAAIHAAAEBAMFBQQGBAMFAAABAAABAQ

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

/P0A9/j5APLz9ADo6eoA5ebnAOLj5ADc3d4A1tfYANPU1QDMzc4AysvMAMnKywDDxMUAvr/AALi5

Ansi based on Dropped File (is-1PHDE.tmp)

/P7//f///f///f///f///f///f///P7//P7//P7//f///f///f//+vX3 //7/9Pb3sre6AAADnqGmcHB2AAAECRQYDhUmfIGQ+v//+//++/j//vz////5//////////////// ////////////////////////////////////////////////8P78+Pr7+fn/gIySFCAmAAAEAAAB AAsJcHyCZ3F4Z3F4WGJpGiIpSVFYlJqhuL7Frri/

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

/Password=

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/PPt/PPs/PPt/fTv/fbx/ffy9/Dy/fXv/PPs/PLr/PHq/PDp68u627CZ++jc++jc++jcAP3r3/3r

Ansi based on Dropped File (is-PTAHT.tmp)

/pV`oNkR~

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

/Pz85My8/Pz84cm3/Pz838Ow/Pz83L6p/Pz82bih/Pz89/Pw5c6+0aJ935ZY35ZY35ZYs2dG35ZY

Ansi based on Dropped File (is-PTAHT.tmp)

/Pz85My8/Pz84cm3/Pz838Ow/Pz83L6p/Pz82bih/Pz89/Pw5c6+0aJ9j0sdj0sdj0sdaCgG35ZY

Ansi based on Dropped File (is-PTAHT.tmp)

/Pz85My8/Pz84cm3/Pz838Ow/Pz83L6p/Pz82bih/Pz89/Pw5c6+0aJ9ymgtymgtymgtqDop35VY

Ansi based on Dropped File (is-PTAHT.tmp)

/Pz8APn5+QD4+PgA9fX1AOzs7ADKysoAx8fHAMLCwgC/v78Avr6+ALS0tAClpaUAAAAAAAAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

/Qf1897e3t7e3t7e3t7e3t7e3t7z9Qf94PHuAgLt6fIN/fgHBwcHBwcHBwcHBwcHBwcHBwf4/Q3y

Ansi based on Dropped File (is-M3VFU.tmp)

/REGSVRMODE

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/RestartApplications

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/RestartExitCode=

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/SaveInf=

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/SECONDPHASE=

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/SL5="$%x,%d,%d,

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.00401000.00000020.mdmp)

/SL5="$100166,6480863,199168,%TEMP%\7ZipSfx.000\Avro Keyboard 5.6.0 - Lava.exe" /SILENT

Ansi based on Process Commandline (Avro Keyboard 5.6.0 - Lava.tmp)

/SPAWNWND=

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.00401000.00000020.mdmp)

/SPAWNWND=$%x /NOTIFYWND=$%x

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/SuppressMsgBoxes

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/UNINSTMODE

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/v7+/////////v7+/Pz8//////////////7///7///v8//7/////////+Pr6/f//7fb54uvu1t/j y9baxtDXws7UvsnRucTMuMfQXGt0XWx1PUxVU2JriZihi5qjlqWuqbG46vD1/f///vz7///+///+ //7///7///////////////////////////////////r/gmpsf0NEhiUpXgADWB8g18XG//3///// /v7+/f39//////////7

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

/v7+/v7+///+///+//79//79//79//79///+///+//////////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// ////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

/v7+AP39/QD8/PwA9/f3APPz8wDx8fEA7u7uAOnp6QDo6OgA5ubmAOXl5QDj4+MA4uLiAOHh4QDf

Ansi based on Dropped File (is-M3VFU.tmp)

/v7//v7//v7//v7//v7//v7//v7//v7/09PT/v7/fHx8JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

/v7//v7//v7//v7//v7//v7//v7//v7/0s7v/v7/em3QMBjPMBjPIgywIgywIgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

/v7//v7//v7//v7//v7//v7//v7//v7/y8vM/v7/ZmZmAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

/v7//v7//v7/JSUlioqL/v7/bW1uJSUlJSUlJSUlxMTFioqLJSUlJSUlQkJCtra2/v7/8PDwp6eo

Ansi based on Dropped File (is-OODVK.tmp)

/v7/IiIiAAAAAAAAAAAAAAAAAAAAmJiZ3NzdERERAAAAZmZm3NzdAAAAZmZm3NzdAAAAAAAAmJiZ

Ansi based on Dropped File (is-OODVK.tmp)

/v7/Pyy7IgywMBjPMBjPIgywIgywpp3f4d70MRy1Igywem3Q4d70Igywem3Q4d70IgywIgywpp3f

Ansi based on Dropped File (is-OODVK.tmp)

/v7/qamqAAAAd3d3y8vMh4eId3d3REREAAAARERE/v7/AAAAIiIi/v7/IiIiAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

/v7/QkJCJSUlJSUlJSUlJSUlJSUlp6eo4eHiMzM0JSUlfHx84eHiJSUlfHx84eHiJSUlJSUlp6eo

Ansi based on Dropped File (is-OODVK.tmp)

/v7/ta3lIgywiX3V0s7vl43aiX3VXU3FIgywXU3F/v7/IgywPyy7/v7/Pyy7IgywMBjPMBjPIgyw

Ansi based on Dropped File (is-OODVK.tmp)

/v7/tra2JSUlioqL09PTmZmZioqLX19fJSUlX19f/v7/JSUlQkJC/v7/QkJCJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

/VerySilent

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/VERYSILENT

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

/wAFGCIAJ7D/ABVeiAAQR2YABhgiAAMMEQAxqe4AN7b/ABZJZgA4tv8AJm+ZAEG6/wAJGSIAKXCZ

Ansi based on Dropped File (is-M3VFU.tmp)

/Xrp4"qRn-

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

/z$J*Q*O=

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

/z,cT}rp~Wiv8

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0!?L4*sme

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0&qTTm+^'

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0)]XJ@D&76

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0*0575775b7bbbn

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0-c9J23-Yc

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0/fi0/fi097M2WRh+Gpo+YyC6NzK2Pfi0/fi0/fi0+bFsNmslPfi0/fi0/fi0wD65tf65tfarpbp

Ansi based on Dropped File (is-PTAHT.tmp)

000000070171o

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

00060101.00060101

Unicode based on Runtime Data (AvroKeyboard5.6.0Silent-Lava.exe )

005-2010 Oleg N. Scherbakov

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0123456789ABCDEF

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.00401000.00000020.mdmp)

0123456789ABCDEFGHIJKLMNOPQRSTUV

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.00412000.00000004.mdmp)

02n(O5VBr

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

04I904I904I904I904I904I904I904I9r2E40H050H054JZY35ZYs2dG35ZY35ZY35ZY35ZY35ZY

Ansi based on Dropped File (is-PTAHT.tmp)

04I904I95bSL////04I904I95bSL////36Nx////1opK04I904I9////5bSL04I9////5bSL5bSL

Ansi based on Dropped File (is-PTAHT.tmp)

05553rGN3rGN2a2KmX6RWFb1Y2H6WFX2QT/rQzUxXks8gGZRbFZLLCrkQT/xTEr2MS/qRjlhlndf

Ansi based on Dropped File (is-PTAHT.tmp)

05553rGN3rGN3rGNu5mnWFb1Y2H6WFX2Q0Ds2a2Q3rGN3rGN2a2QLizlQT/xTEr2MS/qrYuj3rGN

Ansi based on Dropped File (is-PTAHT.tmp)

06iG3rGN0555yY5p3rGN3rGN3rGNAOC1luC1lsuRbtShgOC1luC1lt2zlLOTl1tY9mVi+nFw/1lW

Ansi based on Dropped File (is-PTAHT.tmp)

06ShvZeqjFfqr3Lrr3Lqr3LIiWfsu3vsu3vsu3vsunvsu3vsu3vsu3vsu3vsu3vsu3vsu3vsu3vs

Ansi based on Dropped File (is-PTAHT.tmp)

06ShvZeqjFfqr3Lrr3Pqr3Lrr3Prr3Lrr3Prr3Prr3Prr3Prr3Prr3Prr3Prr3Prr3Prr3Prr3Pr

Ansi based on Dropped File (is-PTAHT.tmp)

087Ozs7O087OztPT09PTS9IE9dgCAhj0BERUVNDQ0F/QX9BfX19fX19fX9DQ0NDQRAT0GBgYF/QE

Ansi based on Dropped File (is-M3VFU.tmp)

08g{WY:D

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

09PTJSUlfHx8UVFRJSUl4uLiQkJC////JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

0_gNyk4"

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0ADLy8sAx8fHAMLCwgC0tLQAp6enAKWlpQCLi4sAh4eHAFhYWABPT08AQUFBAD09PQA4ODgANDQ0

Ansi based on Dropped File (is-1PHDE.tmp)

0ADOz88AysvLAMTFxQDDxMQAwMHBAL6/vwC8vb0Auru7ALKzswCxsrIAr7CwAKusrACnqKgApKWl

Ansi based on Dropped File (is-1PHDE.tmp)

0auP0KiMz6aIzaOF4MWzx5VufTgRfTgRfTgRaCgGyXc2yXc2zno5zno5aCkHfDgSfDgSfDgS+Ni7

Ansi based on Dropped File (is-PTAHT.tmp)

0auP0KiMz6aIzaOF4MWzx5Vuq0gWq0gWq0gWkzEbyXc2yXc2zno5zno5lzIdskoXskoXskoX+Ni7

Ansi based on Dropped File (is-PTAHT.tmp)

0auP0KiMz6aIzaOF4MWzx5Vuync2ync2ync2plUsyXc2yXc2zno5zno5qVcvz3o4z3o4z3o4+Ni7

Ansi based on Dropped File (is-PTAHT.tmp)

0cvJxkBAQEBAQEBAQEBAQEBAQEDGycvRQsJQAgJPS8PY0szLy8vLy8vLy8vLy8vLy8vLy8vM0tjD

Ansi based on Dropped File (is-M3VFU.tmp)

0dEAz9DQAMrLywDExcUAvr+/AK+wsACrrKwArrCxAKipqgCRkpMA9/j5APLz9ADo6eoA4uPkANzd

Ansi based on Dropped File (is-1PHDE.tmp)

0dFdNS4uKyolJRpwH0dHRz3P0dF0BOZiAgJY3wTTycmEhGo3Ly8uHyooQA4YJiYnX4SEyYUE31gC

Ansi based on Dropped File (is-M3VFU.tmp)

0dHHBPrm8jcKCwRmW1xca2t+flZBMDEzMS4yMlVbfltcXGYECwoCAvz4BN3S0tLS0tJ/ZU9lxzM1

Ansi based on Dropped File (is-M3VFU.tmp)

0Ec4ODg4zjjOvb2nvae9p72nOKenp0emBPYSAgL69/0E0M/Pz8/Pz8/Pz8/Pz0ZGNzc3N0Y3pgT9

Ansi based on Dropped File (is-M3VFU.tmp)

0eHh4eHC2OHe0eHUxOHhUtTh4eHh4eHh4eHh4eHh4eE7AAg8YQDoQUFBQUFBQUFBQUFBHGKola9z

Ansi based on Dropped File (is-M3VFU.tmp)

0eHOPTE2PkKDCgoKCl0AaWQODmh1AKbw8PDw8PAoMlNQWFdWRTBay8Xw8PDwpgB1aA4Op8AA96ys

Ansi based on Dropped File (is-M3VFU.tmp)

0ezg0ejYyNO1nKlrObZnNb1mM71mM71mM71mM71mM71mM59LIb1nM71nM71nM71nM71nM9urhtur

Ansi based on Dropped File (is-PTAHT.tmp)

0F30'fy7l

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0foAcNL6AHLS+gB20/oAiNn7AIra+wCN2/sAc6vCAF6JmwCa3/wAaYuYAIy0xAC56f0AWW94AIGZ

Ansi based on Dropped File (is-M3VFU.tmp)

0gsLCwsLCwsLCwsLCwsLC+QACCQnAOMKCgoKCgoKCgoKCkXg4ODg4ODg4OBFQb+rvEFFCgoKCgoK

Ansi based on Dropped File (is-M3VFU.tmp)

0IPx9fXxu4oZJh4eHh4eLDLi6+/pVyxy/xgeHh4mGYODg4O9fHxdfHx8E+Hh4XZ8fMz5zXx8E+Hh

Ansi based on Dropped File (is-1PHDE.tmp)

0l6qxk6mv lKqwlauxnqaznaWynaWynKOynKOynqW2n6a3oKe4kqSrkqSrkaOqkaOqkqSrlKatl6mwmqyzk6Ky laS0lqW1lqS2l6W3mqi7m6m8mqi7na63oLG6pba/rLzDs8PKvMnRxNLYydfdyNTW0t3h0NvfsLzA jJiefoyScX6GVWJqpa64qLG7p7C6oKq0nKawnKiynamzm6exmqm5m6q6nKu7nKu7m6q6mai4mKe3 l6a2mKS

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

0MsAwt7ZAMHd2ADA3NcAv9vWALzX0gDG4dwAqbm2AExYVgCsxcEAqsO/AIOWkwDK5OAAnLCtAIia

Ansi based on Dropped File (is-1PHDE.tmp)

0nPFmncF@

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0oA/2n092n092n092n09sUYu5qFk5aJk6KZp56ZptUsx3IlB3IlB3IlB3IlB3IlB2opCja9eZMJt

Ansi based on Dropped File (is-PTAHT.tmp)

0Om`(G_XXL

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0QDNzs4AysvLAMbHxwC+v78AuLm5ALe4uACys7MAr7CwAK2urgCrrKwApKWlAJ6fnwCYmZkAjo+P

Ansi based on Dropped File (is-1PHDE.tmp)

0qF57+HT2bWVx5hsw5VpwZNnv5Bmv5Bmu4tjuYpjuIpiy6eG6tzMu4JTz3o4z3o4z3o4z3o4qVcv

Ansi based on Dropped File (is-PTAHT.tmp)

0QG#DdeP_

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0Qq.Q`{|%)_

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0rPwzq7tyarqxaTnwJ/jvJrgt5Xdso/arIXmnV/mnV/mnV+2bUrflljglljflli2bUrmnV/mnV/m

Ansi based on Dropped File (is-PTAHT.tmp)

0sfA3t7e+/v7/f39/v7+/v7+8PDw9fX15ubmlJSUuHhQ03A01XAy1XAy1XAy1XAyrD0r35VY4JZY

Ansi based on Dropped File (is-PTAHT.tmp)

0sH88Ob88Of88en89O799/Pt6PXm4/f9+PT99/L99/L99/L9+PT9+fXj3/a3tPbV0fP89O388en8

Ansi based on Dropped File (is-PTAHT.tmp)

0tLS0qytrq+vSVHb29vb29vb29vb29vb29vb29vb29vb29vb29vb29sCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

0XxJ36SB////466PznI77c25+Ovjymgt+/Xx6sOrznI7466P////36SBymgt////36SB36SB////

Ansi based on Dropped File (is-PTAHT.tmp)

0yYXC$Y.w@*

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

0ZJ0////skoXskoXt1Ym4Lei+vPwvGI20ZJ0////skoXskoX0ZJ0////skoXskoXskoXskoXskoX

Ansi based on Dropped File (is-PTAHT.tmp)

0ZJ0skoX5cOy9efgvGI2skoXskoX8NvR26uTwW5FskoXskoXvGI29efgskoXvGI29efgskoXskoX

Ansi based on Dropped File (is-PTAHT.tmp)

0ZZv3Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg3rD8t451g451f5qFk

Ansi based on Dropped File (is-PTAHT.tmp)

1+P!jBjl[

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

1.4.1.2100

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm

Ansi based on Dropped File (is-PTAHT.tmp)

1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1/rm1wAAWbRYWbRYWbRYWbRY

Ansi based on Dropped File (is-PTAHT.tmp)

1/rm1/rm1/rm19qulunIs/rm1/rm1/rm1/rm1/rm1+rY3OTT3vrm1/rm1/rm1/rm1/rm1/rm1+DP

Ansi based on Dropped File (is-PTAHT.tmp)

16qR5cKs9d/O9d/O9d/O5tLUenf/gX7/gX7+dHH93svW9d/O9d/O3MnVYl/4b237fnz/Yl/4q53d

Ansi based on Dropped File (is-PTAHT.tmp)

1[6[J7mYl

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

1aeN8MWT8MWT78WT78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU

Ansi based on Dropped File (is-PTAHT.tmp)

1cTx1cQA89vK89vK16iO47+p89vK89vK89vK7NXEw7CifnJuZmP3cG37gH7/fnv/fHn/eXf/Xlz3

Ansi based on Dropped File (is-PTAHT.tmp)

1cTx1cQA89vK89vK16iO47+p89vK89vK89vK89vK89vK79fMaGT4cG37gH7/fnv/fHn/eXf/Xlz3

Ansi based on Dropped File (is-PTAHT.tmp)

1cTx1cQA89vK89vK16iO5sm29une9+rf9+zj+fPu+vby9fLyaGX5cG37gH7/fnv/fHn/eXf/Xlz3

Ansi based on Dropped File (is-PTAHT.tmp)

1cTx1cTs0cZeW/Z9ef9eW/9bWP92dP9HRO/r0MXx1cTx1cTx1cTx1cTx1cTx1cTiuqXVpIrx1cTx

Ansi based on Dropped File (is-PTAHT.tmp)

1dfX19DRz8fGwqqur5ORkTszMx4XFBwbFxseHBwcHCEcHh4cGz07OhIQD1dVVB0bGh0bGldVVBMR

Ansi based on Dropped File (is-M3VFU.tmp)

1dHw////////////////4+H1IgywIgywIgywIgyw4+H1////////////////yMLrPiq6IgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

1dHw////////g3fTIgywIgywIgywIgywMBjPMBjPIgywIgywIgywIgywIgywIgywIgywZ1jJyMLr

Ansi based on Dropped File (is-OODVK.tmp)

1dXm++nN8jcZHJ0bHR0dHR0geG47YmZqZ1tZY4cXHR0dHRudHBkCAu/n+uDn5+fn5+fmIXNrO2Jh

Ansi based on Dropped File (is-M3VFU.tmp)

1dXV1dXV1dXV1dXV1g+MjPH19fGEhKNDGh0iHCEhISEhISEhISEhHCIdGkOj6+vr6+3y2YmJiYmJ

Ansi based on Dropped File (is-1PHDE.tmp)

1E0FuT)NM8

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

1FHx9rQh89DQ0NDQ0NDQgIExcVFRUV FRUVGiYfHx9bFTofHxw8H0YVFRUVFRUVCAiZGQ8PDw8PDw9+Hx8fH18eIh85D0AfTA8PDw8PDw8I CAIHDg4ODg4ODm4fHx9QcFQfH2IOQR9SDg4ODg4ODggImIwWFhYWFhYWFksfHzExHx8xGxZEH1UW FhYWFhYWCAgDBgUFBQUFBQUFfzQfHx8fMHoFBU0fXAUFBQUFBQUICJeKBAQEBAQEBA

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

1I}3*mwM

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

1Jd29ujhwWk5uFIbuFIbwWk59ujhuFIbuFIbxnVJuFIbxnVJ9ujhuFIbwWk59ujhuFIbuFIbuFIb

Ansi based on Dropped File (is-PTAHT.tmp)

1k,zH>7D8Au

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

1KmGnl4wlVEhlVEhlVEhlVEhZygF4Zlc4Zlc451g451gZygFmVcnmVcnmVcnmVcnmVcnt4BX7s2y

Ansi based on Dropped File (is-PTAHT.tmp)

1LSnALqimAClkYkAsJuTAKCRiwCQhH8Ah315AHVwbgCKhYMAkj0YAIw6FwCWPxoAnEMdAJNBHQCN

Ansi based on Dropped File (is-M3VFU.tmp)

1MLconHmnV/mnV/mnV/mnV+2bUrflljflVjflVjflVjflVjz28rz28rz28rz28rXqI7jv6nz28rz

Ansi based on Dropped File (is-PTAHT.tmp)

1MzF3t7e+/v7/f39/v7+/v7+8PDw9fX15ubmlJSUw5Vt45xg5p1f5p1f5p1f5p1ftm1K35ZY4JZY

Ansi based on Dropped File (is-PTAHT.tmp)

1NTKBPro8jcNDwRya2xsdXVqSTocNDQ3NS4uMmFoa2tsbHIEDw0CAvz5BN6Hh9XV1dXZVD45HDQw

Ansi based on Dropped File (is-M3VFU.tmp)

1NTl++nM8jcXGRQYGhoaGhoaGk6Ia3OKamqJiU8aGhoaGhgUGRcCAlLm+uDm5ubm5ubmpJ6kOnNy

Ansi based on Dropped File (is-M3VFU.tmp)

1O230OrHz7luzLFmy8l1dttnZtlNZddNbNNdc7t+pdvCSopB5p1f5p1f5p1ftm1K35ZY35VY35ZY

Ansi based on Dropped File (is-PTAHT.tmp)

1OjzxdT0op7wVVjeiof0LTz3dI3t 4+jx+v/4//f+//z/////+Pr76O/y1+Hox9Lau8bOvMPMv8bPjJieGCQqUFxiKzc9j5qimqevoK21 qba+prTArrrGusTO0trh8PT5+////////v7+//////7///3///3///3///3//vv9//////////// ///////////////////////////q+vn/8f3r6/n///j/6OT/Qj7xoKnV8PDw////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

1QAbMswAGzDKAB0z0AAdMsoAJT/mAClA1wAqP9IAL0bZADVM3AA/U90ARFffAEdb5gBqe+wAZnfl

Ansi based on Dropped File (is-M3VFU.tmp)

1qJ60J53tYlnmXRXm3ZZvI5r06B51qJ61qJ6y5Boxodf1qJ61qJ61qJ6ANingdingcaIYc6WcNin

Ansi based on Dropped File (is-PTAHT.tmp)

1qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ6

Ansi based on Dropped File (is-PTAHT.tmp)

1qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ6AAAXrxAXrxAXrxAXrxAXrxAXrxAXrxAXrhAX

Ansi based on Dropped File (is-PTAHT.tmp)

1qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ61qJ6y5Boxodf1qJ61qJ61qJ6ANingdingcaIYc6WcNin

Ansi based on Dropped File (is-PTAHT.tmp)

1qJ61qJ6y5Boxodf1qJ61qJ61qJ61qJ61qJ61qJ6AAAXrxAXrxAXrxAXrxAXrxAXrxAXrxAXrhAX

Ansi based on Dropped File (is-PTAHT.tmp)

1rOa6dbK/Pz848u6zp1304I904I904I9r2E40H050H054JZY35ZYs2dG35ZY35ZY35ZY/N7B7+LY

Ansi based on Dropped File (is-PTAHT.tmp)

1rOa6dbK/Pz848u6zp13ejYQejYQejYQaCgG0H050H0535VY35ZXaCgGj0sdj0sdj0sd/N7B7+LY

Ansi based on Dropped File (is-PTAHT.tmp)

1rOa6dbK/Pz848u6zp13uFIbuFIbuFIboDci0H050H054JZY4JVXqDopymgtymgtymgt/N7B7+LY

Ansi based on Dropped File (is-PTAHT.tmp)

1rSR7uDS0J505p1f5p1f5p1f5p1ftm1K35ZY35VY35VY35ZYtm1K5p1f5p1f5p1f5p1f6LOG9OPU

Ansi based on Dropped File (is-PTAHT.tmp)

1rSR7uDSxJNslVEhlVEhlVEhlVEhZygF35ZY35VX35VY35ZXZygFlVEhlVEhlVEhlVEhv4xm9OPU

Ansi based on Dropped File (is-PTAHT.tmp)

1rSR7uDSzZhu1XAy1XAy1XAy1XAyrD0r35VY35VY35VY4JVXrD0r1XAy1XAy1XAy1XAy4Jxv9OPU

Ansi based on Dropped File (is-PTAHT.tmp)

1sr8/Pzjy7rOnXfTgj3Tgj3Tgj2vYTjQfTnQfTnQfTmvYTjTgj3Tgj3Tgj3LuKjw8PD+/v7+/v79

Ansi based on Dropped File (is-PTAHT.tmp)

1tbW////////////////5OTkJSUlJSUlJSUlJSUl5OTk////////////////yMjIQEBAJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

1tbW////////hYWFJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlaWlpyMjI

Ansi based on Dropped File (is-OODVK.tmp)

1tY12tpRNTU1wlHCNdYsKwT44cTV1dw31dw3HzfcHjfV1NXEBPf8wyEhHd/fKx3bI+TfISEuw+AE

Ansi based on Dropped File (is-M3VFU.tmp)

1wBDAA4ADAAUAFMABgAbAG0A3wDDAI4AVQCGABcANAACAF0AMQAeAKwAgQAQAKgADgDgAIYAaABR

Ansi based on Dropped File (is-1PHDE.tmp)

1Wt&)G_-"=Q5

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy////5qmE24NN6bOS1XAy1XAy1XAy

Ansi based on Dropped File (is-PTAHT.tmp)

1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy////5qmE1XAy1XAy1XAy1XAy

Ansi based on Dropped File (is-PTAHT.tmp)

1XAy1XAy1XAy1XAy1XAy1XAyrD0r4Zlb4Zlb451f5J1grD8t3Hg33Hg33Hg33Hg33Hg30M7MysfF

Ansi based on Dropped File (is-PTAHT.tmp)

1XAy1XAy1XAy1XAy5qmE////1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAyrD0r35VY4JZY

Ansi based on Dropped File (is-PTAHT.tmp)

1XAy1XAy1XAy5qmE////1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAyrD0r4Zlb4ZlbAAAA

Ansi based on Dropped File (is-PTAHT.tmp)

1XAy1XAy1XAyrD0r35VYAACsPSvVcDLVcDLVcDLVcDLVcDLVcDLVcDLVcDLVcDLVcDLVcDKsPSvf

Ansi based on Dropped File (is-PTAHT.tmp)

1XAy1XAyl5KnfJvQk5GQx8fHzMzMx8fHxsbGw8PDwMDAh4OBsXhV1XAy1XAy1XAyrD0r35VY4JZY

Ansi based on Dropped File (is-PTAHT.tmp)

1XAy7sat////9+LW1XAy5qmE////7sat/////PXx4JZp1XAy1XAy1XAy1XAy1XAy1XAyrD0r35VY

Ansi based on Dropped File (is-PTAHT.tmp)

1XxE2n092n092n092n092n092n092n092n092n092n094Zdk345X2n092n092n092n092n092n09

Ansi based on Dropped File (is-PTAHT.tmp)

1YZX36SB3JpzymgtznI7+/Xx0XxJymgt+Ovj1YZX7c25+Ovjymgt0XxJ+OvjymgtymgtymgtqDop

Ansi based on Dropped File (is-PTAHT.tmp)

1Zxm3I9F3I9F3I9FvVQ26apt6apt669z6q9yyWQ635ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL

Ansi based on Dropped File (is-PTAHT.tmp)

2"F_'rvRg

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

2+PMDgjMLiGfmpmXk5SSkVVYNVHYNjagVlWSVpSWmJ4hLswODszj3KBam1mZl5aTThoe5ezloTQ2

Ansi based on Dropped File (is-M3VFU.tmp)

2/j3Uc_-pI>x

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

2005-2010 Oleg N. Scherbakov

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

2266abaaboaoooosssssssssssssrooa

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

22RkZGRkZGRkZGRkZGRkZNtkvV1dXV29ZNtkZGRkZGRkZGRkZGRkZGTbZL1dXV1dXV1dXV2boM5g

Ansi based on Dropped File (is-1PHDE.tmp)

255555bbabnaooooornsosososnooaonb

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

28/Pz9/b48vHz9/b48vHz8vHz9PP1 6+rs7Ovt6+vr4+Lk5uLn3dbd2tPa4drd29bVpZ6bm9yRot6Yj6aAotqZodyYjaiAnd6TktmJjqaG r+KokcCPi7aJo96hnb+avL+21N7N2NfZ2tnb2djc2djc3dze3Nzc2drW1NbQxdDOqauXq+Gmm9mj kKWEqd+em+Odq6ig2NfZ29rc4N/h5eTm6ejq7ezu7u3v7u3v5O/t4ufo7O3x6eft5Nz

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

2856aaaofavoorssssssyssssssssoto

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

28rz28rz28rv2MxwbPt3dP2Ggv92c/xkYvhgXfdtavp7ef9gXfdKR+/t1svz28rz28rz28rz28rj

Ansi based on Dropped File (is-PTAHT.tmp)

28rz28rz28rz28rz28rz28rz28rz28oAAFCuS1CuS1CuS1CuS1CuS1CuS1CuS1CuS1CuS1CuS1Cu

Ansi based on Dropped File (is-PTAHT.tmp)

28rz28rz28rz28rz28rz28rz28rz28rz28rz28rz28rz28rz28rz28rz28rz28rz28rz28rz28rz

Ansi based on Dropped File (is-PTAHT.tmp)

29rc8vTu///8PkFGEhAQHhwcIB4eHBoaHx0dIR8fIB4eIB4eHx0dHBoaHBoaIiAghoSEv729KScn

Ansi based on Dropped File (is-M3VFU.tmp)

29uFcmFfXVhQUzETPExMTpz329v+AO/WAgK5wQD93d3d3Yl0ZGJedldYgRU/UZZSht3d3f0AwbkC

Ansi based on Dropped File (is-M3VFU.tmp)

29XV1V1d29XV1dvb29vbQdoE9OACAvrzBCRLS9jY2FPYU9hTU1NTU1NTU9jY2NjYSgTz+hgYDfME

Ansi based on Dropped File (is-M3VFU.tmp)

2;_j!{x'vAj

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

2as9AHtkKgCSg2AAmJSKAJ2ISAB1c20A6s9fABsaFgAcGxcAHRwYAB4dGQCoo44AWllVAK6kawCY

Ansi based on Dropped File (is-M3VFU.tmp)

2c0hC0P,J

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

2cnUmGvEcjXEcjXEcjXEcjWmUSfEcTcAAKZVLMp3Nsp3Nsp3Nsp3NtibbP////Hbycp3Nsp3Nsp3

Ansi based on Dropped File (is-PTAHT.tmp)

2d#}P37^

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

2dH$YE3Yt

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

2dUEBAQEBAQEBAQEBAQEBAQEBAQEBNXZ9tznAgLm4O/uBQMDAwMDAwMDAwMDAwMDAwMDAwMDBe7v

Ansi based on Dropped File (is-M3VFU.tmp)

2ePeDggnLyOyrKuoo6VMDzAa5QHmG+0THkqiYKWnqrEjLycODt7j2lVlYqyrqFUxGBUa5hrr8R08

Ansi based on Dropped File (is-M3VFU.tmp)

2gDV1dUAyMjIAMfHxwDExMQAv7+/ALu7uwC3t7cAtbW1ALKysgCwsLAAr6+vAKqqqgCoqKgAp6en

Ansi based on Dropped File (is-M3VFU.tmp)

2HpA+ezk+ezk+ezk+ezk+ezk+ezk+ezk////+ezk9NnI/PXx+ezk46B21XAyrD0r4Zlb4ZlbAAAA

Ansi based on Dropped File (is-PTAHT.tmp)

2hpD3vdDj

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

2kcyNSAeHh4cHB8dHUZERBAODlhWViQiIhsZGVhWVg4MDERCQiIgIB0bGx0bGxwaGh0bGx4ZFn1h

Ansi based on Dropped File (is-M3VFU.tmp)

2n092n092n092n092n092n092n092n092n092n092n092n092n092n092n092n092n092n092n09

Ansi based on Dropped File (is-PTAHT.tmp)

2n092n092n092n092n092n092n092n092n092n092n092n092n09sUYu5qFk5qFkAAAA56Zp56Zp

Ansi based on Dropped File (is-PTAHT.tmp)

2n092n092n092n092n092n092n092n092n095qh+2n092n092n09sUYu5qFk5qFkAAAA56Zp56Zp

Ansi based on Dropped File (is-PTAHT.tmp)

2n092n092n092n092n09sUYu5qFk5aJk56Zp56ZptUsx3IlB3IlB3IlB3IlB3IlB3IlB3IlB4JRT

Ansi based on Dropped File (is-PTAHT.tmp)

2n092n092n092n092n09sUYu5qFk5qFk6KZp56ZptUsx3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB

Ansi based on Dropped File (is-PTAHT.tmp)

2n5zewMuDSmATm1xbG1xbHBxb3Jwb3RycXVzc3Jycm9vb3JwcGxqam9tbXJwcLu5udvZ2W5sbG9t

Ansi based on Dropped File (is-M3VFU.tmp)

2NgA1tfXANDR0QDP0NAAysvLAMbHxwDExcUAvr+/AK+wsACrrKwAmJmZAK6wsQCoqaoAkZKTAPLz

Ansi based on Dropped File (is-1PHDE.tmp)

2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY

Ansi based on Dropped File (is-1PHDE.tmp)

2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2PG59fX1ue3X19fKDHfFxcXFxcXFxcXFxcXF

Ansi based on Dropped File (is-1PHDE.tmp)

2NjY2NnY2NjY2NmOjo/Y2NmP2djZ2NjY2NiOj46OSkpJSdjY2NgICgr3CgoKCgoKCgoKCgoKCvYK

Ansi based on Dropped File (is-M3VFU.tmp)

2qyH1nk+1XAy1XAy1XAy1XAyrD0r4Zlb4plb5J1g5J1grD8t3Hg33Hg33Hg33Hg33Hg35JZi8c6y

Ansi based on Dropped File (is-PTAHT.tmp)

2rCL6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRltnBN451g451f5J5g

Ansi based on Dropped File (is-PTAHT.tmp)

2rCL6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRltnBN451g451f5qFk

Ansi based on Dropped File (is-PTAHT.tmp)

2S(^62~A1<

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

2sOw4uLi8/Pz/v7+6Ojo5ubm+vr64eHh29vb9PT0/f39urq6uZJw5p1f5p1f5p1f5p1f5p1ftm1K

Ansi based on Dropped File (is-PTAHT.tmp)

2trn2NY0PpE/QkNFRkoEJR8ODs/FBK2bmZmYl5eqqZYH09LSD5aWqaqXmJmZrQTFzw4OKMQEn66c

Ansi based on Dropped File (is-M3VFU.tmp)

2tXSp6Gcot+bqeehkLCBo+uZouyairF9ou2XpPGWrqKKsLympraUnbl+sOmko9Kao8GQtOWnkMeW l82Stuiuk7WQt8rB0Nrh3eXl0dvP2dja49ja2Nbcys7Pm6WHteikreqqmaWHqfOhtOGpn6qW39rZ 4uDg4OPh6u3r8O3v8/Pz9PT09fX19PT08fHx7Ozs5+fn4+Pjs8CyrcagpeKopc2WnsuMo/CflcqB ncqSp/iXk7p8qeKer+yi

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

2tYA2dnVANnZ1gDLy8kAd3d2AP///gDe3t0A0tLRAImJiADGx8EAxcbCAL2/uADLzMkAm6ONAHKJ

Ansi based on Dropped File (is-M3VFU.tmp)

2w"7 q6S.

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

2YZ[L223n3Oz

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

2{-_w^jiOJ

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

3$aAPDx1/

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

3+K7pubCrv3r3/3r3/3r3/3r3/3r3/3r3/3r3/3r3/3r3/3r3/3r3/3r3/3r3/3r3/3r3/3r3/3r

Ansi based on Dropped File (is-PTAHT.tmp)

3+K7pufEsP3x6P3z6/3z7P3z7P3z7f307f307f3z7P3z7P3z7P3z7P3z7f307f307v307v307f3z

Ansi based on Dropped File (is-PTAHT.tmp)

3+vv/9/j8/f7///v8//7///7/+/Hx//z81aOnkkVMWAACcCYqZAAAxHx8bhca awEIp4OD/fv7//7/////+Pr76O/y1+Hox9Lau8bOvMPMv8bPjJieGCQqUFxiKzc9j5qimqevoK21 qba+prTArrrGusTO0trh8PT5+////////v7+//////7///3///3///3///3//vv9//////7//Pz8 +fv7+////f//9PT0//z9//7/7ry8poB+ypi

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

3-fe[Wfio]

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

3/3r3/3r3/3r3+XBreO8p/3r3/3r3/3r3wD+7eL+7eL23tDMlXr03M7+7eL+7eL+7eL+7eL+7eL+

Ansi based on Dropped File (is-PTAHT.tmp)

3/b29t7p7N/f3ufn5N/fp6Ojo6Ojo6Ojo6Ojo6O8y6gty6O8AaiwRaOjo6Ojo6O8y7pDAUO6urq6

Ansi based on Dropped File (is-M3VFU.tmp)

30o7Ozs73Tvd19e+177Xvte+O76+vkq9BPMNAgL59f0E397e3t7e3t7e3t7e3klJOjo6Okk6vQT9

Ansi based on Dropped File (is-M3VFU.tmp)

35VX35VY35ZXZygFlVEhlVEhlVEh/N7B7+LY7+LY7+LY7uHX7uDW7t/U7d3S7NzR69rO6tjM6tfK

Ansi based on Dropped File (is-PTAHT.tmp)

35VX35VY35ZXZygFlVEhlVEhlVEhlVEh27GR8+XZ37uez6B1zZ5y9evj5Mu059O/+/j25dO/xJhr

Ansi based on Dropped File (is-PTAHT.tmp)

35VX35VY35ZXZygFlVEhlVEhlVEhlVEhlVEhlVEhlVEheoOggbf/fLT/b6fy0tLStbW1iYmJh4aF

Ansi based on Dropped File (is-PTAHT.tmp)

35VX35VY35ZXZygFlVEhlVEhlVEhlVIiwauc4uLi8/Pz/v7+6Ojo5ubm+vr64eHh29vb9PT0/f39

Ansi based on Dropped File (is-PTAHT.tmp)

35VX35VY35ZXZygFlVEhlVEhlVEhZ7dls+zSm+KineqN1O230OrHz7luzLFmy8l1dttnZtlNZddN

Ansi based on Dropped File (is-PTAHT.tmp)

35VXAAAA35VY35ZXZygFlVEhlVEhlVEhlVEhlVEhlVEhlVEhv5d6////lVEhlVEhlVEhlVEhlVEh

Ansi based on Dropped File (is-PTAHT.tmp)

35VXAAAA35VY35ZXZygFlVEhlVEhqqPi2Nv+t7n/sLD/rq//q6v/pqb/tLX/tbj/nJz/mpz/lpb/

Ansi based on Dropped File (is-PTAHT.tmp)

35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY

Ansi based on Dropped File (is-PTAHT.tmp)

35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY89vK89vK89vK89vK89vK89vK89vK89vK89vK

Ansi based on Dropped File (is-PTAHT.tmp)

35VY35VY35ZYtm1K5p1f5p1f5p1f5p1f5ryZ8+XZ37uez6B1zZ5y9evj5Mu059O/+/j25dO/xJhr

Ansi based on Dropped File (is-PTAHT.tmp)

35VY35VY4JVXrD0r1XAy1XAy1XAy1XAy5LaT8+XZ37uez6B1zZ5y9evj5Mu059O/+/j25dO/xJhr

Ansi based on Dropped File (is-PTAHT.tmp)

35VY4JZY35ZYtm1K5p1f5p1f5p1fcMBss+zSm+KineqN1O230OrHz7luzLFmy8l1dttnZtlNZddN

Ansi based on Dropped File (is-PTAHT.tmp)

35VY4JZY4JVXrD0r1XAy1XAy1XAybrpns+zSm+KineqN1O230OrHz7luzLFmy8l1dttnZtlNZddN

Ansi based on Dropped File (is-PTAHT.tmp)

35VY4JZYAAAA35VY4JVXrD0r1XAy1XAy1XAy1XAy1XAy1XAy1XAy5qmE////1XAy1XAy1XAy1XAy

Ansi based on Dropped File (is-PTAHT.tmp)

35VY4JZYAAAA35VY4JVXrD0r1XAy1XAyrKPn1dj+sLH/qan/p6j/oqL/n5//mpr/lpb/lJT/kpL/

Ansi based on Dropped File (is-PTAHT.tmp)

35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL

Ansi based on Dropped File (is-PTAHT.tmp)

35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZLyWQ66q9z669y7LZ47LV4ymk9

Ansi based on Dropped File (is-PTAHT.tmp)

35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZLyWQ66q9z669z7LZ47LV4ymk9

Ansi based on Dropped File (is-PTAHT.tmp)

35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZLyWQ66q9z669zAAAA7LZ47LV4ymk94J1Q4J1Q

Ansi based on Dropped File (is-PTAHT.tmp)

35ZL35ZL35ZLwppvp5uPnJuampmY35ZL35ZL35ZL35ZL35ZL35ZLyWQ66q9z669z7LZ47LV4ymk9

Ansi based on Dropped File (is-PTAHT.tmp)

35ZY35VXAAAA35VY35ZXZygFlVEhlVEhlVEhlVEhlVEhlVEhlVEhv5d6////lVEhlVEhlVEhlVEh

Ansi based on Dropped File (is-PTAHT.tmp)

35ZY35VXAAAA35VY35ZXZygFlVEhlVEhpqHl1dj+sLH/qan/p6j/oqL/n5//mpr/lpb/lJT/kpL/

Ansi based on Dropped File (is-PTAHT.tmp)

35ZY4JZY35ZYtm1K5p1f5p1f5p1f5p1f5p1f5p1f5p1fnKS7gbf/fLT/b6fy0tLStbW1iYmJiIeG

Ansi based on Dropped File (is-PTAHT.tmp)

35ZY4JZYAAAA35VY35ZYtm1K5p1f5p1f5p1f5p1f5p1f5p1f5p1f8MSf////5p1f5p1f5p1f5p1f

Ansi based on Dropped File (is-PTAHT.tmp)

35ZY4JZYAAAA35VY35ZYtm1K5p1f5p1frafq1dj+sLH/qan/p6j/oqL/n5//mpr/lpb/lJT/kpL/

Ansi based on Dropped File (is-PTAHT.tmp)

35ZY6LKF////46Ru6LKF35ZY7MCb////7sem4Z1j9NzH+/Hp35ZY35ZY35ZY35ZY35ZY35ZYs2dG

Ansi based on Dropped File (is-PTAHT.tmp)

35ZYmaC4frf/qc7/qM3/cKz/X5rui4iG05Re35ZY35ZY35ZY35ZY35ZY35ZY35ZY35ZYs2dG35ZY

Ansi based on Dropped File (is-PTAHT.tmp)

362G362G////ync2zoBD2Jts0YlR////2Jts362G////ync2ync2362G////ync2ync2ync2ync2

Ansi based on Dropped File (is-PTAHT.tmp)

37mI6rZ06rZ06rZ0wX5f6apt6apt669z6q9yyIln7Lt77Lt77Lt77Lp77Lt77Lt77Lt77Lt77Lt7

Ansi based on Dropped File (is-PTAHT.tmp)

3866aafaooorrxsxsxyyyyyyysyssxorx

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

39/f39/f39/f39/f39/f4OUAsasCArnY7uSl3d3d3d3d3d3d3d3d3d3d3d3d3d2l5O7YuRgYt9ip

Ansi based on Dropped File (is-M3VFU.tmp)

39/fICAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICAg

Ansi based on Dropped File (is-OODVK.tmp)

398A2traANjY2ADX19cA1tbWANXV1QDU1NQA09PTANHR0QDOzs4AzMzMAMrKygDIyMgAx8fHAMXF

Ansi based on Dropped File (is-1PHDE.tmp)

398A3t7eAN3d3QDY2NgA1dXVANTU1ADR0dEA0NDQAM7OzgDMzMwAy8vLAMrKygDHx8cAxsbGAMTE

Ansi based on Dropped File (is-M3VFU.tmp)

39jY2ICA39jY2N/f39zc3N4E9+QCAvv2BMphYdvb223bbdttbW1tbW1tbdvb29vbygT2+xgYDPYE

Ansi based on Dropped File (is-M3VFU.tmp)

39sEBAQEBAQEBAQEBAQEBAQEBAQEBNvf+eLrAgLq5fLwBQMDAwMDAwMDAwMDAwMDAwMDAwMDBfDy

Ansi based on Dropped File (is-M3VFU.tmp)

39sEBAQEBAQEBAQEBAQEBAQEBAQEBNvf+eLrAgLq5vPxBQMDAwMDAwMDAwMDAwMDAwMDAwMDBfHz

Ansi based on Dropped File (is-M3VFU.tmp)

3:-O 3:-O

Ansi based on Dropped File (is-8C1UQ.tmp)

3baizZFzq0gWq0gW48Kx9OfgtmA1q0gWtmA13baivG1Fq0gWq0gWtmA19Ofgq0gWtmA19Ofgq0gW

Ansi based on Dropped File (is-PTAHT.tmp)

3bap5dPD3vrm1/rm1/rm1/rm1+nIs9qulvrm1/rm1/rm1/rm1/rm1/rm1wAAWbRYWbRYWbRYWbRY

Ansi based on Dropped File (is-PTAHT.tmp)

3bug6NC66dO/7NzMyMPmWFb1Y2H6WFX2Q0Ht6+Xi8evi8evi6+XiLizmQT/xTEr2MS/qubDY6tXC

Ansi based on Dropped File (is-PTAHT.tmp)

3d4AycnKAMTExQC0tLUArKytAKqqqwCYmJkAjIyNAIWFhgCBgYIA/Pz8APj4+ADv7+8A1NTUANDQ

Ansi based on Dropped File (is-1PHDE.tmp)

3dkEBAQEBAQEBAQEBAQEBAQEBAQEBNnd+ODpAgLo4/HvBQMDAwMDAwMDAwMDAwMDAwMDAwMDBe/x

Ansi based on Dropped File (is-M3VFU.tmp)

3gDW19gAvr/AALi5ugCztLUAq6ytAK6vsQDJyswAVFRVAFJSUwBBQUIAenp7AGdnaABWVlcAVVVW

Ansi based on Dropped File (is-1PHDE.tmp)

3h5e7y9v//ztfbwcrO1N3h4uvv8Pn98vLy9vb2+vr6+vr69vb28vLy8vLy 8/Pz////w8PD/////f39////////////////////////////////////////////////9vX/4OD+ 6Oj/+vr/+v3/+f3+/f/8+v/2//v+9O/x8O/zzdDV0tjf8Pr/1+Tsytrhzdjc1N/j4Ovv1uHl1+Lm 5fD04ezw4u3xgpOWzdzf5/L25ezv+Pz9//////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

3Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg3////5Zxs6q6H+u3k3Hg33Hg33Hg33Hg3

Ansi based on Dropped File (is-PTAHT.tmp)

3Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg3rD8t451gAACxRi7afT3afT3afT3afT3afT3afT3a

Ansi based on Dropped File (is-PTAHT.tmp)

3Hg33Hg33Hg33Hg3l5aV3d3dxcXFool6oIh5rKys19fXiIeG3Hg33Hg33Hg3rD8t451g451f5qFk

Ansi based on Dropped File (is-PTAHT.tmp)

3Hg33Hg35Zxs////3Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg33Hg3rD8t451g451fAAAA5aJk

Ansi based on Dropped File (is-PTAHT.tmp)

3Hs91sK14+Pj8/Pz6OjoysrKwqaVyZ6Ct6qh2traxMTEqYZv3Hg33Hg33Hg3rD8t451g451f5qFk

Ansi based on Dropped File (is-PTAHT.tmp)

3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F

Ansi based on Dropped File (is-PTAHT.tmp)

3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9F3I9FvVQ26apt6aptAAAA669y6q9yyWQ635ZL

Ansi based on Dropped File (is-PTAHT.tmp)

3I9F3I9F3I9F3I9FvVQ26apt6apt669z6q9yyWQ635ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL

Ansi based on Dropped File (is-PTAHT.tmp)

3I9F3I9F3I9F3I9FvVQ26apt6apu669y6q9yyWQ635ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL

Ansi based on Dropped File (is-PTAHT.tmp)

3I9F3I9F3I9F3I9FvVQ26apt6apu669z6q9yyWQ635ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL35ZL

Ansi based on Dropped File (is-PTAHT.tmp)

3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB

Ansi based on Dropped File (is-PTAHT.tmp)

3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlBtUsx6KZp6KZp6apt6apt

Ansi based on Dropped File (is-PTAHT.tmp)

3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlBtUsx6KZp6KZpAAAA6apu6aptvVQ2

Ansi based on Dropped File (is-PTAHT.tmp)

3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IlB3IpEzaJ9ta2n3IlB3IlB3IlBtUsx6KZp6KZp6apt6apt

Ansi based on Dropped File (is-PTAHT.tmp)

3IlB3IlB3IlBpZiN4uLi5+fnubm5k5OT3IlB3IlB3IlB3IlB3IlB3IlBtUsx6KZp6KZp6apt6apt

Ansi based on Dropped File (is-PTAHT.tmp)

3LGM5KBl5p1f5p1f5p1f5p1ftm1K4Zlb4plb5J1g5J5gtnBN6qRl6qRl6qRl6qRl6qRl7bSB8tC0

Ansi based on Dropped File (is-PTAHT.tmp)

3Messages

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.0041B000.00000002.mdmp)

3MW18ejhuItrlVEhxqKJ+PPw8ejh49HE+PPw49HE8ejhlVEho2g/8ejhlVEhlVEhlVEhZygF35ZY

Ansi based on Dropped File (is-PTAHT.tmp)

3NwA1tfXANDR0QDP0NAAy8zMAMrLywDExcUAvr+/AL2+vgCvsLAAq6ysAK6wsQCoqaoAkZKTAPf4

Ansi based on Dropped File (is-1PHDE.tmp)

3Nzd/v7/d3d3AAAAMzMz/v7/qamqAAAAAAAAZmZm/v7/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

3NzdAAAAZmZm3NzdAAAAMzMz7e3uERER3NzdMzMzAAAAmJiZ/v7//v7/mJiZ/v7//v7//v7/AAAA

Ansi based on Dropped File (is-OODVK.tmp)

3NzhANC/8jc0NwDg29vb29vb22V7Unx+UlIdfKTb29vb2+AANzQCAjM2AN/Hx8fHx8fHoJqes1VX

Ansi based on Dropped File (is-M3VFU.tmp)

3PkI6ebzLATbLgICEy6e2gK1KQKgtBegkBcCAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

3r5Ai~accY

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

3rGN3rGN0555yY5p3rGN3rGN3rGNAOC1luC1lsuRbtShgOC1luC1luC1lsmlpltY9mVi+nFw/1lW

Ansi based on Dropped File (is-PTAHT.tmp)

3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN

Ansi based on Dropped File (is-PTAHT.tmp)

3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGN3rGNAAAfmxMfmxMfmxMf

Ansi based on Dropped File (is-PTAHT.tmp)

3rGN3rGN3rGN3rGNyY5p05553rGN3rGN3rGNu5mnWFb1Y2H6WFX2Q0Ds2a2Q3rGN3rGN2a2QLizl

Ansi based on Dropped File (is-PTAHT.tmp)

3s-I)P~N?6

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

3wCpubYA2uvoANjp5gDg8O0ATFhWAKrEwACEmJUAg5eUAKzFwQCrxMAAqsO/AKnCvgClvbkAhJeU

Ansi based on Dropped File (is-1PHDE.tmp)

3wCzsa8AYWBfAG9ubQBXSjwAFxQQAB0aFgAeGxcAHxwYAF9eXABcW1kAGxoWABwbFwAdHBgAHh0Z

Ansi based on Dropped File (is-M3VFU.tmp)

4 L)Abq2#\X

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

4$%HtEAR

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

4% Fei8?0

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

4+gCAufm3/D29PLyTmnzRCZzaRlQRPLzaU7y8vT28N/m5wIC2wTa19YCAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

4+H1Piq6IgywIgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgywIgywIgywIgywIgywIgywPiq6

Ansi based on Dropped File (is-OODVK.tmp)

40eiPD0/QQQaE8tDRUOtvuPj4+Pj476tQ8bJBOLsvEayRsjFrq6urq5Excevys8E4etLtbq1tLTL

Ansi based on Dropped File (is-M3VFU.tmp)

42AjIyMj4SPh2trL2svay9rLI8vLy2DJBPYMAgL69+YE4+Li4uLi4uLi4uLi4l9fIiIiIl8iyQTm

Ansi based on Dropped File (is-M3VFU.tmp)

44qT3?qst

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

451f451f451f451f451f451f451f451f451f451f451f451f451f451f451f451f451f451f451f

Ansi based on Dropped File (is-PTAHT.tmp)

451f451f451f451f451f451f451f451f451f451f5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g

Ansi based on Dropped File (is-PTAHT.tmp)

451g451gZygFmVcnmVcnmVcnmVcnmVcnmVcnmVcntIRh////////////////wpp9mVcnmVcnmVcn

Ansi based on Dropped File (is-PTAHT.tmp)

451g451gZygFmVcnmVcnonRosLL81tn+2dv/1Nb/2tz/vb/6lY7ZkYbNsLL30tT/wMT/w8b/1Nb/

Ansi based on Dropped File (is-PTAHT.tmp)

46Ru7MCb////7sem4Z1j9NzH+/Hp35ZY/fj08tW84Z1j7sem////7MCb35ZY////7MCb7MCb////

Ansi based on Dropped File (is-PTAHT.tmp)

46Vw6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr7bmJ7LR/6ahr6ahr6ahr6ahr6ahr6ahr

Ansi based on Dropped File (is-PTAHT.tmp)

48qz5My25M245M2348q048ix4sau4sWs3baXy5Boxodf1qJ61qJ61qJ6ANingdingcaIYdWqi+PI

Ansi based on Dropped File (is-PTAHT.tmp)

49HEuItrlVEhlVEho2g/o2g/lVEho2g/o2g/8ejhlVEhv5d68ejhlVEhlVEhlVEhZygF35ZY35VX

Ansi based on Dropped File (is-PTAHT.tmp)

4</KeyboardLayoutWidth> <KeyboardLayoutLeft>99</KeyboardLayoutLeft> <KeyboardLayoutTop>0</KeyboardLayoutTop> <LayoutViewerNormal> Qk26CQAAAAAAADYAAAAoAAAAHAAAAB0AAAABABgAAAAAAIQJAAASCwAAEgsAAAAAAAAAAAAAlEMl lEMllEMllEMllEMllEMllEMllEMllEMllEMllE

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

4?v%'>#.-

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

4^n+?*ib}a

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

4a)wtsIW$H

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

4AC6ubcAsrGvAK6tqwCtrKoA9vXzAO/u7ACTj4YAsq6lAEc7HQBDOBwAcmlUAKSciQCtp5gAlZCE

Ansi based on Dropped File (is-M3VFU.tmp)

4ce14MWz38Sx38Sw3sKv3sKuxJBofDcQfDcQfDcQaCgGw200w200xHE3xHE3aCgGfDYQfDYQfDYQ

Ansi based on Dropped File (is-PTAHT.tmp)

4ce14MWz38Sx38Sw3sKv3sKuxJBonj0Wnj0Wnj0WjSwXw200w200xHE3xHE3ky8ZokMWokMWokMW

Ansi based on Dropped File (is-PTAHT.tmp)

4ce14MWz38Sx38Sw3sKv3sKuxJBowWs1wWs1wWs1okwkw200w200xHE3xHE3plEnxHI1xHI1xHI1

Ansi based on Dropped File (is-PTAHT.tmp)

4ci2yplyz3o4z3o4z3o4qVcvzno5zno5zno5qVcvz3o4z3o4z3o4wru2+fn5/f39/Pz8+vr6+Pj4

Ansi based on Dropped File (is-PTAHT.tmp)

4d70/v7/iX3VIgywTjzA/v7/ta3lIgywIgywem3Q/v7/IgywIgywIgywIgywMBjPMBjPIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

4d70Igywem3Q4d70IgywTjzA7+76MRy14d70TjzAIgywpp3f/v7//v7/pp3f/v7//v7//v7/Igyw

Ansi based on Dropped File (is-OODVK.tmp)

4e6efftvvxxxx|zzz

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

4eEA39/fAN3d3QDY2NgA1dXVANHR0QDOzs4AzMzMAMvLywDGxsYAw8PDAL6+vgC7u7sAubm5ALe3

Ansi based on Dropped File (is-M3VFU.tmp)

4efsytTbu8nPuMLMucPNprC6ZXF7 ZHB6T1tlIC84rLvExNDWucXLucXLuMTKtsLIuMTKwc3T1eHn9Pf89/r/+Pv/9Pf88vX69Pf89/r/ 9/r/8fj78vn88/r99Pv+9Pv+8/r98vn88fj79/v/9vr/9vr/9vr/9vr/9vr/9vr/9vr/9fn+9fn+ 9fn+9fn+9vr/9vr/9vr/9vr/+P3/9/z/9/z/9/z/9/z/9/z/9/z/9/z/9vv+9vv+9vv+

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

4eGIiIiI4eHh4eHh4d3d3eAE+OYCAvv3BHBxcdzc3Hncedx5eXl5eXl5edzc3NzccAT3+xgYEPcE

Ansi based on Dropped File (is-M3VFU.tmp)

4eHi/v7/ioqLJSUlUFBR/v7/tra2JSUlJSUlfHx8/v7/JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

4eHiioqLJSUlJSUlxMTFioqLJSUlp6eotra2JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

4eHiJSUlfHx84eHiJSUlUFBR8PDwMzM04eHiUFBRJSUlp6eo/v7//v7/p6eo/v7//v7//v7/JSUl

Ansi based on Dropped File (is-OODVK.tmp)

4fn3AN729ADg9/UAiZeWALvMywDo//4A5/79AEJHRwB5f38ALC0tADs8PAA4OTkAqKqqAEVGRgBB

Ansi based on Dropped File (is-1PHDE.tmp)

4fn3AN729ADX7uwA4Pf1ANXr6QDQ5eMA3fHvAImXlgDF19YAu8zLALHAvwDo//4A5/79AOb9/AAH

Ansi based on Dropped File (is-1PHDE.tmp)

4gAAf794f794f794f794f794f794f794f794f794f794f794f794f794f794f794f794f794f794

Ansi based on Dropped File (is-PTAHT.tmp)

4gjb2cXFxcXFxcXFxcXFxcXFxcXZ2wjixtfUAgLTz9gO490ICAgICAgICAgICAgICAgICAjd4w7Y

Ansi based on Dropped File (is-M3VFU.tmp)

4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q

Ansi based on Dropped File (is-PTAHT.tmp)

4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Q4J1Qymk97LZ47LZ4AAAA7bx+7bx+zXVI3JRs5qNl5qNl

Ansi based on Dropped File (is-PTAHT.tmp)

4J1Q4J1Q4J1Qymk97LZ47LZ47bx+7bx+zXVI3JRs5qNl5qNl5qRn5qRn5qRn5qRn5qRn5qRn5qRn

Ansi based on Dropped File (is-PTAHT.tmp)

4jD,GgAN

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

4JZp////9NnI////+ezk4JZp1XAy3Y1b9+LW////9NnI////4JZp1XAy////5qmE4JZp////1XAy

Ansi based on Dropped File (is-PTAHT.tmp)

4JZY4JZY35ZYtm1K5p1f5p1f5p1f/N7B7+LY7+LY7+LY7uHX7uDW7t/U7d3S7NzR69rO6tjM6tfK

Ansi based on Dropped File (is-PTAHT.tmp)

4JZY4JZY35ZYtm1K5p1f5p1f5p1f5p1f2sOw4uLi8/Pz/v7+6Ojo5ubm+vr64eHh29vb9PT0/f39

Ansi based on Dropped File (is-PTAHT.tmp)

4JZY4JZY35ZYtm1K5p1f5p1f5p1f5p1f5p1f5p1f5p1fnKS7gbf/fLT/b6fy0tLStbW1iYmJiIeG

Ansi based on Dropped File (is-PTAHT.tmp)

4JZY4JZY4JVXrD0r1XAy1XAy1XAy/N7B7+LY7+LY7+LY7uHX7uDW7t/U7d3S7NzR69rO6tjM6tfK

Ansi based on Dropped File (is-PTAHT.tmp)

4JZY4JZY4JVXrD0r1XAy1XAy1XAy1XAy1XAy1XAy1XAylZGngbf/fLT/b6fy0tLStbW1iYmJiIeG

Ansi based on Dropped File (is-PTAHT.tmp)

4JZY4JZY4JVXrD0r1XAy1XAy1XAy1XAz1bWh4uLi8/Pz/v7+6Ojo5ubm+vr64eHh29vb9PT0/f39

Ansi based on Dropped File (is-PTAHT.tmp)

4JZY4JZY4JZY4JZY4JZY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY35VY

Ansi based on Dropped File (is-PTAHT.tmp)

4JZY4JZY4JZY4JZY4JZY4JZY4JZY4JZY4JZY4JZY4JZY4JZY4JZY4JZY4JZY4JZY4JZY4JZY4JZY

Ansi based on Dropped File (is-PTAHT.tmp)

4JZYAAAA35VY35ZYtm1K5p1f5p1f5p1f5p1f5p1f5p1f5p1f8MSf////5p1f5p1f5p1f5p1f5p1f

Ansi based on Dropped File (is-PTAHT.tmp)

4JZYAAAA35VY35ZYtm1K5p1f5p1fs6vp2Nv+t7n/sLD/rq//q6v/pqb/tLX/tbj/nJz/mpz/lpb/

Ansi based on Dropped File (is-PTAHT.tmp)

4JZYAAAA35VY4JVXrD0r1XAy1XAy1XAy1XAy1XAy1XAy1XAy5qmE////1XAy1XAy1XAy1XAy1XAy

Ansi based on Dropped File (is-PTAHT.tmp)

4JZYAAAA35VY4JVXrD0r1XAy1XAysafk2Nv+t7n/sLD/rq//q6v/pqb/tLX/tbj/nJz/mpz/lpb/

Ansi based on Dropped File (is-PTAHT.tmp)

4Khq6ahr6ahr6ahr6ahruXVQ5qFl5aJk6KZp56ZpvHhW6rFw6rFw6rFw6rBw6rFw6LFwkr1vZcNu

Ansi based on Dropped File (is-PTAHT.tmp)

4l'it7H?$K

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

4N30////////////////////////////////////3drzIgywIgywIgywIgywIgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

4NwEBAQEBAQEBAQEBAQEBAQEBAQEBNzg+ePsAgLr5vPxBQMDAwMDAwMDAwMDAwMDAwMDAwMDBfHz

Ansi based on Dropped File (is-M3VFU.tmp)

4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg

Ansi based on Dropped File (is-1PHDE.tmp)

4ODg4ODg4ODg4ODg4ODg4ODg5u319fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX1

Ansi based on Dropped File (is-1PHDE.tmp)

4OgBAEQqKQCOvjAApJBiAOmllADAaAIASLACAHGEcAANJKQA6qqsAOrqqwDWcEMAJaxgAEZGRkZG

Ansi based on Dropped File (is-1PHDE.tmp)

4OYCAuXk2zP08vDwmrXxZia+tQycZvDxtZrw8PL0M9vk5QIC1wTW09ECAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

4plb4plbtm1K5p1f5p1f5p1f5p1f56Rq7smq9und7NjG16yB3Lua9uzj9ezi5Miu0qd75s668eLV

Ansi based on Dropped File (is-PTAHT.tmp)

4plb4plcrD0r1XAy1XAy1XAy1XAy2X1D7MSm9und7NjG16yB3Lua9uzj9ezi5Miu0qd75s668eLV

Ansi based on Dropped File (is-PTAHT.tmp)

4q+I////z3o4z3o40oNF7Mqv/Pby1YxT4q+I////z3o4z3o44q+I////z3o4z3o4z3o4z3o4z3o4

Ansi based on Dropped File (is-PTAHT.tmp)

4q+Iz3o479O9+e3k1YxTz3o4z3o49eTX6cGi2ZVgz3o4z3o41YxT+e3kz3o41YxT+e3kz3o4z3o4

Ansi based on Dropped File (is-PTAHT.tmp)

4Q94-)rxa>

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

4QIAXYAxAB5PrACBDRAAqB8OAOBghgBoxFEAHDuYAEYNIAAooogAiJGBADEcAQAUVbQARRJGADFi

Ansi based on Dropped File (is-1PHDE.tmp)

4th 4rrth

Ansi based on Dropped File (is-8C1UQ.tmp)

4tP34tP34tP34tP34tP34tP34tP34tP34tP34tP34tP34tP34tMAAFWyU1WyU1WyU1WyU1WyU1Wy

Ansi based on Dropped File (is-PTAHT.tmp)

4tP34tP34tP34tP34tP34tP34tP34tP34tP34tP34tP34tP34tP34tP34tP34tP34tP34tP34tP3

Ansi based on Dropped File (is-PTAHT.tmp)

4tP34tPZrJTmxbD34tP34tP34tP34tPn1dh6d/95dv7hz9r34tP34tP34tP34tPezNlkYfhqaPmM

Ansi based on Dropped File (is-PTAHT.tmp)

4u3nDggYIhNXp6SjTUAxMi0oKCgtLTAyMDBATaKjpK4TIhgODuft47CqqKZAPi4uLi4uLi4uLj0u

Ansi based on Dropped File (is-M3VFU.tmp)

4uLi////JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlf39/////////////

Ansi based on Dropped File (is-OODVK.tmp)

4uLoALOh8jeAgwDn4eHh4eHhUzuHawIJFIgtaOHh4eHh4ecAg4ACAn+CAOaqqqqqqqpDWCd1wgsU

Ansi based on Dropped File (is-M3VFU.tmp)

4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t

Ansi based on Dropped File (is-PTAHT.tmp)

4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4v7t4vTczsyVevbf0v7t4v7t4v7t4v7t4v7t4v7t

Ansi based on Dropped File (is-PTAHT.tmp)

4wA6P2QAkZrdAHZ6lQASJbwAESGrABYqwQAUIZ4AFyWcAB8wwgA2SNcAOUa9ADpGrwBLW+EAQU3A

Ansi based on Dropped File (is-M3VFU.tmp)

4xS43<^U1

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

4YpS4YpS4YpS4YpS4YpS4YpS4YpS4YpS4YpS4YpS+u3k4YpS3Hg33Hg3rD8t451g451fAAAA5aJk

Ansi based on Dropped File (is-PTAHT.tmp)

4Zlb4plbtm1K5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1fz5tuk5OT1NTUyMjIvLy8urq6

Ansi based on Dropped File (is-PTAHT.tmp)

4Zlb4plbtm1K5p1f5p1f5p1f5p1f5p1f5p1f5p5i18e54eHh/////v7+////////19fXrKmnwsLC

Ansi based on Dropped File (is-PTAHT.tmp)

4Zlb4plbtm1K5p1f5p1f5p1f5p1f5p1fxMTDyLOh455k5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f

Ansi based on Dropped File (is-PTAHT.tmp)

4Zlb4plbtm1K5p1f5p1f5p1fx6ZjZMNuwPPite+0tfCswe231OO32dic2tOVzbVtx7NttcuElN+a

Ansi based on Dropped File (is-PTAHT.tmp)

4Zlb4plcrD0r1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAyw3pOk5OT1NTUyMjIvLy8urq6

Ansi based on Dropped File (is-PTAHT.tmp)

4Zlb4plcrD0r1XAy1XAy1XAy1XAy1XAy1XAy1XI2072v4eHh/////v7+////////19fXrKilwsLC

Ansi based on Dropped File (is-PTAHT.tmp)

4Zlb4plcrD0r1XAy1XAy1XAy1XAy1XAyxMPDw6aT03Q61XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy

Ansi based on Dropped File (is-PTAHT.tmp)

4Zlb4plcrD0r1XAy1XAy1XAyuoRAY8JtwPPite+0tfCswe231OO32dic2tOVzbVtx7NttcuElN+a

Ansi based on Dropped File (is-PTAHT.tmp)

4Zlb4ZlbZygFlVEhlVEhlVEhiWwzYsJswPPite+0tfCswe231OO32dic2tOVzbVtx7NttcuElN+a

Ansi based on Dropped File (is-PTAHT.tmp)

4Zlb4ZlbZygFlVEhlVEhlVEhlVEhlVEhlVEhl1Qlxbar4eHh/////v7+////////19fXqaelwsLC

Ansi based on Dropped File (is-PTAHT.tmp)

4Zlb4ZlbZygFlVEhlVEhlVEhlVEhlVEhlVEhlVEhlVEhlVEhlVEhlWRCk5OT1NTUyMjIvLy8urq6

Ansi based on Dropped File (is-PTAHT.tmp)

4Zlb4ZlbZygFlVEhlVEhlVEhlVEhlVEhxMPDsZ2Ol1cqlVEhlVEhlVEhlVEhlVEhlVEhlVEhlVEh

Ansi based on Dropped File (is-PTAHT.tmp)

4Zlb4ZlbZygFlVEhlVEhlVEhlVEhoWI15sGk9und7NjG16yB3Lua9uzj9ezi5Miu0qd75s668eLV

Ansi based on Dropped File (is-PTAHT.tmp)

5+Viaazp5vAks7Ozs7Ozs7Ozs7OhySmfpK6zpK6zs6kBAcWzwMCzqTChMK6ztCnFtLS0tLS0tLS0

Ansi based on Dropped File (is-M3VFU.tmp)

5,9]Dz:|OLEI}IL

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

5.5.4 (u)

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

5/HsDggSGw13cLSyrm9SLB85NzJSUi0tKh4cHK+ws3cNGxIODuzx6Ly6uLe0smo/R0ksdq2tdiUv

Ansi based on Dropped File (is-M3VFU.tmp)

512nW4TcFt

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

52)pkoJ{8

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

58m216qR9d/O9d/O9d/OAPfi0/fi09mslOrSwfnt5Pru5frx6fv28evo9Xp3/3l2/uTh9vv49Pv4

Ansi based on Dropped File (is-PTAHT.tmp)

5@KMzO^iJ

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

5@|&#QdRb

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

5\LWSZ}!C9

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

5`7j%C?pZ

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

5aJluXVQ6ahr6ahr6ahr066pt7Lyubv8vL38r7H6raLe2qaF3aV/oJTYoKL0w8b7trn4h4ntm4S4

Ansi based on Dropped File (is-PTAHT.tmp)

5aJluXVQ6ahr6ahr6ahr6ahr5qlrgL5tjNiizfXo1O3azu3Tz9+v1t611NSiztChxNCqh8mRbq5g

Ansi based on Dropped File (is-PTAHT.tmp)

5aJluXVQ6ahr6ahr6ahr6ahr6ahr47yX1dLQ0c3Jy8W/xryzw7Olx6uSx6aHx6KA0KF256dr6ahr

Ansi based on Dropped File (is-PTAHT.tmp)

5aJluXVQ6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr

Ansi based on Dropped File (is-PTAHT.tmp)

5aJluXVQ6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahrmZiX5OTkz8/Pp5eJ6ahrjo6O

Ansi based on Dropped File (is-PTAHT.tmp)

5aJluXVQ6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6Kpw3r+i1ci807+s4K5/6ahr6ahr4q18xbOi

Ansi based on Dropped File (is-PTAHT.tmp)

5aJluXVQ6ahr6ahr6ahr6ahr6ahr6ahr7biG9NG1+enc9ujd8+Xa8+Xa9efc9eTW68Wm6bJ/6ahr

Ansi based on Dropped File (is-PTAHT.tmp)

5at57MCb6rmQ35ZY4Z1j/fj046Ru35ZY+/Hp5at59NzH+/Hp35ZY46Ru+/Hp35ZY35ZY35ZYs2dG

Ansi based on Dropped File (is-PTAHT.tmp)

5b+h5b+h5b+h5b+h5b+h5b+h5b+h5b+h5b+h5b+h5b+h5b+h5b+h5b+h5b+h5b+h5b+h5b+h5b+h

Ansi based on Dropped File (is-PTAHT.tmp)

5b+hAAAXkw4Xkw4Xkw4Xkw4Xkw4Xkw4Xkw4hTkkCxvIHtNsgUlkbdiYWkw4Wkw4Wkw4Wkw4Wkw4W

Ansi based on Dropped File (is-PTAHT.tmp)

5b+hAAAXkw4Xkw4Xkw4Xkw4Xkw4Xkw4Xkw4Xkw4Xkw4Xkw4Xkw4Xkw4Wkw4Wkw4Wkw4Wkw4Wkw4W

Ansi based on Dropped File (is-PTAHT.tmp)

5bSL+e7l2ZNX04I904I92ZNX+e7l04I904I93Jtk04I93Jtk+e7l04I92ZNX+e7l04I904I904I9

Ansi based on Dropped File (is-PTAHT.tmp)

5cKs16qR9d/O9d/O9d/OAPfi0/fi09mslObFsPfi0/fi0/fi0/fi0+fV2Hp3/3l2/uHP2vfi0/fi

Ansi based on Dropped File (is-PTAHT.tmp)

5cKs16qR9d/O9d/O9d/OAPfi0/fi09mslObFsPfi0/fi0/fi0/Hdzse3vXp3/3l2/oJ3ibqqn+nW

Ansi based on Dropped File (is-PTAHT.tmp)

5db65tfpyLParpb65tf65tf65tcA++jc++jc27CZ6sm3++jc++jc++jc++jc++jc+eba9+TZ9+TZ

Ansi based on Dropped File (is-PTAHT.tmp)

5dr159z15Nbrxabpsn/pqGvpqGvpqGvpqGvpqGvpqGu5dVDmoWXlomTlomTlomTlomT34tP34tP3

Ansi based on Dropped File (is-PTAHT.tmp)

5eHhAGtpaQCRj48AiIeHAMSdmwDCsbAAq4aDAMSsqgDWyMcAyKWhAJ87KQCNVkkAcDIeALxfPQCo

Ansi based on Dropped File (is-M3VFU.tmp)

5eLfAEpJSACzsa8AYmFgAF9eXQBeXVwAWVhXAFdWVQB4d3YAcnFwAGtqaQChoJ8AnZybAJiXlgCP

Ansi based on Dropped File (is-M3VFU.tmp)

5eoCAuno4fH39fPzsc70NBbXzgy1NPP0zrHz8/X38eHo6QIC3QTc2dgCAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

5eQFaGdkZGFnYmh9d25wdnWLxszKAAAdIwSSgn97dUTm3eN6aWlpZWlqa/A9cXV4f5AEIx0ODh0m

Ansi based on Dropped File (is-M3VFU.tmp)

5fn18Pby8nBt/Hd0/YaC/3Zz/GRi+GBd921q+nt5/2Bd90pH7/Tw8vjx6vfr4ffp3/bo3eTCrNeo

Ansi based on Dropped File (is-PTAHT.tmp)

5G;#=R7*Kd-:f

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

5gW95ilXTlWyU1WyU1WyU1WyU1WyU1WyU1WyU1WyU1WyU1WyU1WyU1SyU1SyU1SyU7jdu3COVc+Y

Ansi based on Dropped File (is-PTAHT.tmp)

5iw+6RMnwjZEtUpRoRki3h0oiktRXnJwb2trd2hubXh2boNrdXFvb4iGhjo4OIOBgVdVVVlXV1hW

Ansi based on Dropped File (is-M3VFU.tmp)

5J1g451f451f451f451f451f451f451f451f451f451f451f451f451f451f451f451f451f451f

Ansi based on Dropped File (is-PTAHT.tmp)

5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g

Ansi based on Dropped File (is-PTAHT.tmp)

5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g5J1g9d/O9d/O9d/O9d/O

Ansi based on Dropped File (is-PTAHT.tmp)

5J1g5J1grD8t3Hg33Hg30YtzsLL81tn+2dv/1Nb/2tz/vb/6nZLbnIvQsLL30tT/wMT/w8b/1Nb/

Ansi based on Dropped File (is-PTAHT.tmp)

5J1g5J1grD8t3Hg33Hg33Hg33Hg33Hg33Hg33Hg35Zxs////////////////6q6H3Hg33Hg33Hg3

Ansi based on Dropped File (is-PTAHT.tmp)

5J1g5J5gtnBN6qRl6qRl2qmTsLL81tn+2dv/1Nb/2tz/vb/6n5fhnpLXsLL30tT/wMT/w8b/1Nb/

Ansi based on Dropped File (is-PTAHT.tmp)

5J1g5J5gtnBN6qRl6qRl6qRl6qRl6qRl6qRl6qRl8LyO////////////////8sij6qRl6qRl6qRl

Ansi based on Dropped File (is-PTAHT.tmp)

5kkkN789w?m

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

5OPgiY+PjzQ0NDMzMzMznz8BRJgtM5gtM58BojMzM0WiNDSPj5ktj49EOjU2NjY2NjaRkZGRkZGR

Ansi based on Dropped File (is-M3VFU.tmp)

5OQA4OHhANzd3QDa29sA2draANfY2ADW19cA09TUANDR0QDP0NAAzM3NAMrLywDFxsYAxMXFAL6/

Ansi based on Dropped File (is-1PHDE.tmp)

5OTk5OTk5OTk5OTk5efp7Ozs7Onn5eTk5OTk5OTk5OTk5OTk5OXn6ezs7Ozp5+Xk5OTk5OTk5OTk

Ansi based on Dropped File (is-1PHDE.tmp)

5OTk5OTl5+ns7Ozs6efl5OTk5OTk5OTk5OTk5OTk5efp7Ozs7Onn5eTk5OTk5OTk5OTk5OTk5OXn

Ansi based on Dropped File (is-1PHDE.tmp)

5OTkQEBAJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlQEBA

Ansi based on Dropped File (is-OODVK.tmp)

5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f////8MSf6ap08suq5p1f5p1f5p1f

Ansi based on Dropped File (is-PTAHT.tmp)

5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f////8MSf5p1f5p1f5p1f5p1f

Ansi based on Dropped File (is-PTAHT.tmp)

5p1f5p1f5p1f5p1f5p1f5p1ftm1K35ZY4JZYtm1K5p1f5p1f89G08suq5p1f5p1f5p1f67F/+OXU

Ansi based on Dropped File (is-PTAHT.tmp)

5p1f5p1f5p1f5p1f5p1f5p1ftm1K4Zlb4Zlb451f5J5gtnBN6qRl6qRl6qRl6qRl6qRl0c/NysjG

Ansi based on Dropped File (is-PTAHT.tmp)

5p1f5p1f5p1f5p1f8MSf////5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1ftm1K35ZY4JZY

Ansi based on Dropped File (is-PTAHT.tmp)

5p1f5p1f5p1f5p1ftm1K35ZY35VY35VY35VY35VY89vK89vK89vK89vK16iO47+p89vK89vK89vK

Ansi based on Dropped File (is-PTAHT.tmp)

5p1f5p1f5p1f8MSf////5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1f5p1ftm1K4Zlb4ZlbAAAA

Ansi based on Dropped File (is-PTAHT.tmp)

5p1f5p1f8MSf////5p1f5p1f5p1f5p1f7beK////+OXU/////PLq7beK5p1f67F/+uvf////+OXU

Ansi based on Dropped File (is-PTAHT.tmp)

5p1f5p1fnqW7f6PZk5KRx8fHzMzMx8fHxsbGw8PDwMDAiIWDupFu5p1f5p1f5p1ftm1K35ZY4JZY

Ansi based on Dropped File (is-PTAHT.tmp)

5p1f9di/////+uvf5p1f8MSf////9di//////fj07beK5p1f5p1f5p1f5p1f5p1f5p1ftm1K35ZY

Ansi based on Dropped File (is-PTAHT.tmp)

5pfhbPkXX

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

5Q2Cfwhbf

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

5QDg4OYApqaoAKWlpwDCwsQAubm7ALW1twC2trcAs7O0AK2trgCsrK0AqKipAKSkpQCioqMAoKCh

Ansi based on Dropped File (is-1PHDE.tmp)

5qFkaCkJn10rn10rn10rn10rn10rn10rn10rn10rn10rn10rn10rmJeW5OTkz8/PlYV5n10rjo6O

Ansi based on Dropped File (is-PTAHT.tmp)

5qFkaCkJn10rn10rn10rn10rn10rn10rn10rn10rn10rn10rn10rn10rn10rn10rn10rn10rn10r

Ansi based on Dropped File (is-PTAHT.tmp)

5qFkaCkJn10rn10rn10rn10rn10rn10rn10rn10romM0u5yExrmvvKiZp3VPn10rn10rpnBIsJ6P

Ansi based on Dropped File (is-PTAHT.tmp)

5qFkaCkJn10rn10rn10rn10rn10rn10ru4Vb7cqv+enc9ujd8+Xa8+Xa9efc9eTW5L6ft39Un10r

Ansi based on Dropped File (is-PTAHT.tmp)

5qFkaCkJn10rn10rn10rn10rn10rto9x0tDOzMjFxL24u7GpsaKWqIx3oYBmnXhbm2xIn14sn10r

Ansi based on Dropped File (is-PTAHT.tmp)

5qFkaCkJn10rn10rn10rn10rnl8sb6xejNiizfXo1O3azu3Tz9+v1t611NSiztChxNCqh8mRYaBU

Ansi based on Dropped File (is-PTAHT.tmp)

5qFkaCkJn10rn10rn10rqYOFsq3uubv8vL38r7H6oZbTnmlRnmVJk4fMoKL0w8b7trn4h4ntgGmh

Ansi based on Dropped File (is-PTAHT.tmp)

5qJlsUYu2n092n092n092n092H4+fbRjjNiizfXo1O3azu3Tz9+v1t611NSiztChxNCqh8mRa6ZX

Ansi based on Dropped File (is-PTAHT.tmp)

5qJlsUYu2n092n092n092n092n092n092n092n092n092n092n092n092n092n092n092n092n09

Ansi based on Dropped File (is-PTAHT.tmp)

5qJlsUYu2n092n092n092n092n092n092n092n092n092n092n09mZiX5OTkz8/Po41+2n09jo6O

Ansi based on Dropped File (is-PTAHT.tmp)

5qJlsUYu2n092n092n092n092n092n092n092n092oJF16uM0r+zzrKe1I1c2n092n091YpXwaeV

Ansi based on Dropped File (is-PTAHT.tmp)

5qJlsUYu2n092n092n092n092n092n0945tn8s2w+enc9ujd8+Xa8+Xa9efc9eTW6cGh35Vg2n09

Ansi based on Dropped File (is-PTAHT.tmp)

5qJlsUYu2n092n092n092n092n092qJ81NHP0MrGysC6xLasv6mawZl+wJBvv4pmxYNV2X0+2n09

Ansi based on Dropped File (is-PTAHT.tmp)

5qJlsUYu2n092n092n09y5WPtq/vubv8vL38r7H6q5vWzoNg0IFYnY3QoKL0w8b7trn4h4ntlnSn

Ansi based on Dropped File (is-PTAHT.tmp)

5qNl3JRszXVI7bx+AADtwYPWflTMc0bMc0bMc0bMc0bMc0bMc0bMc0bMc0bKckXUfVPqv4Hqv4EA

Ansi based on Dropped File (is-PTAHT.tmp)

5qRn5qRn5qRn5qRn5qRn5qNl5qNl3JRszXVI7bx+7bx+AAAA7cGD7cGC7cGD1n5UzHNGzHNGzHNG

Ansi based on Dropped File (is-PTAHT.tmp)

5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qNl5qNl3JRszXVI7bx+7bx+7cGD7cGC7cGD1n5U

Ansi based on Dropped File (is-PTAHT.tmp)

5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn5qRn

Ansi based on Dropped File (is-PTAHT.tmp)

5tf65tfpyLParpb65tf65tf65tcA++jc++jc27CZ6sm3++jc++jc++jc++jc++jc++jc++jc++jc

Ansi based on Dropped File (is-PTAHT.tmp)

5tvt2snr1cPr1MHYqYrMlHLjupzjupzjupwA5b+h5b+hzpd1372k7NfF7drI7+DR8uzk8+/n2dbq

Ansi based on Dropped File (is-PTAHT.tmp)

5tvu593v6eDp5OEmJOQxL+q5stzp2Mfn0LvmzLXlybLRnXnIi2Tbq4bbq4bbq4YA3rGN3rGNyY9r

Ansi based on Dropped File (is-PTAHT.tmp)

5uoCAuno4fL30PT0sc/1pQvXzwu2pfT1z7H09ND38uHo6QIC3QTc2dgCAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

5usCAurp4vL3u/T0jbr1YybWugyaY/T1uo309Lv38uLp6gIC3gTd2tkCAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

5VUXXXXXUP

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

5X" A96Q|

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

5xaD5)ar`

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

5XBkZGRk42Tj29vN283bzdvNZM3NzXDMBPcQAgL6+OgE5eTk5OTk5OTk5OTk5G9vY2NjY29jzATo

Ansi based on Dropped File (is-M3VFU.tmp)

5yrzw[>u

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

6+9vAe/l2e/jb+/j2u/v7+MB5e/ab+/v7+/v7+/v7+9dAAheggD2Y2NjY2NjY2NjI0BCVBFjip9u

Ansi based on Dropped File (is-M3VFU.tmp)

6+vt8tmJiYmJiYmJiYmJiYmJiYnZ8u3r6+vr7fLZiYmJiYmJiYmJiYmJiYmJ2fLt6+vr6+3y2YmJ

Ansi based on Dropped File (is-1PHDE.tmp)

6.<(L;!.!^

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

6/Pn6/Pm6/Pm6/Pm6/Pm6/Pm6/Pm6/Pm6/Pm6/Pm6/Pm6/Pm6/Pm6/Pm6/Pm

Ansi based on Dropped File (is-PTAHT.tmp)

6/Pn6/Pm6/Pm7PPn7PTn7PTo7PTo7PTo7PTo7PTn6/Pn6/Pm6/Pm6/Pm6/Pm

Ansi based on Dropped File (is-PTAHT.tmp)

64-bit helper EXE wasn't extracted

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

64-bit Windows: %s

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

64FsRedirection

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.00401000.00000020.mdmp)

64oqy2oKq0oqy2pa+5pa+5o623oKq0oqy2o623o623oqy2oau1oau1oqy2pK64orG6n663 obC5orG6nq22n663obC5n663pLC6q7jAt8LKxM3W0dng3ePq5+3y7/P4/f//2dvcAAABAwUGi42O /f///f///f///////////////////////////////////v7+/////////v7+/v7+/////v7++fn5 /fz/zeztKlVSAAIBCAIHoJ+oqb

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

67kiANytIADarCAA1KcfAOi3IwDNoh8A5LQjANCkIADVqCIAyZ8gAMadHwDgsiQAwZkfAL6WHwC3

Ansi based on Dropped File (is-M3VFU.tmp)

68yx76fJ7qnR6snVz43Zy4vNtGa8vGea1nGC3nN63HGR0KOIyKRrk0vmnV/mnV/mnV+2bUrflljf

Ansi based on Dropped File (is-PTAHT.tmp)

69/969/969/969/969/969/969/969/969/969/969/969/969/969/969/969/969/9698AAHG7

Ansi based on Dropped File (is-PTAHT.tmp)

69/969/969/969/969/969/969/969/969/969/lwa3jvKf969/969/969/969/969/9698AAHG7

Ansi based on Dropped File (is-PTAHT.tmp)

69bH8+bZ472c56t36qRl6qRl6qRl6qRl6qRltnBN451g5J1g5J1g5J1g5J1g9d/O9d/O9d/O9d/O

Ansi based on Dropped File (is-PTAHT.tmp)

69rO6tjM6tfK6NXH59PF59HC1aiD5p1f5p1f5p1ftm1K35ZY4JZY35ZYtm1K5p1f5p1f5p1f5p1f

Ansi based on Dropped File (is-PTAHT.tmp)

6]lgERh79

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr

Ansi based on Dropped File (is-PTAHT.tmp)

6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahruXVQ5qFl5qFkAAAA56Zp56Zp

Ansi based on Dropped File (is-PTAHT.tmp)

6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr6ahr8MWc6ahr6ahr6ahruXVQ5qFl5qFkAAAA56Zp56Zp

Ansi based on Dropped File (is-PTAHT.tmp)

6ahr6ahr6ahr6ahr6ahruXVQ5qFl5aJk56Zp56ZpvHhW6rFw6rFw6rFw6rBw6rFw6rFw6rFw7Ld8

Ansi based on Dropped File (is-PTAHT.tmp)

6ahr6ahr6ahr6ahr6ahruXVQ5qFl5qFk6KZp56ZpvHhW6rFw6rFw6rFw6rBw6rFw6rFw6rFw6rFw

Ansi based on Dropped File (is-PTAHT.tmp)

6ap05p1ftm1K35ZY4JZY35ZYtm1K5p1f5p1f5p1f/N7B7+LY7+LY7+LY7uHX7uDW7t/U7d3S7NzR

Ansi based on Dropped File (is-PTAHT.tmp)

6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt

Ansi based on Dropped File (is-PTAHT.tmp)

6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apt6apu6apu6apu6apu

Ansi based on Dropped File (is-PTAHT.tmp)

6apt6aptwX5f6rZ06rZ06rZ06rV06rZ06rZ06rZ0yblzj79wcsJvZ8NuZcRubcNvisBww7ly6rZ0

Ansi based on Dropped File (is-PTAHT.tmp)

6apu++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc

Ansi based on Dropped File (is-PTAHT.tmp)

6apu++jc++jc++jc++jc27CZ6sm3++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc++jc

Ansi based on Dropped File (is-PTAHT.tmp)

6apu6apu6apu6apu6apu6apu6apu6apu6apu6apu6apu6apu6apu6apu6apu6apu6apu6apu6apu

Ansi based on Dropped File (is-PTAHT.tmp)

6aZp2Mq+4+Pj8/Pz6OjoysrKxrOhz7GWuK+n2traxMTErpV/6qRl6qRl6qRltnBN451g451f5qFk

Ansi based on Dropped File (is-PTAHT.tmp)

6Brq7hAhPmJiZWZoaWoELSgODtbkBMG/v729vLs5HxfoG+scRR8+u7u7vL2/wQTk1g4OQ9gEtsKz

Ansi based on Dropped File (is-M3VFU.tmp)

6BZj$tDQG

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

6e0CAuzr5+zzzwAAAAAAAAAAAAAAAAAAAAAAAM/z7Ofr7AIC5ubl5OMCAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

6ePh3qenp6enp6enp6enp6enp6fe4ePpqdi3AgK2stnx6uTj4+Pj4+Pj4+Pj4+Pj4+Pj4+Pk6vHZ

Ansi based on Dropped File (is-M3VFU.tmp)

6ePwklteXV1dW1tcXFxcoaoBbbM+XLM+XKEBpFxcXCmkXV1eXrM+XjRtoV9fXzU1NTU1NWBgYGBg

Ansi based on Dropped File (is-M3VFU.tmp)

6ezlHRkZGR5eXFxeX2IELCYODuLSBKKrq6qqqKgfGzEdMzMzHBke2q2oqaqrrgTS4g4OzdEEua+v

Ansi based on Dropped File (is-M3VFU.tmp)

6ezs7Ozp5+Xk5OTk5OTk5OTk5OTk5OTl5+ns7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs1+259fXx

Ansi based on Dropped File (is-1PHDE.tmp)

6fPuDghQWgTGwsC+u7x0R0NDJxoKGRcWFRZBe7y+wMZLWlAODu7z6sfEesHAZTtEQ0NHODseHhcX

Ansi based on Dropped File (is-M3VFU.tmp)

6Gew;:OsM

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

6GwP5t0PD/HeAfHmbA8P6GwPDw8PDw8PDw8PDw8IKi0AJVpaWlpaWloPHT1DREs8pqF/a+pq5xIP

Ansi based on Dropped File (is-M3VFU.tmp)

6HUzr3Di3Y

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

6KRq/PLq/PLq/PLq/PLq/PLq/PLq/PLq/////PLq+OXU/fj0/PLq7r6U5p1ftm1K4Zlb4ZlbAAAA

Ansi based on Dropped File (is-PTAHT.tmp)

6NC758641aOAyY5p3rGN3rGN3rGNAOC1luC1lsyTcd69punSv+rWxO3g09fT6FtY9mVi+nFw/1lW

Ansi based on Dropped File (is-PTAHT.tmp)

6NXH59PF59HC1aiD1XAy1XAy1XAyrD0r35VY4JZY4JZY4JVXrD0r1XAy1XAy1XAy+NKx/N7Bu7m2

Ansi based on Dropped File (is-PTAHT.tmp)

6NXH59PF59HC1aiD5p1f5p1f5p1ftm1K35ZY4JZY4JZY35ZYtm1K5p1f5p1f5p1f+te2/N7Bu7m2

Ansi based on Dropped File (is-PTAHT.tmp)

6NXH59PF59HC1aiDlVEhlVEhlVEhZygF35ZY35VX35VY35ZXZygFlVEhlVEhlVEh8c+v/N7Bu7m2

Ansi based on Dropped File (is-PTAHT.tmp)

6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl////8LyO8sij/PPq6qRl6qRl6qRl6qRl6qRl6qRl8LyO

Ansi based on Dropped File (is-PTAHT.tmp)

6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl////8LyO8sij/PPq6qRl6qRl6qRl6qRl

Ansi based on Dropped File (is-PTAHT.tmp)

6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRltnBN451gAAC5dVDpqGvpqGvpqGvpqGvpqGvpqGvp

Ansi based on Dropped File (is-PTAHT.tmp)

6qRl6qRl6qRl6qRl6qRl6qRl6qRl8LyO////////////////8sij6qRl6qRl6qRl6qRl6qRl6qRl

Ansi based on Dropped File (is-PTAHT.tmp)

6qRl6qRl6qRl6qRl6qRl6qRl6qRltnBN451g451f5J5gtnBN6qRl6qRl6qRl6qRl6qRl0c/NysjG

Ansi based on Dropped File (is-PTAHT.tmp)

6qRl6qRl6qRl6qRll5aV3d3dxcXFpZSFo5KErKys19fXiYeG6qRl6qRl6qRltnBN451g451f5qFk

Ansi based on Dropped File (is-PTAHT.tmp)

6qRl6qRl8LyO////6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRl6qRltnBN451g451fAAAA5aJk

Ansi based on Dropped File (is-PTAHT.tmp)

6qRl6qRlkblrh9egwPLex/LW1e/V0OnP1dum3N6r282Q18iLycGOvdWveseReKNY6qRl6qRl6qRl

Ansi based on Dropped File (is-PTAHT.tmp)

6qRll5aV3d3dxcXFpZSFo5KErKys19fXiYeG6qRl6qRl6qRltnBN451g451f5J5gtnBN6qRl6qRl

Ansi based on Dropped File (is-PTAHT.tmp)

6qRltnBN451g5J1g5J5gtnBN6qRl6qRl6qRl6qRl6qRl7bSB8tC09+rf7t7Q48Gn2K6J16yG3buc

Ansi based on Dropped File (is-PTAHT.tmp)

6quHndurhturhturhturhtCZdMiLZNurhturhturhturhturhturhgAAHKEQHKEQHKEQHKEQHKEQ

Ansi based on Dropped File (is-PTAHT.tmp)

6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6bJy1LeVtrGr6rFw6rFw6rFwvHhW6KZp6KZp6apt6apt

Ansi based on Dropped File (is-PTAHT.tmp)

6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rBw6rFw6rFw6rFwvHhW6KZp6KZpAAAA6apu6aptwX5f

Ansi based on Dropped File (is-PTAHT.tmp)

6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw

Ansi based on Dropped File (is-PTAHT.tmp)

6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFw6rFwvHhW6KZp6KZp6apt6apt

Ansi based on Dropped File (is-PTAHT.tmp)

6rFw6rFw6rFwqJ+U4uLi5+fnubm5k5OT6rFw6rFw6rFw6rFw6rFw6rFwvHhW6KZp6KZp6apt6apt

Ansi based on Dropped File (is-PTAHT.tmp)

6rGA882u9dO489G28Mmo5qx735NR3IlB3IlB3IlB3IlB3IlB3IlB3IlBtUsx6KZp56Zp6apu6apt

Ansi based on Dropped File (is-PTAHT.tmp)

6rZ06rV06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ0

Ansi based on Dropped File (is-PTAHT.tmp)

6rZ06rZ06rZ06rV06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ0

Ansi based on Dropped File (is-PTAHT.tmp)

6rZ06rZ06rZ06rZ06rZ037mI6rZ06rZ06rZ0wX5f6apt6apt6aptwX5f6rZ06rZ06rZ06rV06rZ0

Ansi based on Dropped File (is-PTAHT.tmp)

6rZ06rZ06rZ06rZ06rZ06rZ06rZ06rV06rZ06rZ06rZ0wX5f6apt6aptAAAA669y6q9yyIln7Lt7

Ansi based on Dropped File (is-PTAHT.tmp)

6rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rV06rZ06rZ06rZ0wX5f6apt6apt

Ansi based on Dropped File (is-PTAHT.tmp)

6rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ0

Ansi based on Dropped File (is-PTAHT.tmp)

6rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ0wX5f6apt6apu6apu6apu

Ansi based on Dropped File (is-PTAHT.tmp)

6rZ06rZ06rZ06rZ06rZ06rZ0wX5f6apt6apu6aptwX5f6rZ06rZ06rZ06rV06rZ06rZ06rZ06rZ0

Ansi based on Dropped File (is-PTAHT.tmp)

6rZ06rZ06rZ06rZ06rZ06rZ0yKuGnpyZ5OTk7u7ulpaW6rZ06rZ06rZ06rZ06rZ06rZ0wX5f6apt

Ansi based on Dropped File (is-PTAHT.tmp)

6rZ06rZ06rZ06rZ0wX5f6apt6apt669z6q9yyIln7Lt77Lt77Lt77Lp77Lt77Lt77Lt77Lt77Lt7

Ansi based on Dropped File (is-PTAHT.tmp)

6rZ06rZ06rZ06rZ0wX5f6apt6apu669y6q9yyIln7Lt77Lt77Lt77Lp77Lt77Lt77Lt77Lt77Lt7

Ansi based on Dropped File (is-PTAHT.tmp)

6rZ06rZ06rZ06rZ0wX5f6apt6apu669z6q9yyIln7Lt77Lt77Lt77Lp77Lt77Lt77Lt77Lt77Lt7

Ansi based on Dropped File (is-PTAHT.tmp)

6rZ0wX5f6apt6apt6aptwX5f6rZ06rZ06rZ06rV06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ06rZ0

Ansi based on Dropped File (is-PTAHT.tmp)

6s2js:trmA

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

6smv362Gync2ync27dK8+O3k0YlRync20YlR6smv1ZJeync2ync20YlR+O3kync20YlR+O3kync2

Ansi based on Dropped File (is-PTAHT.tmp)

6su66su66su65MCtzJZ76su6//Dm//Dm//Dm//DmAP/07P/07P/07P/07Pbj2ObHteC8qOC8qOC8

Ansi based on Dropped File (is-PTAHT.tmp)

6su66su66su66su66su66su66su66su66su66su66su65MCtzJZ76su6//Dm//Dm//Dm//Dm//Dm

Ansi based on Dropped File (is-PTAHT.tmp)

6th 6ShTh

Ansi based on Dropped File (is-8C1UQ.tmp)

6uDas6SxYEWtVS2aXDigi3xufIKCgICFg4OFg4OfnZ1APj6PjY1pZ2dpZ2eNioxAPj6Wl5WBgn6F

Ansi based on Dropped File (is-M3VFU.tmp)

6vbw6PPk2PHez/HczPDYxt2vktGcfOvHrevHrevHrQDx1cTx1cTVpIrlxLL15dr15tz26N/48Or4

Ansi based on Dropped File (is-PTAHT.tmp)

6{*AD`4ay

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7+////////+v7/+///8/j71t3g zdPYtr7FsLnCsbrDpa6xl6CjgouPgIiPn6avsLfArbO+s7nEpa67r7jCtr3G09be+v3/////+vj3 //38/v7+/v7+/v7+/v7+/v7+/v7+/v7+/v7+/v7+/Pz8+vr6+vr6/Pz8/////////v7+//////// /////////////////////////////Pz8/////////f39////+/v76+vr2+HsyM7Zu8LLtL

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

7+//////////////////////// //////////////////////////////////////////////////////////////////////////// ///////////////////////////////////////////////////////////////////////++ff3 +/v7+///5ert1+Dk4u3xP0tPBwwPEBUYwsfI+v//7/X09v369Pv2+P/6/Pf4//v8//////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

7+/0ALup8jdvcgDz7u7u7u7u7nc53tjGwn2Xyq3u7u7u7vMAcm8CAm5xAPKysrKysrKyslkVRsOZ

Ansi based on Dropped File (is-M3VFU.tmp)

7+/v////////////7+/vMDAwAAAAMDAw7+/v////////////7+/vAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

7+8A7OzsAOvr6wDp6ekA5eXlAOHh4QDe3t4A3NzcANnZ2QDHx8cAwsLCALu7uwC5ubkAtra2ALS0

Ansi based on Dropped File (is-1PHDE.tmp)

7-Zip SFX

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7-Zip: CRC error.

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7-Zip: Data error.

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7-Zip: Extraction error.

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7-Zip: Internal error, code %u.

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7-Zip: Internal error, code 0x%08X.

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7-Zip: Unsupported method.

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7-Zip:9.20 (18

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7///// +/v7//////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

7///////////////////// ////////////5e7y2+bqu8XMsb3Doq+3nq61ipyja3yFUmFqxdHbs7nEvsPMtrjCur/IsrzDu8fN z9TT4OXk9/n5/f///P7+/////////////////////////////////////////////+v////t4/// aX3tdmntzNb+Qj30MjT/cnTI09n/+P7////4//3///n////+///0y8v/NkD/laXT7uzs9/b45u

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

7/TXAfTO0/Tj1/Tj1fT09OMBzvTV1/T0Q0NDQ0NDQ0OIfQhmhZaZgYKBgUbz8/PzT1pbXhnzo69u

Ansi based on Dropped File (is-M3VFU.tmp)

715uzz5uzz6O716/H47PL57/X8 7vT76/H46O715+305uzz5+305+305Orx5uzz5+306e/26e/26e/26O715+307ej/6+z/5Orx7PL/ 6u3/8PL/6u//6PH/8Pfy7fTx8uv/59//8Pfy6PHn9vb/7O758PL96/Xp6fbg8Pnv5+nz7ev/8PL8 8/7u7/nt5urv7Ob/8PD/7/zm6u/y6OX/6PLm8fH37vXu4OrZ5e/j5+303N3y4+b77fH/4+

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

73zmQcIzj8?$

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

77CCC}}}}

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

78WT78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU1aeN

Ansi based on Dropped File (is-PTAHT.tmp)

78WT78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU

Ansi based on Dropped File (is-PTAHT.tmp)

78WU78WU1aeNy5N27bx+7bx+7bx+y5N21aeN8MWT8MWT78WT78WU78WU78WU78WU78WU78WU78WU

Ansi based on Dropped File (is-PTAHT.tmp)

78WU78WU78WU78WU78WT8MWT8MWT1aeNy5N27bx+7bx+AAAA7cGD7cGD7cGD0Zl+ypJ1ypJ1zJV2

Ansi based on Dropped File (is-PTAHT.tmp)

78WU78WU78WU78WU78WU1aeNy5N27bx+7bx+7bx+y5N21aeN8MWT8MWT78WT78WU78WU78WU78WU

Ansi based on Dropped File (is-PTAHT.tmp)

78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU1aeNy5N27bx+7bx+7bx+y5N21aeN8MWT8MWT

Ansi based on Dropped File (is-PTAHT.tmp)

78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU1aeNy5N27bx+7bx+7cGD7cGD7cGD0Zl+

Ansi based on Dropped File (is-PTAHT.tmp)

78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU1aeNy5N27bx+7bx+7bx+y5N2

Ansi based on Dropped File (is-PTAHT.tmp)

78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WT8MWT

Ansi based on Dropped File (is-PTAHT.tmp)

78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU

Ansi based on Dropped File (is-PTAHT.tmp)

793R79vP7tjL5sa1zJZ76su6//Dm//Dm//Dm//DmAP/07P/07P/07P/07Pbj2ObHteC8qOC8qOC8

Ansi based on Dropped File (is-PTAHT.tmp)

79zN1ah+0KB3+/j1/Pj1/Pj1+/j10aiBz6R76tXD6tTC1Ita1XAy1XAy1XAy1XAyrD0r35VY35VY

Ansi based on Dropped File (is-PTAHT.tmp)

79zN1ah+0KB3+/j1/Pj1/Pj1+/j10aiBz6R76tXD6tTC3KJx5p1f5p1f5p1f5p1ftm1K35ZY35VY

Ansi based on Dropped File (is-PTAHT.tmp)

79zN1ah+0KB3+/j1/Pj1/Pj1+/j10aiBz6R76tXD6tTCs3tRlVEhlVEhlVEhlVEhZygF35ZY35VX

Ansi based on Dropped File (is-PTAHT.tmp)

7@77McM77Vh

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7bB67bB67bB67bB67bB67bB67bB67bB67bB67bB6/PPq7bB66qRl6qRltnBN451g451fAAAA5aJk

Ansi based on Dropped File (is-PTAHT.tmp)

7beK////+OXU/////PLq7beK5p1f67F/+uvf////+OXU////7beK5p1f////8MSf7beK////5p1f

Ansi based on Dropped File (is-PTAHT.tmp)

7bUcj|nH

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7bx+7bx+7bx+7bx+7bx+7bx+//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm//Dm

Ansi based on Dropped File (is-PTAHT.tmp)

7bx+7bx+7bx+7bx+7bx+7bx+7bx+7bx+7bx+7bx+7bx+7bx+7bx+7bx+7bx+7bx+7bx+7bx+7bx+

Ansi based on Dropped File (is-PTAHT.tmp)

7bx+7bx+y5N21aeN8MWT8MWT78WT78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU78WU

Ansi based on Dropped File (is-PTAHT.tmp)

7cCA7b+A7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA

Ansi based on Dropped File (is-PTAHT.tmp)

7cCA7cCA7cCA7b+A7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA

Ansi based on Dropped File (is-PTAHT.tmp)

7cCA7cCA7cCA7cCA7cCA7b+A7cCA7cCA7cCAyYtt7LZ47LZ4AAAA7bx+7bx+y5N21aeN8MWT8MWT

Ansi based on Dropped File (is-PTAHT.tmp)

7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA7cCA

Ansi based on Dropped File (is-PTAHT.tmp)

7cCA7cCA7cCAyYtt7LZ47LZ47bx+7bx+y5N21aeN8MWT8MWT78WT78WU78WU78WU78WU78WU78WU

Ansi based on Dropped File (is-PTAHT.tmp)

7Ccnje3t7Ozs7Ozs7Ozsb2uNb2vs7ezs7I3ca+yN7Y3s7O2NjEhISEhI5mcILCUocQgICDEICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

7cKD7cKD68CC6L6A5Lp+4bh84Ld84Ld87cKDAAAA7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD

Ansi based on Dropped File (is-PTAHT.tmp)

7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD6L6A5Lp+4bh84Ld84Ld87cKD7cKD7cKD7cKD7cKD7cKD

Ansi based on Dropped File (is-PTAHT.tmp)

7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD//r1//r1//r1//r1//r1//r1//r1//r1

Ansi based on Dropped File (is-PTAHT.tmp)

7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD

Ansi based on Dropped File (is-PTAHT.tmp)

7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKDAADxxpnxxpnxxpnxxpnxxpnxxpnxxpnxxpnx

Ansi based on Dropped File (is-PTAHT.tmp)

7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKDAAAA7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKD

Ansi based on Dropped File (is-PTAHT.tmp)

7cKD7cKD7cKD7cKD7cKD7cKD7cKD7cKDAAAA8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ

Ansi based on Dropped File (is-PTAHT.tmp)

7cKD7cKD7cKD7cKD8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ

Ansi based on Dropped File (is-PTAHT.tmp)

7d7U/Pz8/Pz83sKu/Pz827ym/Pz82Lae/Pz81bCX/Pz8/Pz8/Pz84ci2yplyfDgSfDgSfDgSaCkH

Ansi based on Dropped File (is-PTAHT.tmp)

7d7U/Pz8/Pz83sKu/Pz827ym/Pz82Lae/Pz81bCX/Pz8/Pz8/Pz84ci2yplyskoXskoXskoXlzId

Ansi based on Dropped File (is-PTAHT.tmp)

7d7U/Pz8/Pz83sKu/Pz827ym/Pz82Lae/Pz81bCX/Pz8/Pz8/Pz84ci2yplyz3o4z3o4z3o4qVcv

Ansi based on Dropped File (is-PTAHT.tmp)

7e256Of+6uPjvrW1tbW1tbW0tLS0v6izs7Ozs7O+tLS0tLS0tLS0tLWjrLS0tLS1tbW1tU6st7e3

Ansi based on Dropped File (is-M3VFU.tmp)

7e3e4ODNzc20rq9yZmZbTEoyJiIhHRgcHRkbGRgkHyAfHRxCQD8UEhFXVVQgHh0eHBtVU1IVExJB

Ansi based on Dropped File (is-M3VFU.tmp)

7eL+7eL+7eL+7eL+7eL+7eL+7eL+7eL+7eL+7eL+7eL+7eL+7eL03M7MlXr239L+7eL+7eL+7eIA

Ansi based on Dropped File (is-PTAHT.tmp)

7jnuOe4r7kERM1SrVVgEIBkODuvhBMTAwL+z1CQBEAEQARABEAEMAUOxv7/AwgTh6w4OOOAEyMPD

Ansi based on Dropped File (is-M3VFU.tmp)

7LogAPK/IgDntiAA5rUgAOW0IADxviIA8L0iAOOzIADhsSAA4LAgAN+wIADcrh8A2asfAO68IwDr

Ansi based on Dropped File (is-M3VFU.tmp)

7Lt77Lt77Lp77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt7

Ansi based on Dropped File (is-PTAHT.tmp)

7Lt77Lt77Lt77Lt77Lt77Lt77Lp77Lt77Lt77Lt7yIln6q9y669zAAAA7LZ47LV4yYtt7cCA7cCA

Ansi based on Dropped File (is-PTAHT.tmp)

7Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt7

Ansi based on Dropped File (is-PTAHT.tmp)

7Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt7yIln6q9y669y7LZ47LV4yYtt

Ansi based on Dropped File (is-PTAHT.tmp)

7Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt77Lt7yIln6q9y669z7LZ47LV4yYtt

Ansi based on Dropped File (is-PTAHT.tmp)

7Lt77Lt77Lt7yq6KqaGXnJyampqZ7Lt77Lt77Lt77Lt77Lt77Lt7yIln6q9y669z7LZ47LV4yYtt

Ansi based on Dropped File (is-PTAHT.tmp)

7n3MM=%oe)>

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7N5MvZtLKqnaqUxbm3u7atpK2Yy7i7y8bIysPG29DSzcTAvsCtmayFrtGYmciEl619ntya jrqFx8e5393j6unr5+Lh7fX09fX1+Pj4/Pz8/v7+//////////////////////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

7Oo-t\*0M7

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7P/07AD/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/

Ansi based on Dropped File (is-PTAHT.tmp)

7P3z7P3z6/3x6OXBreO8p/3r3/3r3/3r3wD+7eL+7eL23tDMlXr139L+8ur+9O3+9O3+9O3+9O3+

Ansi based on Dropped File (is-PTAHT.tmp)

7PathFunc

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.0041B000.00000002.mdmp)

7rsrLu+/v/f4ngvsv/7vj//f/0/v/v/f/38fn5ztre tsLImqasl6Opl6Opoq60cHyCXGhupLC2pKyzpq61qLC3rbW8q7O6qLC3xs7V9v7/+vr08/Tw/v/7 +/397/P09vn99/v/b3N4eXl5////+fn58fHx9/f39fX1//////////////////////////////// //////////z17vX+t8D/jYT97v/88u75///58+v2//z++vz90djbxd

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

7sur6NXI6NTF59LD5dDB5c6+48y848q54sm34ce14MWz38Sx38Sw3sKv3sKuxJBowWs1wWs1wWs1

Ansi based on Dropped File (is-PTAHT.tmp)

7T8961BN9Ghn/1BO9TY068ShqOO6nOO6nOO6nOO6nNelhcyUcuO6nOO6nOO6nOO6nOO6nOO6nAAA

Ansi based on Dropped File (is-PTAHT.tmp)

7u7T0dH////x7++DgYFhX19oZmbIxsb//////v7Y1tb//f1nZWWkoqLs6upta2uqqKjV09NlY2N/

Ansi based on Dropped File (is-M3VFU.tmp)

7u7u7u7u7u7u7u7u7u7u5Nju5Nju7u7u7u7g2O7u7u7u7u7u7u7u7u7u8wAIMzYA8goKCgoKCgoK

Ansi based on Dropped File (is-M3VFU.tmp)

7uTffDcQfDcQfDcQaCgGw200w200AAAAxHE3xHE3aCgGfDYQfDYQfDYQfDYQfDoddlR8a2fWmZzy

Ansi based on Dropped File (is-PTAHT.tmp)

7v7e/w6Orr1N7l3+nw4uzz3+ru6fX39P//9P//6PXz +Pz98/f48vb3+v7/+///+f3+4OTlys7Pm6KlfYKFSk9SHyImDQ4SDw4SFhUZGBcbDwwOExASFBET ExASFhMVGRYYFBETDAkLEBMXExYaFBcbEBMXCQwQBwoODA8TExYaEBUYEBUYDxQXCxATCA0QCg8S EhcaGB0gERoeBxAUHygsVV5ibHV5Y2xwX2hsZG1xJC0xJS4yOUJGcX

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

7wDs7e0A6uvrAOnq6gDo6ekA5ufnAOPk5ADh4uIA3+DgAN7f3wDd3t4A3N3dANvc3ADX2NgA1tfX

Ansi based on Dropped File (is-1PHDE.tmp)

7Xi8FRqu~Q

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7xxxKBBBm0G_

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7z Setup SFX (x86)

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7z SFX: error

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7z SFX: warning

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7ZipSfx.%03x

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7ZipSfx.000

Unicode based on Runtime Data (AvroKeyboard5.6.0Silent-Lava.exe )

7ZSfx%03x.cmd

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7zSfxFolder%02d

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7ZSfxMod_x86.exe

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

7zSfxString%d

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

8(Zx*yD<

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

8+br8+bt9Onr8+br8+bs8ufp7efa2dGkj3jWtI/xxpnxxpnxxpnxxpnxxpnxxpnxxpnxxpnxxpnx

Ansi based on Dropped File (is-PTAHT.tmp)

8/T19fUCAu0CAgICAgICAgICAgICAv8CAg==

Ansi based on Dropped File (is-M3VFU.tmp)

8/TzAN3e3QDo6ukAU1RUAEFCQgD7/f0A8vT0AO3v7wDo6uoA3N7eAM/R0QDJy8sAvb+/ALi6ugB+

Ansi based on Dropped File (is-1PHDE.tmp)

80XH/;YUz

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

86e6ffftvvvxxx|||||||||||x|xxxxvv

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

86H3$?x"O,

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

89vK89vK79fMaGT4cG37gH7/fnv/fHn/eXf/Xlz3SUbv7dbL89vK89vK89vK89vK89vK47+p16iO

Ansi based on Dropped File (is-PTAHT.tmp)

89vK89vK89vK89vK89vK89vK89vK89vK89vK89vK89vK89vK89vK89vK89vK89vK89vK89vK89vK

Ansi based on Dropped File (is-PTAHT.tmp)

89vK89vK89vK89vK89vK89vKAABNrUdNrUdNrUdNrUdNrUdNrUdNrUdNrUdNrUdNrUdNrUdNrUco

Ansi based on Dropped File (is-PTAHT.tmp)

89vK89vK89vK89vK89vK89vKAABNrUdNrUdNrUdNrUdNrUdNrUdNrUdNrUdNrUdNrUdNrUdNrUdN

Ansi based on Dropped File (is-PTAHT.tmp)

8?D,^!~|.{

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

8@W!v)w;5

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

8aY<Rp&RCWK

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

8B1Azc3NzcXF0QT3/AII+/YEUE9PT0/PcXFcXkIZGUJeXMfHcXFxXV1fBPb78ALY9QRSS9NL09PT

Ansi based on Dropped File (is-M3VFU.tmp)

8c+7+ezk46B21XAy6bOS/PXx+ezk9NnI/PXx9NnI+ezk1XAy24NN+ezk1XAy1XAy1XAyrD0r35VY

Ansi based on Dropped File (is-PTAHT.tmp)

8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ

Ansi based on Dropped File (is-PTAHT.tmp)

8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ8caZ

Ansi based on Dropped File (is-PTAHT.tmp)

8caZ8caZ8caZ8caZ8caZ8caZ8caZAAAA

Ansi based on Dropped File (is-PTAHT.tmp)

8cWY9dK19dW69NO48s6v7cGT67V56rFw6rFw6rFw6rFw6rFw6rFw6rFwvHhW6KZp56Zp6apu6apt

Ansi based on Dropped File (is-PTAHT.tmp)

8Eoh4mc?

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

8F.T(I|[

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

8f/38f/38f/38f/38f/38f/38f/38f/38f/38f/38f/38f/38f/38f/38f/38f/38f/38f/38f/3

Ansi based on Dropped File (is-PTAHT.tmp)

8f/38f/38f/38f/38f/38QAAwN66wN66wN66wN66wN66wN66wN66wN66wN66wN66wN66wN66wN66

Ansi based on Dropped File (is-PTAHT.tmp)

8fD6////////////8fD6TDq/IgywTDq/8fD6////////////8fD6IgywIgywIgywIgywIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

8fHx////////////8fHxTk5OJSUlTk5O8fHx////////////8fHxJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

8fHx////////d3d3JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

8fHx8fHx8fHx8XDS8fHx8fHx8fHx39Lx8fHx8fHx8YmJ8fDw8Or6CEImHuiHhmlphu7u7mnMxr24

Ansi based on Dropped File (is-M3VFU.tmp)

8fHx9fPj5fTi8+fh8PT0ucrDw8PDw8PDw8PDw8PEMbY+McPEAbbMr8PDw8PDw8PEMcrHAcfKysrK

Ansi based on Dropped File (is-M3VFU.tmp)

8fHxTk5OJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

8fr6+tzc3K+vr4V3bLp2Qcp3Nsp3Nsp3Nsp3Nsp3Nsp3NqZVLMl3Nsl3Nsl3NqZVLMp3Nsp3Nsp3

Ansi based on Dropped File (is-PTAHT.tmp)

8Mv`"Es<572

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

8MWT1aeNy5N27bx+7bx+y5N21aeN8MWT78WU78WU78WU78WU78WU78WU8MWT8MWT1aeNy5N27bx+

Ansi based on Dropped File (is-PTAHT.tmp)

8MWT1aeNy5N27bx+AADtwYPRmX7KknXKknXKknXKknXKknXKknXKknXKknXKknXRmX7twYPtwIIA

Ansi based on Dropped File (is-PTAHT.tmp)

8nZ- g5P8h

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

8Of87+brzbrarpb65tf65tf65tcA++jc++jc27CZ7NDA/PDp/PHq/PLr/PPs/fTu/fXw/fXv/fTu

Ansi based on Dropped File (is-PTAHT.tmp)

8QAZp+IAHLf3ABqm4AAeuPgAH7j4ACG5+AAjufgAJLr4ACCg1gApu/gAI6DUABNSbAAuvfgAML34

Ansi based on Dropped File (is-M3VFU.tmp)

8QDv7+8A5eXlAOTk5ADW1tYAzs7OAMrKygC+vr4Arq6uAKioqACWlpYAlZWVAJKSkgCRkZEAiYmJ

Ansi based on Dropped File (is-M3VFU.tmp)

8r8iAOq4IADntiAA5rUgAOW0IADvvCIA47MgAOGwIADfryAA3q8gANiqHwDbrSAA2qsgANSnHwDR

Ansi based on Dropped File (is-M3VFU.tmp)

8tCx6tjM/Pz82rqk/Pz8/Pz8/Pz8/Pz8/Pz8/Pz8/Pz8/Pz8zKGC/Pz838OwxZJqfDYQfDYQfDYQ

Ansi based on Dropped File (is-PTAHT.tmp)

8tCx6tjM/Pz82rqk/Pz8/Pz8/Pz8/Pz8/Pz8/Pz8/Pz8/Pz8zKGC/Pz838OwxZJqokMWokMWokMW

Ansi based on Dropped File (is-PTAHT.tmp)

8tCx6tjM/Pz82rqk/Pz8/Pz8/Pz8/Pz8/Pz8/Pz8/Pz8/Pz8zKGC/Pz838OwxZJqxHI1xHI1xHI1

Ansi based on Dropped File (is-PTAHT.tmp)

8uXa0aZ+zJ1xx5psxZhr4sy2+PPu9u7o2b2hwpRoxZtx8OLWw5Jpj0sdj0sdj0sdj0sdaCgG35ZY

Ansi based on Dropped File (is-PTAHT.tmp)

8uXa0aZ+zJ1xx5psxZhr4sy2+PPu9u7o2b2hwpRoxZtx8OLWxpVr35ZY35ZY35ZY35ZYs2dG35ZY

Ansi based on Dropped File (is-PTAHT.tmp)

8uXa0aZ+zJ1xx5psxZhr4sy2+PPu9u7o2b2hwpRoxZtx8OLWxZNqymgtymgtymgtymgtqDop35VY

Ansi based on Dropped File (is-PTAHT.tmp)

8uXgnj0Wnj0Wnj0WjSwXw200w200AAAAxHE3xHE3ky8ZokMWokMWokMWokMWoEYiiVt/bWjXmZzy

Ansi based on Dropped File (is-PTAHT.tmp)

8vH6Lxq1////////////////////IgywIgywIgywIgywIgywIgywIgywIgywIgywMBjPJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

8vT0AO3v7wDo6uoA4uTkANze3gDX2dkA1tjYAM/R0QDMzs4Ay83NAMnLywDHyckAw8XFAL2/vwC4

Ansi based on Dropped File (is-1PHDE.tmp)

8XOXl1BFOBYoGRkZGRkZGRkZGRkoFjhFUJeXl5eXzcHzvb29vb29vb29vb29vb29vb29vb29vb29

Ansi based on Dropped File (is-1PHDE.tmp)

8Xw)Pvb3lrEZ

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

9$w:](>N-<

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

9&dUkSKY-

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

9*BIq<jV7v

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

9+rf7t7Q48Gn2K6J16yG3buc69bH8+bZ472c56t36qRl6qRl6qRl6qRl6qRltnBN451g5J1g5aJk

Ansi based on Dropped File (is-PTAHT.tmp)

9+rf7t7Q48Gn2K6J16yG3buc69bH8+bZ47ub3o5Y3Hg33Hg33Hg33Hg33Hg3rD8t451g5J1g5aJk

Ansi based on Dropped File (is-PTAHT.tmp)

9+rf7t7Q48Gn2K6J16yG3buc69bH8+bZ4LqasHhNmVcnmVcnmVcnmVcnmVcnZygF451f455g5qFk

Ansi based on Dropped File (is-PTAHT.tmp)

9+vkwWs1wWs1wWs1okwkw200w200AAAAxHE3xHE3plEnxHI1xHI1xHI1xHI1wHI/mXGOb2rYmZzy

Ansi based on Dropped File (is-PTAHT.tmp)

9/f38PDw0NDQ8PDw+/v7ycnJeXh3uHhHz3o4z3o4z3o4z3o4z3o4qVcvzno5zno5zno5qVcvz3o4

Ansi based on Dropped File (is-PTAHT.tmp)

9/f39/j39/f39/ja2tv39/jb+Pf49/f39/fa29raEhIREff39/cIAgL/AgICAgICAgICAgICAv4C

Ansi based on Dropped File (is-M3VFU.tmp)

9/f39/j39/f39/jb29z39/jc+Pf49/f39/fb3NvbFhYVFff39/cIAgL8AgICAgICAgICAgICAvsC

Ansi based on Dropped File (is-M3VFU.tmp)

9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/H/9/EA//r1//r1//r1//r1//r1//r1//r1

Ansi based on Dropped File (is-PTAHT.tmp)

9/oCAvr59v0EBAQEBAQEBAQEBAQEBAQEBAQEBAQE/fb5+gIC9fX19PMCAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

92YP3Q3KM

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

98dj-hirj

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

997K/PLq7r6U5p1f8suq/fj0/PLq+OXU/fj0+OXU/PLq5p1f6ap0/PLq5p1f5p1f5p1ftm1K35ZY

Ansi based on Dropped File (is-PTAHT.tmp)

999~VVVduuuR

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

9]|ZoC"KC

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

9ADo6eoA4uPkANzd3gDW19gAvr/AALi5ugCztLUAq6ytAK6vsQDJyswAVFRVAFJSUwBBQUIAenp7

Ansi based on Dropped File (is-1PHDE.tmp)

9AQU.>{8h

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

9B^%&{8tL

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

9d/O9d/O5tLUenf/gX7/gX7+dHH93svW9d/O9d/O3MnVYl/4b237fnz/Yl/4q53d9N7O9d/O9d/O

Ansi based on Dropped File (is-PTAHT.tmp)

9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O

Ansi based on Dropped File (is-PTAHT.tmp)

9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/O9d/OAABUsVFUsVFUsVFUsVFUsVFUsVFUsVFU

Ansi based on Dropped File (is-PTAHT.tmp)

9d/O9N7N0b/Cenf/gX7/gX7+dHH9c2t9uKea4My8uqm4Yl/4b237fnz/Yl/4VlCWn5GI5M+/9d/O

Ansi based on Dropped File (is-PTAHT.tmp)

9fkCAvj38vwEBAQEBAQEBAQEBAQEBAQEBAQEBAQE/PL3+AIC8fHwDO8CAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

9fX19fX19fX19fX19fX19fW58djY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY2NjY

Ansi based on Dropped File (is-1PHDE.tmp)

9fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX1

Ansi based on Dropped File (is-1PHDE.tmp)

9fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX1

Ansi based on Dropped File (is-1PHDE.tmp)

9fXx0ws2GiIgICAgICAgICAgICAgLEIgICIaNgsLCwu9h4ejh6OHh4eHh4eHh4eHh4eHh4eHh4eH

Ansi based on Dropped File (is-1PHDE.tmp)

9ioE\y3H?

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

9J=mH=iF#

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

9kJA7EE1Mkg7NzUy50dF8mNi/0pI9C8t6WNQZbKQd9uxkuC1ltShgMuRbuC1luC1luC1lgDjupzj

Ansi based on Dropped File (is-PTAHT.tmp)

9kRB7duxmduxmTc06EdF8mNi/0pI9C8t6cCco+C1luC1luC1ltShgMuRbuC1luC1luC1lgDjupzj

Ansi based on Dropped File (is-PTAHT.tmp)

9kRC7uvm5evm5Tc06UdF8mNi/0pI9C8t6czF3evYyOnTwOnRvteoisuRbuC1luC1luC1lgDjupzj

Ansi based on Dropped File (is-PTAHT.tmp)

9N7O9d/O9d/O5cKs16qR9d/O9d/O9d/O9d/O9d/O9d/OAABUsVFUsVFUsVFUsVFUsVFUsVFUsVFU

Ansi based on Dropped File (is-PTAHT.tmp)

9NnI46B21XAy1XAy24NN24NN1XAy24NN24NN+ezk1XAy5qmE+ezk1XAy1XAy1XAyrD0r35VY4JZY

Ansi based on Dropped File (is-PTAHT.tmp)

9O3+9O3+9O3+9O3+9O3+9O3+9O3+9O7+9O7+9O3+9O3+9O3+8+z14NPMlXr239L+7eL+7eL+7eIA

Ansi based on Dropped File (is-PTAHT.tmp)

9Ojs8+fs8+fs8+fs8+fr8+fr8+fr8+br8+br8+br8+br8+br8+br8+br8+br8+br8+br8+br8+br

Ansi based on Dropped File (is-PTAHT.tmp)

9oly9mJy2PJZk1kSWb2Tk5MAAAAAAJOTWZO9goKCgr2TbgDd3d3d3dzd3d3d3d3dAG6TvYKCgoK9

Ansi based on Dropped File (is-1PHDE.tmp)

9Oo7uJ3s9OSdm5ubm5ubm5ubm5uoLUWfojCbojCbmz8BAambsbGbP8WoxTCbuEWpuLi4uLi4uLi4

Ansi based on Dropped File (is-M3VFU.tmp)

9Oz/9Oz/9Oz/9OwAAI3EhI3EhI3EhI3EhI3EhI3EhI3EhI3EhI3EhI3EhI3EhI3EhI3EhI3EhI3E

Ansi based on Dropped File (is-PTAHT.tmp)

9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/9Oz/

Ansi based on Dropped File (is-PTAHT.tmp)

9PD49PDz7/BeW/Z9ef9eW/9bWP92dP9HRO/y7vD49PD48+726uL15tz15dr04dXiuqXVpIrx1cTx

Ansi based on Dropped File (is-PTAHT.tmp)

9Pj55+7x 4uvvzdfevMfPzNnhoa2zKzc9N0NJAAIIgo6U2+ftws7UxNDWvsvTvcnTucfTv83ZvcfRz9fe+f3+ /Pz8//////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// ////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

9Pnq3uiyhfLVvP///+7Hpt+WWN+WWLNnRt+WWAAAtm1K5p1f5p1f89G08suq5p1f5p1f5p1f67F/

Ansi based on Dropped File (is-PTAHT.tmp)

9PQA7u/vAOrr6wDo6ekA5ebmAOPk5ADf4OAA2tvbANjZ2QDX2NgA1tfXANXW1gDR0tIA0NHRAM/Q

Ansi based on Dropped File (is-1PHDE.tmp)

9PQA7u/vAOvs7ADj5OQA2tvbANfY2ADW19cA0dLSANDR0QDP0NAAysvLAMTFxQC+v78Avb6+ALe4

Ansi based on Dropped File (is-1PHDE.tmp)

9Pv49Pv49OHe9WRh+Gpo+Y2K89/a8Prw6Pnu5fnt5OjMudmslPfi0/fi0/fi0wD65tf65tfarpbs

Ansi based on Dropped File (is-PTAHT.tmp)

9Qju7LCwsLCwsLCwsLCwsLCwsLDs7gj1seq/AgK+uuv59vAICAgICAgICAgICAgICAgICAjw9vnr

Ansi based on Dropped File (is-M3VFU.tmp)

9qksQ.>jN4~>

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

9vb29vf29vb29vf29tr29vfa9/b39vb29vb22vb2GBgVFfb29vYIAwP9AwMDAwMDAwMDAwMDA/wD

Ansi based on Dropped File (is-M3VFU.tmp)

9vb2APLy8gDx8fEA7e3tAOvr6wDk5OQA4uLiAOHh4QDf398A29vbANjY2ADW1tYA1dXVANLS0gDP

Ansi based on Dropped File (is-1PHDE.tmp)

9vb8AOrY8je8vwD79fX19fUWMnk1bXF0cF5can8W9fX19fsAv7wCAru+APrh4eHh4eGnRkB3NWhm

Ansi based on Dropped File (is-M3VFU.tmp)

9vkCAvn4JPwEBAQEBAQEBAQEBAQEBAQEBAQEBAQE/CT4+QIC9PT08/ICAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

9voCAvn48+IEBAQEBAQEBAQEBAQEBAQEBAQEBAQE4vP4+QIC8vLx8O4CAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

9w3x8N4g8PDeIvDeIt0i3i3gBP74+wQEBAQEBAQEBAQEBAQEBAT+9vr78/Py7/Ly8vLy8vLv8vLv

Ansi based on Dropped File (is-M3VFU.tmp)

9~|~!;~pt

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

: warning

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

:(:) :(:)

Ansi based on Dropped File (is-8C1UQ.tmp)

:(|) :(|)

Ansi based on Dropped File (is-8C1UQ.tmp)

:)>- :)>-

Ansi based on Dropped File (is-8C1UQ.tmp)

:+oW?1Btz

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

:-)>.... :-)>....

Ansi based on Dropped File (is-8C1UQ.tmp)

:-?? :-??

Ansi based on Dropped File (is-8C1UQ.tmp)

:-bd :-bd

Ansi based on Dropped File (is-8C1UQ.tmp)

:-SS :-SS

Ansi based on Dropped File (is-8C1UQ.tmp)

:6Jd/dS'i

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

:8|H3HKXh

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

:;ADDDDDDDDDDDDDB

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

:=_HHn#)g

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

:ar! :ar!

Ansi based on Dropped File (is-8C1UQ.tmp)

:byEYi]]A

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

:EiS9?`uB;

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

:gd@X^(6x

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

:Language:%u!

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

:ld{}$=@n

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

:s0Wwl6sP

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

:wI*C;8FB,N(V

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

;!@Install@!UTF-8!

Ansi based on Hybrid Analysis (AvroKeyboard5.6.0Silent-Lava.exe , 00022216-00004044.00000001.23375.00401000.00000020.mdmp)

;!@Install@!UTF-8!ExecuteFile="Avro Keyboard 5.6.0 - Lava.exe"ExecuteParameters="/SILENT"GUIMode="2";!@InstallEnd@!7z

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

;!@InstallEnd@!

Ansi based on Hybrid Analysis (AvroKeyboard5.6.0Silent-Lava.exe , 00022216-00004044.00000001.23375.00401000.00000020.mdmp)

;)V{MqC'.

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

;.wW84'ub

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

;_z-[{IPO

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

;BeG>=WVO

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

;B~\$'b00

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

;Fr^Zv5B

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

;JhR<*MJO

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

;Jt=F^$>|&F

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

;o_o; ;o_o;

Ansi based on Dropped File (is-8C1UQ.tmp)

;sP#9wX24&

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

;{,!#9V,^

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

<![CDATA[

Ansi based on Dropped File (is-OODVK.tmp)

<![CDATA[1.0

Ansi based on Dropped File (is-PTAHT.tmp)

<![CDATA[2.0

Ansi based on Dropped File (is-M3VFU.tmp)

<![CDATA[Avro Flat (Red)

Ansi based on Dropped File (is-OODVK.tmp)

<![CDATA[Avro Royal

Ansi based on Dropped File (is-PTAHT.tmp)

<![CDATA[Avro Vista

Ansi based on Dropped File (is-M3VFU.tmp)

<![CDATA[http://www.VistaArc.com/

Ansi based on Dropped File (is-PTAHT.tmp)

<![CDATA[iAvro

Ansi based on Dropped File (is-1PHDE.tmp)

<![CDATA[Icons are changed to look better.

Ansi based on Dropped File (is-M3VFU.tmp)

<![CDATA[Its a iTunes mod.

Ansi based on Dropped File (is-1PHDE.tmp)

<![CDATA[M. M. Rifat-Un-Nabi

Ansi based on Dropped File (is-PTAHT.tmp)

<![CDATA[Md. Tanbin Islam Siyam

Ansi based on Dropped File (is-M3VFU.tmp)

<![CDATA[Tanbin Islam Siyam

Ansi based on Dropped File (is-OODVK.tmp)

<![CDATA[Tanbin Islam Siyam, potasiyam@gmail.com, potasiyam.deviantart.com

Ansi based on Dropped File (is-1PHDE.tmp)

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"><HTML><HEAD><TITLE>Configuring the computer for Bangla typing</TITLE><META http-equiv=Content-Type content="text/html; charset=iso-8859-1"><STYLE type=text/css>.subheader {FONT-WEIGHT: bold

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

<'xv":^!

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

<):) <):)

Ansi based on Dropped File (is-8C1UQ.tmp)

<-57'wRTI

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

</AvroIconDown>

Ansi based on Dropped File (is-PTAHT.tmp)

</AvroIconNormal>

Ansi based on Dropped File (is-PTAHT.tmp)

</AvroIconOver>

Ansi based on Dropped File (is-PTAHT.tmp)

</AvroMouseDown>

Ansi based on Dropped File (is-PTAHT.tmp)

</AvroMouseNormal>

Ansi based on Dropped File (is-PTAHT.tmp)

</AvroMouseOver>

Ansi based on Dropped File (is-PTAHT.tmp)

</DesignerComment>

Ansi based on Dropped File (is-PTAHT.tmp)

</DesignerName>

Ansi based on Dropped File (is-PTAHT.tmp)

</ExitDown>

Ansi based on Dropped File (is-PTAHT.tmp)

</ExitNormal>

Ansi based on Dropped File (is-PTAHT.tmp)

</ExitOver>

Ansi based on Dropped File (is-PTAHT.tmp)

</HelpDown>

Ansi based on Dropped File (is-PTAHT.tmp)

</HelpNormal>

Ansi based on Dropped File (is-PTAHT.tmp)

</HelpOver>

Ansi based on Dropped File (is-PTAHT.tmp)

</KeyboardLayoutDown>

Ansi based on Dropped File (is-PTAHT.tmp)

</KeyboardLayoutNormal>

Ansi based on Dropped File (is-PTAHT.tmp)

</KeyboardLayoutOver>

Ansi based on Dropped File (is-PTAHT.tmp)

</KeyboardModeBanglaDown>

Ansi based on Dropped File (is-PTAHT.tmp)

</KeyboardModeBanglaNormal>

Ansi based on Dropped File (is-PTAHT.tmp)

</KeyboardModeBanglaOver>

Ansi based on Dropped File (is-PTAHT.tmp)

</KeyboardModeEnglishDown>

Ansi based on Dropped File (is-PTAHT.tmp)

</KeyboardModeEnglishNormal>

Ansi based on Dropped File (is-PTAHT.tmp)

</KeyboardModeEnglishOver>

Ansi based on Dropped File (is-PTAHT.tmp)

</Layout>

Ansi based on Dropped File (is-PTAHT.tmp)

</LayoutViewerDown>

Ansi based on Dropped File (is-PTAHT.tmp)

</LayoutViewerNormal>

Ansi based on Dropped File (is-PTAHT.tmp)

</LayoutViewerOver>

Ansi based on Dropped File (is-PTAHT.tmp)

</Preview>

Ansi based on Dropped File (is-PTAHT.tmp)

</SkinName>

Ansi based on Dropped File (is-PTAHT.tmp)

</SkinVersion>

Ansi based on Dropped File (is-PTAHT.tmp)

</ToolsDown>

Ansi based on Dropped File (is-PTAHT.tmp)

</ToolsNormal>

Ansi based on Dropped File (is-PTAHT.tmp)

</ToolsOver>

Ansi based on Dropped File (is-PTAHT.tmp)

</TopBarMain>

Ansi based on Dropped File (is-PTAHT.tmp)

</WebDown>

Ansi based on Dropped File (is-PTAHT.tmp)

</WebNormal>

Ansi based on Dropped File (is-PTAHT.tmp)

</WebOver>

Ansi based on Dropped File (is-PTAHT.tmp)

<333 <333

Ansi based on Dropped File (is-8C1UQ.tmp)

<:-P <:-P

Ansi based on Dropped File (is-8C1UQ.tmp)

<<<}HHHrMMMnFFFs:::

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

<?xml version="1.0" encoding="UTF-8"?>

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

<?xml version="1.0" encoding="UTF-8"?><Layout> <AvroKeyboardVersion>5</AvroKeyboardVersion> <SkinName> <![CDATA[iAvro </SkinName> <SkinVersion> <![CDATA[1.0 </SkinVersion> <DesignerName> <![CDATA[Tanbin Islam Siyam, potasiyam@gmail.com, potasiyam.deviantart.com </DesignerName> <DesignerComment> <![CDATA[Its a iTunes mod. </DesignerComment> <Preview> Qk1WHwAAAAAAADYEAAAoAAAA+AAAABwAAAABAAgAAAAAACAbAAAAAAAAAAAAAAABAAAAAQAAAAAA AP///wA+PKkAODddALSy3QAeGlkAnJuuAEZEVwDNzNUARkVNADg3PQCcm50AwsHCALi3uACop6gA lpWWAMbGxQDz9PMA3d7dANLT0gCYmpkA6OrpAH2OigBkcW4Ac3x6AIWZlQCmvrkA9/z7AL3Z1AC1 0MsAwt7ZAMHd2ADA3NcAv9vWALzX0gDG4dwAqbm2AExYVgCsxcEAqsO/AIOWkwDK5OAAnLCtAIia lwDQ6OQArsC9AISRjwBmbGsApKqpALm/vgDy+PcAwt3ZAHKBfwC2zcoAlaSiAOHv7QBtfXsA2vLv ANXt6gCjtbMAp7m3ALTGxADF2NYAUlpZALjJxwCsvLoAzd3bAK22tQC5wsEAWWRjAOX9+wDi+vgA 4fn3AN729ADg9/UAiZeWALvMywDo//4A5/79AEJHRwB5f38ALC0tADs8PAA4OTkAqKqqAEVGRgBB QkIA7e/vAOjq6gDc3t4A0NLSAMnLywDHyckAvsDAALi6

Ansi based on Dropped File (is-1PHDE.tmp)

<?xml version="1.0" encoding="UTF-8"?><Skin> <AvroKeyboardVersion>5</AvroKeyboardVersion> <SkinName> <![CDATA[Avro Flat </SkinName> <SkinVersion> <![CDATA[1.0 </SkinVersion> <DesignerName> <![CDATA[Tanbin Islam Siyam

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

<?xml version="1.0" encoding="UTF-8"?><Skin> <AvroKeyboardVersion>5</AvroKeyboardVersion> <SkinName> <![CDATA[Avro Flat (Mint) </SkinName> <SkinVersion> <![CDATA[1.0 </SkinVersion> <DesignerName> <![CDATA[Tanbin Islam S

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

<?xml version="1.0" encoding="UTF-8"?><Skin> <AvroKeyboardVersion>5</AvroKeyboardVersion> <SkinName> <![CDATA[Avro Flat (Red) </SkinName> <SkinVersion> <![CDATA[1.0 </SkinVersion> <DesignerName> <![CDATA[Tanbin Islam Siyam </DesignerName> <DesignerComment> <![CDATA[ </DesignerComment> <Preview> Qk04bAAAAAAAADYAAAAoAAAAIAEAACAAAAABABgAAAAAAAJsAAASCwAAEgsAAAAAAAAAAAAAJSUl JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlMBjPMBjPMBjPMBjPMBjPMBjP MBjPMBjPMBjPMBjPMBjP

Ansi based on Dropped File (is-OODVK.tmp)

<?xml version="1.0" encoding="UTF-8"?><Skin> <AvroKeyboardVersion>5</AvroKeyboardVersion> <SkinName> <![CDATA[Avro Flat (Yellow) </SkinName> <SkinVersion> <![CDATA[1.0 </SkinVersion> <DesignerName> <![CDATA[Tanbin Islam

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0"><assemblyIdentity version="1.4.1.2100" name="7-Zip.SfxMod" type="win32"></assemblyIdentity><dependency><dependentAssembly><assemblyIdentity type="win32" name="Microsoft.Windows.Common-Controls" version="6.0.0.0" processorArchitecture="X86" publicKeyToken="6595b64144ccf1df"></assemblyIdentity></dependentAssembly></dependency><trustInfo xmlns="urn:schemas-microsoft-com:asm.v3"><security><requestedPrivileges><requestedExecutionLevel level="asInvoker" uiAccess="false"></requestedExecutionLevel></requestedPrivileges></security></trustInfo><compatibility xmlns="urn:schemas-microsoft-com:compatibility.v1"><application><supportedOS Id="{35138b9a-5d96-4fbd-8e2d-a2440225f93a}"></supportedOS></application></compatibility> </assembly>PAPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGX

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

<AvroMouseOver> Qk1GBgAAAAAAADYEAAAoAAAAFQAAABYAAAABAAgAAAAAABACAAAAABUAAAAWAAABAACAAAAAAAAA AP///wDz9PMA+/38APf5+AD3+fkA8vT0AO3v7wDo6uoA4uTkANze3gDP0dEAycvLAMPFxQC+wMAA vb+/ALi6ugCztbUArrCwAHp7ewD+//8A+/z8APj5+QD3+PgA9fb2APP09ADu7+8A6OnpAOPk5ADX 2

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

<Cq.$S.nv

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

<E!8H[(FF

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

<html><head><meta http-equiv="Content-Language" content="en-us"><meta http-equiv="Content-Type" content="text/html; charset=windows-1252"><title>Help on help</title></head><body><table border="0" cellpadding="5" cellspacing="5" style="borde

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

<html><head><meta http-equiv="Content-Language" content="en-us"><meta http-equiv="Content-Type" content="text/html; charset=windows-1252"><title>Open Type Bangla Fonts came with Avro Keyboard</title></head><body><table border="0" cellpaddin

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-1PHDE.tmp)

Ansi based on Dropped File (is-PTAHT.tmp)

Ansi based on Dropped File (is-M3VFU.tmp)

Ansi based on Dropped File (is-OODVK.tmp)

<Z'{RgIG#

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

<|z_5+j ]g

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

=$=(=,=0=4=8=<=@=

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

=%;]_ZIg`

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

=]YAnJ-P'

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

=F#>xf?}Y

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

=K8u?oN:

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

=px,M3KjY

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

=qi"(E&b%

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

=tYXycfXTUq~

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

={>&iD6"v

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

=}qk!N)~.

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

>7|tEV9{"

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

>:-( >:-(

Ansi based on Dropped File (is-8C1UQ.tmp)

>:-) >:-)

Ansi based on Dropped File (is-8C1UQ.tmp)

>:D< >:D<

Ansi based on Dropped File (is-8C1UQ.tmp)

>:PNv$Q@}

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

>@@@@@@@7KU3

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

>@F^ S6'i

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

>ua\R.amj

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

>yEMd,Kq]DL

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

>Z1gWCrpc

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

?-*NEOamx

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

?3qFWbVWd

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

?82tw\/Ixs

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

?<%ax.[;!1

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

??1type_info@@UAE@XZ

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

??2@YAPAXI@Z

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

??3@YAXPAX@Z

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

?]hQa5Xq6

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

?a8gxAvXB

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

?K%UG^s{A

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

?p3{PbRUy

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

?S*irX EI,

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

@0123456789ABCDEFGHIJKLMNOPQRSTUV

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000000.22920.00412000.00000004.mdmp)

@7zSfxFolder%02d

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

@=nd[Ezh-

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

@g)4Ya/VEU

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

@N$-jw#A

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

@V &nWSq

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

@W5qVj&Xov

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

@}-;-'--- @}-;-'---

Ansi based on Dropped File (is-8C1UQ.tmp)

[$ct:>\B

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

[,0r[[2Mb

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

[-O< [-O<

Ansi based on Dropped File (is-8C1UQ.tmp)

[4l;l:Qq^

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

[:|] [:|]

Ansi based on Dropped File (is-8C1UQ.tmp)

[ExceptObject=nil]

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.00401000.00000020.mdmp)

[g)3,6@.#

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

[InternetShortcut]URL=

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

[k7PFo0Kv

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

[kNG;Gw+>

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

[name/ver]

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

[p!~*[KCh

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

[Paused]

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

\"T*VPv\14

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

\,,/ \,,/

Ansi based on Dropped File (is-8C1UQ.tmp)

\2'gUmZJho

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

\:D/ \:D/

Ansi based on Dropped File (is-8C1UQ.tmp)

\\.\pipe\InnoSetup64BitHelper-%.8x-%.8x-%.8x-%.8x%.8x

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

\\\\\\\\\\Q,Q\

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

\_setup64.tmp

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

\Control Panel\International

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.00401000.00000020.mdmp)

\Ez^_)z|A

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

\hBHG)tD75

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

\Owc!j(r*

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

\Sessions\1\Windows\ApiPort

Unicode based on Runtime Data (AvroKeyboard5.6.0Silent-Lava.exe )

\ThemeApiPort

Unicode based on Runtime Data (AvroKeyboard5.6.0Silent-Lava.exe )

\u99|1aG 0

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

\w|0[($K]4?

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

\}K95!b^|

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

] 3W7,!b

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

] YE%@p]gVi

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

]0i%{U2D

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

]3k%X{@T

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

]8=NMo,\/

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

]j)- X>O

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

]jl<EZ)A

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

]L+gi 6/gW

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

]|Uig75-AViL,

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

^ @ KHz.e

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

^"h",1Q|O

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

^#(^ ^#(^

Ansi based on Dropped File (is-8C1UQ.tmp)

^%/mNRbcKx

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

^37q|U6zwwf

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

^4PuE7"+c}

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

^6tXD&<sh

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

^:)^ ^:)^

Ansi based on Dropped File (is-8C1UQ.tmp)

^\^^8OHQ!

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

^]~m'ry-@t

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

^^^OOOVVVUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUVVVPPPbbb

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

^JBloWj`z

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

^kDSu-*=!t"

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

^l& qVeM_

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

^O1Xe\Dn

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_*h2+HlJ5

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_.6PRKbv>

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_?_____n_____0___?______0v_0?__q_________q_________?__

Ansi based on Image Processing (screen_2.png)

_[(UP^Zo

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

______0v?_________

Ansi based on Image Processing (screen_0.png)

________0_?__l______q____?__g

Ansi based on Image Processing (screen_0.png)

_________________

Ansi based on Image Processing (screen_2.png)

___i_,n?___,i',0

Ansi based on Image Processing (screen_2.png)

___i~~~X```hI

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

__dllonexit

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

__getmainargs

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

__p__commode

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

__p__fmode

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

__set_app_type

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

__setusermatherr

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_adjust_fdiv

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_b:G78nU

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_beginthreadex

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_controlfp

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_CxxThrowException

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_EH_prolog

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_except_handler3

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_initterm

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_purecall

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_t*|&v(r(

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_wcsnicmp

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_x^hFSW9fq>

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

_XcptFilter

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

`&!K]I<LV

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

`-fi*_Xe\CQ

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

`6<:l\#c7

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

`<<W,<^ZK1

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

`\??\Volume{e47f4f43-d863-11e7-9d8f-806e6f6e6963}

Unicode based on Runtime Data (AvroKeyboard5.6.0Silent-Lava.exe )

`\??\Volume{e47f4f44-d863-11e7-9d8f-806e6f6e6963}

Unicode based on Runtime Data (AvroKeyboard5.6.0Silent-Lava.exe )

`\??\Volume{e47f4f47-d863-11e7-9d8f-806e6f6e6963}

Unicode based on Runtime Data (AvroKeyboard5.6.0Silent-Lava.exe )

`A>unzrU#

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

`hjAjv.%g

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

`J>QUZ(R>

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

`K?IJkABFo

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

`L^;WS_-

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

`op){ Jr]

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

`Qbh9<6W{

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

`v!#u'I8

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

A AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAA

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

A!O,B:zCjH

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

a0SlbUSlbUSlbUSlbUSlbUSlbUSlbUSlbUSlbUSja0RxOBrrr3IAAGQsDpxnQ6h0Uah0Uah0Uah0

Ansi based on Dropped File (is-PTAHT.tmp)

a13KIgywIgywIgywIgywIgywIgywIgywIgywIgywMBjPMBjPIgywIgywIgywIgywiX3Vw73qIgyw

Ansi based on Dropped File (is-OODVK.tmp)

a13KIgywIgywIgywIgywIgywIgywIgywXU3F/v7/IgywPyy7/v7/Pyy7IgywMBjPMBjPIgywIgyw

Ansi based on Dropped File (is-OODVK.tmp)

a1lrW Wvde9173XhhjGGMYYzlnOWeEEOccAABjDK01ay1rLWstjDGMMYwxjDGMMYwxjDGMMYwxjDGMMYwx jDGMMYwxjDGMMYwxrTWtNa01jDGMMYwxGGNjDAAAYwzOOWstay1rLWstay1rLYwxjDGMMYwxjDGM MYwxjDGMMYwxjDGMMYwxjDGMMa01rTWMMYwxjDGMMRhjYwwAAGMM7z1rLWstay1rLYwxjDGMMYwx jDGMMYwxjDG

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

a1pdj3hoqHIHvaFg2bRw69S+//bQfHx2IzQrQ0c79v/759nk7f//IjgsNDQ0YF1ZXVxYX11cXF1b

Ansi based on Dropped File (is-M3VFU.tmp)

a2sAaWpqAGZnZwBkZWUAY2RkAGFiYgBfYGAAXl9fAF1eXgBcXV0AVldXAFJTVABhYmMAXF1eAFpb

Ansi based on Dropped File (is-1PHDE.tmp)

a2tra2tra2tra2tra2tra2tra2sYGAZSOElra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tr

Ansi based on Dropped File (is-1PHDE.tmp)

a2tra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tra2tr

Ansi based on Dropped File (is-1PHDE.tmp)

a2tra2tra2tra2tra2trGBgGUjhJOAYYGGtJGDg4FHV4eHVqN0gqUTcSNzc3Nzc3Nzc3Nzc3Nzc3

Ansi based on Dropped File (is-1PHDE.tmp)

a2tra2trWJFYvcDAwMC9WJFYa2tra2sA3WXdaWtra1iRWL3AwMDAvViRWGtrawBlZQBlZQBra2tY

Ansi based on Dropped File (is-1PHDE.tmp)

a3aae7T/psz/jr7/fLP/hbj/m8X/WZ7/RWmwfDgSfDgSfDgSfDgSfDgSfDgSfDgSfDgSfDgSaCkH

Ansi based on Dropped File (is-PTAHT.tmp)

a3BrcGtwa3AAc3W9oaGhob11dXV1dXUAdXV1dXUAdXV1dXV1vaGhoaG9dXV1dQB1cVH//rd2lAB1

Ansi based on Dropped File (is-1PHDE.tmp)

a3m/dc/k0ICTY86ibey2eO22eey1eOy2eOy2eOy2eOy2eOy2eOy2eOy2eOy2eOy2eOy2eOy2eOy2

Ansi based on Dropped File (is-PTAHT.tmp)

a3m/dc/k0ICTY86ibey2eOy2eOy1eMmLbe3AgO3AgO3AgO2/gO3AgO3AgO3AgO3AgO3AgO3AgO3A

Ansi based on Dropped File (is-PTAHT.tmp)

a3Z8ALW1tQC0tLQAqqqqAKWlpQCjo6MAoaGhAJ6engCZmZkAlJSUAIuLiwCKiooAh4eHAIODgwB+

Ansi based on Dropped File (is-M3VFU.tmp)

A<,t@J?.-

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

a]|H_lY*N

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

AA8ODQAfHRsAKigmABUUEwAxMC8ASklIAGJhYABfXl0AXl1cAFlYVwBXVlUAeHd2AHJxcABramkA

Ansi based on Dropped File (is-M3VFU.tmp)

AA8PDwAGBgYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-M3VFU.tmp)

aA;xH6Jd

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

AAAA////////AAAA////////AAAA////////AAAA////////AAAA////////AAAA////AAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAA////////AAAA////////AAAA////////AAAA////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAA////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////AAAA////

Ansi based on Dropped File (is-OODVK.tmp)

AAAA29vb////////////////////////////////////2NjYAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAA3Nzd/v7//v7//v7//v7//v7//v7//v7/7e3u3Nzd/v7/IiIiAAAAAAAAAAAAIiIi/v7//v7/

Ansi based on Dropped File (is-OODVK.tmp)

AAAA4plb4plbtm1K5p1f5p1f5p1f5p1f5p1f5p1f5p1f8MSf////5p1f5p1f5p1f5p1f5p1f5p1f

Ansi based on Dropped File (is-PTAHT.tmp)

AAAA4plb4plbtm1K5p1f5p1fwKzQys3+zM//tLX/srL/rq7/y8//xsv9wMP8ycv/n5//nZ3/mJj/

Ansi based on Dropped File (is-PTAHT.tmp)

AAAA4plb4plcrD0r1XAy1XAy1XAy1XAy1XAy1XAy1XAy5qmE////1XAy1XAy1XAy1XAy1XAy1XAy

Ansi based on Dropped File (is-PTAHT.tmp)

AAAA4plb4plcrD0r1XAy1XAyvKDEys3+zM//tLX/srL/rq7/y8//xsv9wMP8ycv/n5//nZ3/mJj/

Ansi based on Dropped File (is-PTAHT.tmp)

AAAA4Zlb4ZlbZygFlVEhlVEhlVEhlVEhlVEhlVEhlVEhv5d6////lVEhlVEhlVEhlVEhlVEhlVEh

Ansi based on Dropped File (is-PTAHT.tmp)

AAAA4Zlb4ZlbZygFlVEhlVEhqpe/ys3+zM//tLX/srL/rq7/y8//xsv9wMP8ycv/n5//nZ3/mJj/

Ansi based on Dropped File (is-PTAHT.tmp)

AAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAA

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAA

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AAAAAAAA////////////////////////////////////////////AAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAA////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////AAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAA////AAAAAAAAAAAAAAAAzMzMVVVVVVVV7u7uAAAAAAAAAAAA7u7uREREVVVV////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAA

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AAAAAAAAAAAA////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAA////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAA////AAAAAAAAAAAAAAAAAAAAu7u7zMzMAAAAAAAAIiIi////////////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAA9vb2////////////8PDwDw8P////////////////9vb2AAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAA0kNyQkJDcjIQBATUBNQE1ATUBNQE1AACEjNzIyZjc0CwALAAwADAAMAAwADAAL

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAA////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7e3tPDw8

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAA////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAA////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAA29vb////0tLSEhISJycn2NjY////q6urAAAAAAAAlpaW////PDw8AAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAA7u7uVVVVAAAAAAAARERE7u7uERERAAAAAAAAAAAAmZmZ////////zMzM

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAA////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAA7+/v7+/vv7+/7+/v////////////r6+vAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICAgQEBA QEBAMDAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgICA////////v7+/AAAAAA

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////////////////////////////////////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3t7eWlpaAAAAAAAAMzMz7u7uAAAAAAAA7u7uREREAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICAgQEBA QEBAMDAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgICA////////v7+/

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////////////////8PDwDw8P////////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////AAAAAAAAAAAAAAAAIiIi7u7u7u7uMzMzAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7+/v////////////7+/vMDAwAAAAMDAw7+/v////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICAgQEBA QEBAMDAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgICA////////v7+

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICAgQEBA QEBAMDAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgICA////////v

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////////////////MDAwAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////AAAA////////AAAA////////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0ADMAMwAyADIAMAAwAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6AOYA6ACgAN8AfgD3AGAAzgAmACgA2QAE

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////AAAA////////AAAA////////AAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////AAAA////////AAAA////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6AOYA6ACgAN8AfgD3AGAA

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+fn5////////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3t7e

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICAg

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOgDm

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAARgB2

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAASEhI

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUFBQ

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAxADF

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYGBg

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAz8/P

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAkJCQkJ

Ansi based on Dropped File (is-M3VFU.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoKCgoK

Ansi based on Dropped File (is-M3VFU.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABUVFRUV

Ansi based on Dropped File (is-M3VFU.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADExMTEx

Ansi based on Dropped File (is-M3VFU.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADZgUwgI

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEFBQUFB

Ansi based on Dropped File (is-M3VFU.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF1bWFdX

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF1cW1pa

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFxYVlVV

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGdjYmFh

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGlnZWRk

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGpoZ2Zm

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGVjYWBg

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGxnZWNj

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGZlYmFh

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHZ2dnZ2

Ansi based on Dropped File (is-M3VFU.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ+dmZiY

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKmppwKk

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICAgQEBA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJycnHh4e

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYGBg////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYGBg7+/v

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYGBgcHBw

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFRUV////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICAg7+/v////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIiIi3NzdAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp6enAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDw86urqAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAw8PD////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAz8/P////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPSCPQDzgT0A8H88

Ansi based on Dropped File (is-M3VFU.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMDqKioBgYGAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDAw7+/v////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYGBg////////YGBg

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAd3d3/v7//v7//v7//v7/

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAz8/P////////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMDycnJ////////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAj4+P////////////YGBgAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDAw7+/v////////////7+/v

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUVFR7e3t////////qKioGxsb

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYGBg7+/vMDAwAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYGBgj4+PICAgEBAQ39/f////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYGBgr6+vv7+/v7+/r6+vcHBw

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAbGxs/Pz8////3t7egYGBOTk5Pz8/

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDAwAAAAAAAAEBAQ////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDAwn5+f7+/v////////////z8/P

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmJiZd3d3AAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQEBA////////////////////gICA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMDGBgYAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgICA////////////////////////UFBQ

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgICA////////v7+/AAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGxsb////0tLSAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDAwr6+vv7+/v7+/////v7+/QEBAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQEBAQEBAEBAQAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsbGxhISEAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWlpa9vb2////////////////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYGBg////////////MDAwAAAAAAAAEBAQ

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABGAHYARgBnAEIAVgBVAE4AQgBVAEIAZwA4

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADEAMUAiACLAMMAxQDVANYAzwDQAMQAxQCv

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaWlpp6enaWlpAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACC0xQgDz8A4ODg4ODg4ODg4ODg4ODg4ODg4O

Ansi based on Dropped File (is-M3VFU.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACE1SWwD7FBAQEBAQEBAQEBAQEBAQEBAQEBAQ

Ansi based on Dropped File (is-M3VFU.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAd3d3urq7AAAAAAAAAAAAAAAAd3d3/v7/3Nzd

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAISEh////////8/Pze3t7AAAAOTk5////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDAw7+/v////////////////////7+/vMDAw

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp6enAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUFBQ////////////////////39/fAAAAz8/P

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUVFR////////////8PDwDw8P////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUVFR2NjYAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAVVVV7u7uAAAAAAAAAAAAAAAA3d3dZmZmAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaWlp////////////////////////////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAd3d3/v7//v7//v7/urq7AAAAd3d3urq7AAAAqamq

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEBAQQEBAQEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHh4eXV1dZmZmXV1dHh4eAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDAw////////////////////////////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAz8/P////////////v7+/v7+/7+/vj4+PAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMDMzMzAwMDAAAAAAAAAAAAAAAAAAAAfn5+////DAwM

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAd3d3urq7AAAAAAAAAAAAAAAAd3d3urq7AAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDAw7+/v////////////////////////////7+/vMDAw

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAARUVFsbGx+fn5////////8/PzdXV1AAAAAAAAAwMDz8/P

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAv7+/////////////MDAwAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAdXV1////////////////////////////////////dXV1AAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAIiIi7u7uAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAMDAw39/f////////////r6+vQEBAQEBAr6+v////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAADoA5gDoAKAA3wB+APcAYADOACYAKADZAAQAmgBNABQAwwBuAMsA

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAICAgv7+/////////////////39/fAAAAAAAAAAAAAAAA39/f////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAj4+P7+/v////////////////v7+/EBAQ39/f////////7+/vn5+f

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAp6enAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAUFBQ////////////////////////////////////////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAAAAAYGBg////////7+/vMDAwAAAAAAAAAAAAMDAw7+/v////////YGBg

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAcHBw////////7+/vEBAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAADw8PAAAAAAAAAAAAAAAAEhISXV1dTk5OAAAAAAAAAAAAioqK////zMzM

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAeHh4paWlAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAjY2N////xsbGNjY2AAAAAAAAAAAAAAAAAAAAOTk5/Pz8////3t7eY2Nj

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAlpaW////////8PDwDw8P////////////lpaWAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAMDAwz8/P////////////////////////7+/vMDAwAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAAAAWlpa////zMzMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAaWlpp6enaWlpAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAAwMDQkJCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAbW29ycnJyb1tbZJtbW0AbW0AbW0AbW1tkm1tvcnJycm9bW2SbQBtbX/GbW2L

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAAAAd3d3/v7//v7//v7//v7/AAAAd3d3/v7/VVVVAAAAAAAAAAAAurq7d3d3AAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAgICA////////////////////QEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAv7+/////////////////////39/fAAAA39/f////////////////////////

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAwMDA////////n5+fAAAAAAAAnJyc////oqKiAAAAlpaW////UVFRAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAYGBg////////j4+PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAAAAYGBg////////YGBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAAB4AgwAeAH4AHQC1ACoAgAAeAH8AHgB9AB4AqgArAHMAHQB0AB4AowAtAGcAHQCb

Ansi based on Dropped File (is-M3VFU.tmp)

AAAAAAAAAAAAADQAMwAzADIAMgAwADAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAADqF5gDowaAA3zR+APeAYADOECYAKDjZAAROmgBN9hQAw4FuAMuY+QBgsGAAjzmF

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAERnWgBBZ2oAQ0FKAEJnNABGOXgAN20xAEJBdABXejEAUXoxAFdncwBaVzAAYTln

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAEV3WgBCUWYAQndWAEJoTQBITngAN20xAERBMABYRlgAVlZ3AERReABiUzUAYkFK

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAEV3YwBBd2oAQ0FNAEJ4TQBITngAN20xAERRVgBUMVIAWEZSAFVRVQBmRzAAYTln

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAEZSdgBGdGcAQm9WAFV3TgBCRlUAQmdnADhRZAA3QU4AVzRVAEZGNgBNVFEAQVU2

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAL4AugC8ALgAugC1ALcAswC1AK0ArwCrAK0AqgCsALAAswCuALEAyQDMAMEAxAC/

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAAMTFxQCIiosAw8TFANXV1gDPz9AAxMTFAK+vsACurq8AlpaXAJSUlQDn5+cA1dXV

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAAAAAd3d3urq73Nzdd3d3AAAAAAAAurq7d3d3AAAAmJiZqamqAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAd3d3urq7AAAAAAAAAAAAAAAAd3d3urq7RERE/v7/IiIiAAAAurq7d3d3AAAA7e3u

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAgICA////////n5+fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAICAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAioqK////ISEhAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAjY2N////zMzMAAAAmZmZ////YGBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAMDAw7+/v////////////////////////////7+/vMDAwAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAMDAw7+/v////////////////////7+/vMDAwAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAMDAwz8/P////////////////r6+vAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAn5+f////////////YGBgMDAw39/f////////////////////////7+/vMDAwAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAp6enAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAARERE/v7/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAd3d3urq7AAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAUFBQ////////////////////////////////////////////////UFBQAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAurq7d3d3AAAAIiIi3Nzdurq7ERERAAAAREREurq7AAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAAAYGBg////////7+/vMDAwAAAAAAAAAAAAMDAw7+/v////////YGBgAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAAAhVVVRTUgMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMD

Ansi based on Dropped File (is-M3VFU.tmp)

AAAAAAAAAAhzc3JwbwICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

AAAAAAAAd3d3urq7AAAAAAAAAAAAAAAAd3d3urq7AAAAAAAAd3d33Nzdurq7d3d3AAAAurq7mJiZ

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAd3d3urq7AAAAIiIi7e3uREREurq7d3d3AAAA/v7/VVVVAAAAAAAAAAAARERE/v7/AAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAEBAQ////////////n5+fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAICAg39/f////////////r6+vQEBAQEBAr6+v////////////39/fMDAwAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAlny9g4ODg718fF18fHx8ABR8FAB8fHx8XXx8vYODg4O9fHxdfAB8fHx4fHx8fAB8fF18

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAAAAAMDAw7+/vYGBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAAMzMzy8vM3Nzd3NzdAAAAZmZm3NzdAAAAd3d33NzdREREAAAAAAAAAAAAd3d3mJiZd3d3

Ansi based on Dropped File (is-OODVK.tmp)

AAAAAAAARERE/v7/AAAAIiIi/v7/IiIiAAAAAAAAAAAAAAAAAAAAIiIimJiZ/v7/d3d3ZmZm3Nzd

Ansi based on Dropped File (is-OODVK.tmp)

AAAAd3d3qqqqqqqqiIiIAAAAAAAAVVVVzMzMAAAAIiIi////////3d3dREREAAAA////AAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAd3d3zMzMAAAAZmZmMzMzAAAA3d3dIiIi////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAADAwMmZmZ////////////////////mZmZDAwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAIiIiqamq/v7/7e3umJiZd3d3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAAlpaW////WlpaAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAAARERE3Nzdy8vMREREZmZm3NzdAAAAZmZm3NzdAAAAMzMz7e3uERER3NzdMzMzRERE/v7/MzMz

Ansi based on Dropped File (is-OODVK.tmp)

AAAAU+3zAAAAAAB6enq9u7u7u7u7u6F/ta2vq6inp6irqq21nKG7u7uJ8fX18cwOGSYpKSk37f0l

Ansi based on Dropped File (is-1PHDE.tmp)

AAAAZmZm3NzdAAAAAAAAAAAAAAAAAAAAAAAARERE/v7//v7//v7/ERERAAAARERE/v7/AAAAIiIi

Ansi based on Dropped File (is-OODVK.tmp)

AAAAZmZmd3d3AAAAd3d33d3dAAAAAAAAAAAAAAAA////AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-OODVK.tmp)

AAABAwUGi42O /f///f///f///////////////////////////////////v7+/////////v7+/v7+/////v7++fn5 /fz/zeztKlVSAAIBCAIHoJ+oqbfDobfDpra9cH2Fa3N6iY2Smp2hsLW4wsrKvsjI1Nfb1tnd2dzg 3uHl4+bq5+ru6+7y7fD09vv69/z7+P38+f79+v/++///+///+/////////////////////////// ////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AAANyQkNyQkNyQkNyQkNyQkNyQgNyQgMyQgMyQgMyQgMyQgMyQgMyAcMyAcMyAcMyAcLyAcLyAcL

Ansi based on Dropped File (is-PTAHT.tmp)

AAApGxoaGhoaGhoaGhoaGhoaGhoaGhoaGhoaGhoaGhoaGhoaGhoaGhoaGhoaGhoaGhoaGhoaGhoa

Ansi based on Dropped File (is-M3VFU.tmp)

AAAtMjB7fHpVTU5dUlRPT09JUVBJSEpkVVlUUEVPS1cajdAHf8cUiOEUjdMvfZRTTFEOf70UhsIY

Ansi based on Dropped File (is-M3VFU.tmp)

AABqpwAAVocAAFWGAABPfAAATnoAAEx4AABLdgAASXMAAEhxAABHbwAARm0AAEBlAAAzUAAAMk8A

Ansi based on Dropped File (is-M3VFU.tmp)

AABsLxGEQR2DPxiDPxiDPxiDPxiDPxiDPxiDPxiDPxiDPxiEQR1sLxGxVy4AAGgoB302D3szDHsz

Ansi based on Dropped File (is-PTAHT.tmp)

AABycDcxMTExRxAxUCQkJFAuLg9YWFhYdAB1V1FYWFhYDy4uUDIyZlBNDi0ODg4OFwAAOg4ODg4O

Ansi based on Dropped File (is-1PHDE.tmp)

AAC2AACyAACuABqCAo9dMrBVLLFVLLFVLLFVLLFVLLFVLHk4AHk4AHk4AHw6Ank4AHk4AHk4AHk4

Ansi based on Dropped File (is-PTAHT.tmp)

AAC2AACyAACuABqCAo9dMrBVLLFVLLFVLLFVLLFVLLFVLLFVLLFVLLFVLLFVLLFVLLFVLLFVLLFV

Ansi based on Dropped File (is-PTAHT.tmp)

AACBJg+HKhGHKhGHKhGHKhGHKhGHKhGHKhGHKhGHKhGHKhGHKhGBJg+xVy4AAIEmD4krEYkrEYkr

Ansi based on Dropped File (is-PTAHT.tmp)

AACbQRWwVCywVCywVCywVCywVCywVCywVCywVCywVCywVCywVCybQRWxVy4AAJtAFbFWLbFWLbFW

Ansi based on Dropped File (is-PTAHT.tmp)

AADoiDgAtV4QAOqGLgDGZAAA234fAKxlHgDmiyQA0Ic2AOaZRADhewEAxHwkAN6QNgCblIwA+5YC

Ansi based on Dropped File (is-M3VFU.tmp)

AAFMdwADme8ACZLhABGn/QAMRWYAJaj0ADi2/wBBuv8AJGaMAD+k3QAAf8kAADNRAAASHQAIL0YA

Ansi based on Dropped File (is-M3VFU.tmp)

AAFzcnOVvcvLy8u9lXEAbwBxAHEAcQBxAHEAbwBxlb3Ly8vLvZVzcnNzcwDd3d3d3QBzc3Nyc5W9

Ansi based on Dropped File (is-1PHDE.tmp)

AAgMAGmpADxhJ2Mwf+ajXdl0JMQmGL4RGL4RGL4RGL4RGL0RF70QF70QF70QGr4UI8EhMsc1Sc9U

Ansi based on Dropped File (is-PTAHT.tmp)

AAIAOABhAI4AwAAvALEAAwAHAAoAUABGAI4AZwBLAMEAjAAyAOoAQQClAJ0AeADIAAMAAQAzANMA

Ansi based on Dropped File (is-1PHDE.tmp)

AAoJCAANDAsAHBoYAB0bGQAeHBoADw4NAB8dGwAVFBMAKSgnADEwLwAvLi0ARkVEAEFAPwBAPz4A

Ansi based on Dropped File (is-M3VFU.tmp)

AAQYIwAde7EAJZvfAAMMEQAvs/8AGVuAADOm6AAjYIMASrf2AF3E/wA8d5gAQVVgAACN3wAAhNEA

Ansi based on Dropped File (is-M3VFU.tmp)

AAs0NwgIBzcfHgAcTBxMHEwcTBxMHEwcAB4fNyQjJDcuHQAbAB0AHQAdAB0AHQAbAB0uNy0uLTc/

Ansi based on Dropped File (is-1PHDE.tmp)

AAsLCwAGBgYABQUFAAMDAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

AB4aGQAfGxoAIR0cAJqWlQDCvr0AMCUhADUpJQBrVU0AGBUUAHJmYgAxLi0A0s/OADgtKACJfnkA

Ansi based on Dropped File (is-M3VFU.tmp)

AB4bFwAbGhYAHBsXAB0cGAAeHRkAWllVABwcFgAvLysAfn59AF9fXgBYWVUAEBEPABESEAASExEA

Ansi based on Dropped File (is-M3VFU.tmp)

AB8fHgAiIiEAT09NACcnJgBjY2EAYWFfAFpaWAAzMzIAMjIxACwsKwA9PTwAPDw7ADY2NQA1NTQA

Ansi based on Dropped File (is-M3VFU.tmp)

ABAZACk/d5mFsOPDmdWkfcN9cbtsf794f794f794f794f794f794f794f794f794f794f795gsF9

Ansi based on Dropped File (is-PTAHT.tmp)

ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

ABCFvgAQhr4AEIW9ABGGwAARhb0AE4a+ABaIvwAXiL8AF4G2ABd/swAbiLwAGoC0AB2MwQAfjcEA

Ansi based on Dropped File (is-M3VFU.tmp)

abdar ab`dar

Ansi based on Dropped File (is-8C1UQ.tmp)

abdare ab`dare

Ansi based on Dropped File (is-8C1UQ.tmp)

abdere ab`dere

Ansi based on Dropped File (is-8C1UQ.tmp)

abdomen oZabDOmen

Ansi based on Dropped File (is-8C1UQ.tmp)

ABESEAASExEAExQSABQVEwAbHBoAU1RSAE9QTgBJSkgAVVZUAICBfwDIyccA19nWANjZ2QDIyMgA

Ansi based on Dropped File (is-M3VFU.tmp)

abhishek obhiShek

Ansi based on Dropped File (is-8C1UQ.tmp)

ABIdAB+i7wBYj68ALjc9AMjIyADHx8cAvr6+ALW1tQCjo6MAnp6eAJmZmQBVVVUAU1NTAAQEBAQE

Ansi based on Dropped File (is-M3VFU.tmp)

ABJznAATVXEAFEheABQ5SQA8lbsAQ5GyADZuhgBSf5IAHSsxAGWPoQBBWmUAS2ZyAFx3gwBFVFsA

Ansi based on Dropped File (is-M3VFU.tmp)

ABkdmQANDjMADxAsACcpYgBISV8AGRtzABISHwALCxMAIyM6AC8vRAAPDxUACwsPAAwMEAANDREA

Ansi based on Dropped File (is-M3VFU.tmp)

ABmk3QASdZ4AGqHZABqf1gASbpQAEmyRAByj2gAdpNwAHJ3SABJkhgAfpNsAHZrOAB6bzwATYYEA

Ansi based on Dropped File (is-M3VFU.tmp)

ABMpABB05wAOY8QAEWnlABBe5gAAS+wARWixACpBfgAwOE8ANDxTAAA22wAHPN0ACz/gAAQ67wAA

Ansi based on Dropped File (is-M3VFU.tmp)

abong ebong

Ansi based on Dropped File (is-8C1UQ.tmp)

Abort/Retry/Ignore

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

ABQVEwAbHBoAHB0bAFNUUgBSU1EAT1BOAElKSABjZGIAVVZUAPr6+gDGxsYAt7e3ALW1tQCmpqYA

Ansi based on Dropped File (is-M3VFU.tmp)

ABRIXgAUR10AKpG9ABRAUwAsgKQAFDdGABUzQAAVLzoAXMv6ABUuOQB71fsAf9b7AILX+wBjoLoA

Ansi based on Dropped File (is-M3VFU.tmp)

ABsaGAAcGxkAHRwaAB4dGwA+PDgAQkA8ACQjIQBKSEQAQUA+AGJhXwAGBgUACAgHAAkJCAALCwoA

Ansi based on Dropped File (is-M3VFU.tmp)

ABsZGAAfHRwAIB4dACIgHwAtKyoAOzk4AEA+PQBVU1IAX11cAF5cWwBZV1YAVlRTAGZkYwCWlJMA

Ansi based on Dropped File (is-M3VFU.tmp)

ABUhJwB2udkAfLzbAIC+3ACCv90AY4+kAIvE3wCOxeAAc5uuAJjK4wBlgpAAgKGxAHyaqQCsz+EA

Ansi based on Dropped File (is-M3VFU.tmp)

ABwAmABGACAAKACIAIgAgQAxAAEAFAC0AEUARgAxAIgAmgBDADsAUQAbANAAgwBAACkAkAAAAEMA

Ansi based on Dropped File (is-1PHDE.tmp)

abx4VuqxcOqxcOqxcOqwcOqxcOixcJK9b2XDbqXhu7rqzMXgvsXatL3XsKbXrF++aYO3aeOxb+qx

Ansi based on Dropped File (is-PTAHT.tmp)

AC+79QAut/AAKJ/QABhdegAzvvgAKZfFADW/+AA2v/gALJzLADfA+AA4wPgAQMH3AEbE+QBGwvUA

Ansi based on Dropped File (is-M3VFU.tmp)

AC8AlgAvAJAAMACPADEAhAA0AH8ANQB4ADYAmQBcAJwAZACVAGcAywCOAKEAcgCRAGgAwgCOAJ0A

Ansi based on Dropped File (is-M3VFU.tmp)

AC8vLwAsLCwAKioqACgoKAAlJSUAJCQkACMjIwAeHh4ADw8PAAsLCwAKCgoABgYGAAMDAwACAgIA

Ansi based on Dropped File (is-M3VFU.tmp)

academy oZakaDemi

Ansi based on Dropped File (is-8C1UQ.tmp)

accenture oZak`sencar

Ansi based on Dropped File (is-8C1UQ.tmp)

access oZaxes

Ansi based on Dropped File (is-8C1UQ.tmp)

ACckJwBQJCQkMA8kOCQkJDgjIw0/Pz8ARD8/P0QAPz8/DSMjODIyZjg1DCEMDAwADAwMDAwADAwM

Ansi based on Dropped File (is-1PHDE.tmp)

AccListViewV6

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

account oZakaunT

Ansi based on Dropped File (is-8C1UQ.tmp)

acer eser

Ansi based on Dropped File (is-8C1UQ.tmp)

aCgG0H050H05AAAA35VY35ZXaCgGj0sdj0sdj0sdj0sdj0sdj0sdj0sdvJN3////////////////

Ansi based on Dropped File (is-PTAHT.tmp)

aCgG0H050H05AAAA35VY35ZXaCgGj0sdj0sdn5bX0dT9q63/oKH/nZ3/mpr/lpb/k5P/kJD/jIz/

Ansi based on Dropped File (is-PTAHT.tmp)

aCgGxHE3xHE3yXc2yXc2aCgGfTgRfTgRfTgR9dS27NzQ3sOv3b+r272n2bqj2Lef1rSc1bGX066U

Ansi based on Dropped File (is-PTAHT.tmp)

aCgGxHE3xHE3yXc2yXc2aCgGfTgRfTgRfTgRanWZebP/pcz/jb3/ebL/g7b/mcP/WJz/QmiyfTgR

Ansi based on Dropped File (is-PTAHT.tmp)

aCgGxHE3xHE3yXc2yXc2aCgGfTgRfTgRfTgRfTgRpGpE5My56tbFx5lxv5Bmv5Bm9/Hs9vDqt4lf

Ansi based on Dropped File (is-PTAHT.tmp)

aCgGxHE3xHE3yXc2yXc2aCgGfTgRfTgRfTgRq6W09vb2+/v7+Pj49/f39fX18/Pz8fHx+vr63Nzc

Ansi based on Dropped File (is-PTAHT.tmp)

aCgGxHE3xHE3yXc2yXc2aCgGfTgRfTgRfTgRZZNMktevoN60hMZwqNCAxaVc0KdX4KpW2qZRx5hK

Ansi based on Dropped File (is-PTAHT.tmp)

ACgjIgAiGhgAGxcWAKpJLwCUQSsAi048AHViXAC7YD4AgkQtAExEQQAeGxoAu147AL6ilgA2LywA

Ansi based on Dropped File (is-M3VFU.tmp)

ACgoKAAlJSUAJCQkACMjIwAhISEAHR0dABoaGgAZGRkAFxcXABQUFAAPDw8ACgoKAAgICAAHBwcA

Ansi based on Dropped File (is-M3VFU.tmp)

acharya acarrz

Ansi based on Dropped File (is-8C1UQ.tmp)

acipacipaci5uhi5uhi5uhi5uh ipqgiZmfiJieiJiei5uhjJyijp6kjZ2jjJyii5uhjZ2jjp6ki5Wfi5Wfi5aejJefjZmfjZmdjZqc jpudi5ebi5ebjJicjZmdjpqej5ufkJygkZ2hj6Cjj6Cjj6Cjjp+ijp+ijZ6hjZ6hjZ6hlKCklKCk k5+jkp6ikZ2hkJygj5ufj5ufmKCnmKCnmKCnl5+mlZ2klJyjlZ2kl5+mmKCnl5+ml5+mlp

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

ACpZbAAeIyUAAKf3ABSi6AABBgkAAJL5AAARHAAGO2EAEY3lAC5cgwBEU2AABQYHAD5AQgAAc+oA

Ansi based on Dropped File (is-M3VFU.tmp)

action oZakSan

Ansi based on Dropped File (is-8C1UQ.tmp)

active oZakTiv

Ansi based on Dropped File (is-8C1UQ.tmp)

ACwqKQArKSgANjQzADUzMgA0MjEAOzk4AD89PAA8OjkAysTBAENBQABCQD8AVVNSAE9NTABfXVwA

Ansi based on Dropped File (is-M3VFU.tmp)

ACwsLAArKysAKSkpACUlJQAkJCQAIiIiACEhIQAWFhYAFRUVABEREQAMDAwACQkJAAYGBgAFBQUA

Ansi based on Dropped File (is-1PHDE.tmp)

AD+k3QALGiIAKlt3AACU6gAAf8kAADlbAAA3VwAAMU4AAB0uAAATHwAACA0AARYjAAELEQAFIjMA

Ansi based on Dropped File (is-M3VFU.tmp)

AD09PAA2NjUAhISCAEhIRwBGRkUAQkJBAEFBQABAQD8Afn59AMnJyADBwcAAt7e2ALW1tACurq0A

Ansi based on Dropped File (is-M3VFU.tmp)

AD89PAA8OjkAQ0FAAEJAPwBVU1IAT01MAF9dXABeXFsAWVdWAFhWVQBXVVQAVlRTAJaUkwCQjo0A

Ansi based on Dropped File (is-M3VFU.tmp)

AD9APgBTVFIAUlNRAE9QTgBOT00ASUpIAGRlYwBjZGIAXV5cAFdYVgBVVlQAfX58AHt8egB3eHYA

Ansi based on Dropped File (is-M3VFU.tmp)

ADA4wABWXtIAbnbpAH2E9ABdYZgAjZHLAIiJlwBDScQAJymjAEFCgAB2dn8AHx8hAKKiqABaWl0A

Ansi based on Dropped File (is-1PHDE.tmp)

adapter oZaDapTar

Ansi based on Dropped File (is-8C1UQ.tmp)

aDavZDO2YTK5YDK5YDK5YDK5YDK5YDK5YDK5YDKeRxy7YTK7YTK7YTK7YTK7YTLYp4HYp4HYp4HY

Ansi based on Dropped File (is-PTAHT.tmp)

ADBLAAAuSAAALUYAABglAAAUHwAAEhwAABEaAAAQGQAADxcAAqP/AASj/wAFebsAC6b/AAub7gAL

Ansi based on Dropped File (is-M3VFU.tmp)

ADc3NwA1NTUANDQ0ADMzMwAwMDAAKysrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

ADCA0Q7PHy+v//9/z9+v////38///+//79/fv6 /fv6///+///+///+/////////////////////////////////f7//f7//f7//P3//P3//f7//f7/ /f7///3/9vX5//7///7//f7/6eruAgUJAQQIAAADAAcKAAADAAADAAIFAAADAAADAAADAAADAAQH AAADAAMGAAADAAYJAAEEAAADAAMANEA68/33+v/86vDr/f/8+Pn1///8//

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

aDcxaKEBq2wruqErASvAASsxuropM7q6urqjo6Ojo6Ojo729vai+CBL6JKu3t7e3t7e3t7e3rOLx

Ansi based on Dropped File (is-M3VFU.tmp)

ADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGX

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

ADEPDw8PtolsZqgzMzMzMzOurA8PDw8PMQA7KQ4OKTsAMQ8PDw8PhmpiozMzMzMzunuWDw8PDw8x

Ansi based on Dropped File (is-M3VFU.tmp)

ADEyMAAvMC4ANDUzADw9OwA4OTcAP0A+AFNUUgBSU1EAT1BOAE5PTQBJSkgAZGVjAGNkYgBdXlwA

Ansi based on Dropped File (is-M3VFU.tmp)

adhikary odhikarI

Ansi based on Dropped File (is-8C1UQ.tmp)

aditya adity

Ansi based on Dropped File (is-8C1UQ.tmp)

adjust oZaDjasT

Ansi based on Dropped File (is-8C1UQ.tmp)

AdjustTokenPrivileges

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.00412000.00000004.mdmp)

Administrative Tools

Unicode based on Runtime Data (AvroKeyboard5.6.0Silent-Lava.exe )

ADMzMgA+Pj0APT08ADY2NQBISEcAQUFAAEBAPwB+fn0AycnIAMHBwAC3t7YAtbW0AK6urQClpaQA

Ansi based on Dropped File (is-M3VFU.tmp)

ADMzMwArKysAFxcXAAkJCQAICAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

adobe oZaDOb

Ansi based on Dropped File (is-8C1UQ.tmp)

adrita adrrita

Ansi based on Dropped File (is-8C1UQ.tmp)

adsense oZaDsens

Ansi based on Dropped File (is-8C1UQ.tmp)

ADspDggSLQAxDw8PDw+qgGJ8pTMzMzOXerkPDw8PDzEALRIODioYADE0NDQ0NDSLa199szMzmmSZ

Ansi based on Dropped File (is-M3VFU.tmp)

ADUzMgA0MjEAOzk4AD89PAA8OjkAQ0FAAEJAPwBVU1IAT01MAF9dXABZV1YAWFZVAFdVVABWVFMA

Ansi based on Dropped File (is-M3VFU.tmp)

advapi32.dll

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.00412000.00000004.mdmp)

ADVAPI32.dll

Ansi based on Dropped File (_setup64.tmp.404114402)

advertisement oZaDvarrTaijmenT

Ansi based on Dropped File (is-8C1UQ.tmp)

adwords oZaD`OyarrDs

Ansi based on Dropped File (is-8C1UQ.tmp)

ADxItwBSY+UAFiGWAENOvQBJUaoAdX3WABYcbgAhKJMAV13AAFJWjQBtcacANjZ1AJCQmwDGxsYA

Ansi based on Dropped File (is-M3VFU.tmp)

ADzggQCH6R0AU/NgACWFCgB4yiwAE+TEACBLAgA4kmEAjt/AAC/osQADhwcACplQAEZHjgBnnksA

Ansi based on Dropped File (is-1PHDE.tmp)

AE1NTQBMTEwAS0tLAElJSQBGRkYARUVFAEFBQQA/Pz8ANzc3ADU1NQAzMzMAMDAwACsrKwAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

AEdDTgB4aWsARkRJADBwQQBuc08ARUFOADBWQwB5NFUAWDJLADRMSgBZeGEATWI0AHVORABuQlcA

Ansi based on Dropped File (is-1PHDE.tmp)

AEdGQwCpp6EA7ezpAN/e2wA9MxEAWkwdAFlLHQB6c1oAd3FbAHNuXACMiHoAgH1yAOro4QBsaFcA

Ansi based on Dropped File (is-M3VFU.tmp)

aeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeem

Ansi based on Dropped File (is-PTAHT.tmp)

aeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemaeemafrm

Ansi based on Dropped File (is-PTAHT.tmp)

AEFBQgBAQEEAenp7AHh4eQB0dHUAc3N0AHJycwBxcXIAcHBxAG9vcABubm8AbW1uAGxsbQBra2wA

Ansi based on Dropped File (is-1PHDE.tmp)

AEFBQgBAQEEAPz9AAHp6ewB2dncAdXV2AHR0dQBzc3QAcnJzAHFxcgBwcHEAb29wAG5ubwBtbW4A

Ansi based on Dropped File (is-1PHDE.tmp)

aeimaeimaeimaeimaeimaeimaeimaeimaeimaeimaeimaeimaeimaeemaeemaeemaeemaeemaeem

Ansi based on Dropped File (is-PTAHT.tmp)

aeimaeimaeimaeimaeimaeimaeimaeimaeimaeimaeimaeimaeimaeimaeimaeimaeimaeimaeim

Ansi based on Dropped File (is-PTAHT.tmp)

AEjUaAArtVMAQ896APPz8wDk5OQAqKioAIiIiABFRUUAQkJCAD09PQA6OjoAMTExAC8vLwAsLCwA

Ansi based on Dropped File (is-M3VFU.tmp)

AElJSQBHR0cARkZGAERERABDQ0MAQEBAAD4+PgA9PT0AOTk5ADc3NwA1NTUAMjIyACsrKwAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

AEpKSgBHR0cAPDw8ADs7OwA5OTkAODg4ADQ0NAAyMjIALy8vAC4uLgAtLS0AKysrACoqKgAeHh4A

Ansi based on Dropped File (is-1PHDE.tmp)

aeroplane erOplen

Ansi based on Dropped File (is-8C1UQ.tmp)

AEwAcABtAEQAUgBBAFIATgBTAHAAQQBaAEUAcABjAEcAUgBXAFYAMABkAEsARQBRAEUAUABjAEMA

Ansi based on Dropped File (is-1PHDE.tmp)

AExKNwBtWE0AR2phAE9MbAB3MGsATkRUAGNDNABoNEwAMXhUAHdQQwB3VVkAR21aADBLRwBtMDYA

Ansi based on Dropped File (is-1PHDE.tmp)

AEYAjgBnAEsAwQCMADIA6gBBAKUAnQB4AMgAAwABADMA0wDXAEMADgAMABQAUwAGABsAbQDfAMMA

Ansi based on Dropped File (is-1PHDE.tmp)

AEYAZQBEADAAKwBEAFEARQBCAGcATABpAHcAQwBCAHgAegBBAHcATQBFAFUAYQA1AHcAUQBEAEsA

Ansi based on Dropped File (is-1PHDE.tmp)

AEYAZwBCAFYAVQBOAEIAVQBCAGcAOABkADcATgBXAFUARgA2AE0AUQBBADYARwBOAHgAawBGAEkA

Ansi based on Dropped File (is-1PHDE.tmp)

af/<3T1*n

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

AF6OGjIbitKaoOC5ccN5VbJTWbRYWbRYWbRYWbRYWbRYWbRYWbRYWbRYWbRYXrdfc8R7ldipoeC6

Ansi based on Dropped File (is-PTAHT.tmp)

AFBQUABPT08ATU1NAExMTABLS0sASkpKAEhISABGRkYARUVFAERERABDQ0MAQEBAAD8/PwA+Pj4A

Ansi based on Dropped File (is-1PHDE.tmp)

AFhZVQAbHBkAnqCaABITEQATFBIAFBUTABkaGAAaGxkAHR4cABwdGwAvMC4ANDUzADg5NwBTVFIA

Ansi based on Dropped File (is-M3VFU.tmp)

AFileClass

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.0041B000.00000002.mdmp)

AFJj5QAqMXMAQEqlAG963QBTW6AAW2OoAIOLzgAUIJYAFB+PABEYbgAaIoMAGSF4ABkfXAA8R7cA

Ansi based on Dropped File (is-M3VFU.tmp)

AFMABgAbAG0A3wDDAI4AVQCGABcANAACAF0AMQAeAKwAgQAQAKgADgDgAIYAaABRABwAmABGACAA

Ansi based on Dropped File (is-1PHDE.tmp)

AFpaWAAzMzIAPT08ADY2NQBISEcAQkJBAEFBQABAQD8Afn59AP///gDJycgAwcHAALe3tgC1tbQA

Ansi based on Dropped File (is-M3VFU.tmp)

AFpZVQAcHBYASEhGAFlZVwB0dHIAk5ORABscGABYWVUAEBEPABESEAASExEAExQSABQVEwAZGhgA

Ansi based on Dropped File (is-M3VFU.tmp)

africa afrika

Ansi based on Dropped File (is-8C1UQ.tmp)

AFSOLQBpglkA0/PAANDuvQAnchEAi8t2AF2zTgAnlCAAcL1tACTNNACr5LYARNBpACu2UwDz8/MA

Ansi based on Dropped File (is-M3VFU.tmp)

AFUAVgDtAO4A1QDWANMA1ADJAMoAtgC3ALMAtACuAK8ArQCuAKwArQCqAKsAqACpAKQApQCgAKEA

Ansi based on Dropped File (is-1PHDE.tmp)

AFVYVgAXGxoAYGFhABgZGwBmaW8AWFlcAH6BiwBrbHAAAh3QAAIavwADHMIABB3GAAQbvwAHH8QA

Ansi based on Dropped File (is-M3VFU.tmp)

AFZWVwBVVVYA+Pj5APPz9ADv7/AA7u7vAOnp6gDj4+QA3d3eANPT1ADNzc4AysrLAMXFxgDExMUA

Ansi based on Dropped File (is-1PHDE.tmp)

AFZWVwBVVVYA9vb3AO7u7wDt7e4A3d3eANPT1AC9vb4ArKytAKqqqwCMjI0AhYWGAIGBggD8/PwA

Ansi based on Dropped File (is-1PHDE.tmp)

Ag5yclUeRw4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4ODg4OcnI=

Ansi based on Dropped File (is-1PHDE.tmp)

Ag8YBE62trafxO7f397k77W17+TlDLafn5+2TgQYDwIC0PkEN7e3t7fg3t/f6vGvr6+vLerqBqSw

Ansi based on Dropped File (is-M3VFU.tmp)

AG9vcABubm8AbW1uAGxsbQBqamsAaWlqAGhoaQBnZ2gAZmZnAGRkZQBjY2QAYmJjAGFhYgBfX2AA

Ansi based on Dropped File (is-1PHDE.tmp)

AGBgYABfX18AXV1dAFpaWgBYWFgATU1NAEhISABHR0cARUVFAEJCQgA9PT0AOzs7ADk5OQAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

AGdMRABTeGMAVDZCAGVjSwBpNWMARUNwACtBQwBvZ3cAQ2JvAGdSSQBTSkEAVUpSAFNhRABEUXcA

Ansi based on Dropped File (is-1PHDE.tmp)

AGdnaABWVlcAVVVWAO7u7wDd3d4AxMTFAMPDxAC/v8AArKytAKqqqwCdnZ4AjIyNAIWFhgCBgYIA

Ansi based on Dropped File (is-1PHDE.tmp)

AGE5NQB3b1EARHdLAEVQawBoY1MARDZoAHEvNABnZ1MASDBTAERBRwBxUFkASUVPAElEbABwSWoA

Ansi based on Dropped File (is-1PHDE.tmp)

AGEAcQBJAEEAdwBMAEQAcgBJAFIAWgBMAHAAbQBEAFIAQQBSAE4AUwBwAEEAWgBFAHAAYwBHAFIA

Ansi based on Dropped File (is-1PHDE.tmp)

AGFOWQBoNFkASHp0ADNBRABBdzIAT0pwAHpLSAB1alUATXh6ADJMRABnWVkARTNRADRLWgBwN2YA

Ansi based on Dropped File (is-1PHDE.tmp)

AGhoaABmZmYAZWVlAGRkZABhYWEAXl5eAF1dXQBbW1sAWlpaAFlZWQBYWFgAV1dXAFZWVgBVVVUA

Ansi based on Dropped File (is-1PHDE.tmp)

aGhoaGhoaGhoaGhoaGhoaGgDAGNdAAA9cABmOzs7Ozs7O2hoaGhoaGhoOzs7Ozs7O2YAcD0ODl5w

Ansi based on Dropped File (is-M3VFU.tmp)

AghpABojngAbIpsAFx2FABYbcgAZHnYAJCukACQqngAsM6UANj6oADg9oQBBSbYAQEawAE1UsQAz

Ansi based on Dropped File (is-1PHDE.tmp)

AgIACB4rADvh4eHh4eHh4eHh4e3ArJF9toVnee7h6rtkf+rh4eHh4eHh4eHh2gHG1OHYxOHYxOHe

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgIC3QICAgICAgICAgICAgL+AgICAgICAgICCAL+AggICAL+AggCAgICAgICAgL+AgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgIC6wICAgICAgICAgICAgL7AgICAgICAgICCAL7AggICAL7AggCAgICAgICAgL7AgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgIC8jcCAgLw8vACAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgICAgIC8rJxfjMC8n5vgvICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICjhw/ADYYGBgYGBgY

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAhYuFgA2AgICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIIBAQEBAQEBAQEBAQEBAQEBAQE

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgICAgICAgICAgICAgICAgICAgICAgICAgICF6AJCDHoBfL49i0tYvX1LURzFPWTLUQJCRST

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgICAgICAgICAgICAgICAoscPwA2GBgYGBgYGAICAgICAgIC8rWwbn0zAvKYZrPyAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgICAgICAgICAgIILj8ANhgYGBgYGBgCAgICAgICAgICM4G3NwLwtYCI8AICAgICAgICAgIC

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgICAgICAgICAhxRUQJJUQICAkkBWAIC49UCAgJJUQICytcCAgICAgICAgICAgICAgICAggv

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgICAgICSVECSVECAgICAgICAgICAgICSVECAsrXAgICAgICAgICAgICAgICAgIBHDIANhgY

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgICAt0CAgICCA==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgICAusCAgICCA==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAgICDnJyHnAtAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-1PHDE.tmp)

AgICArS1tre3SVEEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAsnKy8zMSVEEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAtbX2gTbSVEJCfUJCQkJCQkJCQkJ9AkJCQkJCQkJCQkJCQn1CQkCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAtHT1gTXSVEHB/MHBwcHBwcHBwcH8gcHBwcHBwcHBwcHBwfzBwcCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAtjZ3ATdSVEHB/YHBwcHBwcHBwcH0AcHBwcHBwcHBwcHBwf2BwcCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAtjZ3ATdSVEICPYICAgICAgICAgI9QgICAgICAgICAgICAj2CAgCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAtna3QTeSVEICPYICAgICAgICAgIuwgICAgICAgICAgICAj2CAgCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAtwCAggbGyzb9/b29vb29vb29vb29vf39vb29vYVFRgY9vba9vb29vb29/b32vf29tr29vf2

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAu7w8fLySVEDA/4DAwMDAwMDAwMD4wMDAwMDAwMDAwMDAwP+AwMCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAu8M8PHxSVEDA/4DAwMDAwMDAwMD7QMDAwMDAwMDAwMDAwP+AwMCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAuPk5ebmSVEEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAvLz9PT0SVEDA/4DAwMDAwMDAwMD0QMDAwMDAwMDAwMDAwP+AwMCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAvP09fX1SVEDA/4DAwMDAwMDAwMD4wMDAwMDAwMDAwMDAwP+AwMCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAvP09fX1SVEDA/4DAwMDAwMDAwMD8QMDAwMDAwMDAwMDAwP+AwMCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AgICAvT19vb2SVEDA/4DAwMDAwMDAwMD8wMDAwMDAwMDAwMDAwP+AwMCAg==

Ansi based on Dropped File (is-M3VFU.tmp)

AGkAdwBDAEIAeAB6AEEAdwBNAEUAVQBhADUAdwBRAEQASwBFAGsAaABTAEQAaABxADQAZwBTAEgA

Ansi based on Dropped File (is-1PHDE.tmp)

agla ag`la

Ansi based on Dropped File (is-8C1UQ.tmp)

aglanO ag`lanO

Ansi based on Dropped File (is-8C1UQ.tmp)

aglaO ag`laO

Ansi based on Dropped File (is-8C1UQ.tmp)

agle ag`le

Ansi based on Dropped File (is-8C1UQ.tmp)

agliye ag`liye

Ansi based on Dropped File (is-8C1UQ.tmp)

AGlmZAAKCQgAHBoYAA4NDAAeHBoADw4NADEwLwA8OzoARURDAEpJSABiYWAAXl1cAFlYVwBXVlUA

Ansi based on Dropped File (is-M3VFU.tmp)

AGlpagBnZ2gAZGRlAGJiYwBaWlsAWFhZAFdXWABWVlcAVVVWAODg4QDe3t8Ay8vMALW1tgCsrK0A

Ansi based on Dropped File (is-1PHDE.tmp)

AGNjYQBhYV8AWlpYADMzMgA9PTwANjY1AEhIRwBCQkEAQUFAAEBAPwB+fn0AycnIAMHBwAC3t7YA

Ansi based on Dropped File (is-M3VFU.tmp)

AGpqawBpaWoAZ2doAFhYWQBXV1gAVlZXAFVVVgCsrK0AqqqrAIWFhgCBgYIAx8fHAMLCwgC0tLQA

Ansi based on Dropped File (is-1PHDE.tmp)

AGQANwBOAFcAVQBGADYATQBRAEEANgBHAE4AeABrAEYASQAwAEEAbgBPAEUATgAwAEMAeQBVAFgA

Ansi based on Dropped File (is-1PHDE.tmp)

AGRkZABiYmIAYWFhAGBgYABfX18AXl5eAFtbWwBaWloAWVlZAFhYWABXV1cAVlZWAFVVVQBUVFQA

Ansi based on Dropped File (is-1PHDE.tmp)

AGRlYwBjZGIAXV5cAFxdWwBXWFYAVVZUAH1+fAB7fHoAeHl3AHd4dgB2d3UApaakAIKDgQCAgX8A

Ansi based on Dropped File (is-M3VFU.tmp)

AGRNRwBnQmMAV0xRAFFhSQBDeGMAQlJpADBLQgBnMFUAQ1JSAFVRSwBSNVkAUEtBADZhSQBnWnMA

Ansi based on Dropped File (is-1PHDE.tmp)

AGtpZQAbGhYAHBsXAB0cGAAeHRkAWllVABwcFgB6enYAGxwYAFhZVQAQEQ8AERIQABITEQATFBIA

Ansi based on Dropped File (is-M3VFU.tmp)

AGtrbABqamsAaWlqAGhoaQBnZ2gAZmZnAGRkZQBjY2QAYmJjAGFhYgBcXF0AVVVWAKqqqwCampsA

Ansi based on Dropped File (is-1PHDE.tmp)

agundam agun`dam

Ansi based on Dropped File (is-8C1UQ.tmp)

agundame agun`dame

Ansi based on Dropped File (is-8C1UQ.tmp)

agundor agun`dor

Ansi based on Dropped File (is-8C1UQ.tmp)

agundore agun`dore

Ansi based on Dropped File (is-8C1UQ.tmp)

AGuSfgA0rHkANGJQAFrOpwAwu40AJkQ7AFJUVAABFhwAK8H4AAEFBwAGO2EAO4znAAATKQBvf6UA

Ansi based on Dropped File (is-M3VFU.tmp)

aGVlZWhlZWVlMM3NzSiBaWpqam1tbW9xcXNzdHR0dnZ5enx8fH9+fn5+fo4ejhwIBZCFhYWFhISE

Ansi based on Dropped File (is-M3VFU.tmp)

AGVSHgBhTx0AWUkdAJl+MwCNdTMAhG8zAHhnNwBxYjgAopVyAJePeACsppUArqiYALSwpQDEwbkA

Ansi based on Dropped File (is-M3VFU.tmp)

aGWVYF2MNDQ0NDQ0NA4ADBQODhclADfMzMzMzMzMzMydWldZjszMzMzMzMzMNwAlFw4OOFEA0z09

Ansi based on Dropped File (is-M3VFU.tmp)

AGY7Ozs7Ozs7aGhoaGhoaGg7Ozs7Ozs7ZgBwXg4OXnAAZjs7Ozs7OztoaGhoaGhoaDs7Ozs7Oztm

Ansi based on Dropped File (is-M3VFU.tmp)

AGyrAHO3AEx5AAAAAAAAADVUAHO3AHW4ABAZksarFx8aAG6mAHGoERsTcsN6oN+4csN6Uq9NVLFR

Ansi based on Dropped File (is-PTAHT.tmp)

AGZmZwBlZWYAZGRlAGJiYwBcXF0AV1dYAFVVVgDQ0NEAq6usAJCQkQCKiosAhYWGAIGBggD5+fkA

Ansi based on Dropped File (is-1PHDE.tmp)

AH+IzQCFho8AAAlpAAQLZAAIEW8AERp6ABMcegAxOqwARE27AEJIlQBTWrYAcHfFAHN6xgAAB2UA

Ansi based on Dropped File (is-1PHDE.tmp)

AH5zWQCilnoAraeZALKtoQCmopgAurewAMjGwQByXB0AfWUiAKyMMABrVh4AZVIeAGFPHQBZSR0A

Ansi based on Dropped File (is-M3VFU.tmp)

Ah8NBFvS0tLJ0LcqJSUpKSkpKSUpP8jIyNDQWwQNHwIC7PgEUdPT09PM0cvR2dnR0crK0dHRy8vM

Ansi based on Dropped File (is-M3VFU.tmp)

AH9mHQB6YhwAeWIcAHhhHAB1XhsAd2AcAHZfHABzXRsAcVsbAHNdHABuWhsAcVwcAGBOGABqVhsA

Ansi based on Dropped File (is-M3VFU.tmp)

AHAkaQAAAAAAQRIpSSQkJEkoKBFtAAAAAHdqcgAAAAAAESgoSTIyZklGECcYAAAAAHwXdQAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

AHBeDgg+YgBmOzs7WTgyNC0qJyQsMCs0My8xNTs7O2YAYj4ODl9LAGZpaWkPOS4uLi4uLi4uLlou

Ansi based on Dropped File (is-M3VFU.tmp)

AHd3dgBjY2IAERIQABITEQATFBIAFBUTABscGgAcHRsAU1RSAFJTUQBPUE4ASUpIAFVWVACAgX8A

Ansi based on Dropped File (is-M3VFU.tmp)

AHdHRQBwM1AAT0MvADdMbAB4Y3EASFdwAHhPawBZazYAMTdBAG1IbABwb00ATWkvAGlLQQBZVGUA

Ansi based on Dropped File (is-1PHDE.tmp)

AHdiUQCSeWUAZ1ZIAJOEeABeTj8AWkk5AKSdlgA7OTcAdnRyAE9OTQDRz80AgYB/ANjX1gDNzMsA

Ansi based on Dropped File (is-M3VFU.tmp)

AHgAyAADAAEAMwDTANcAQwAOAAwAFABTAAYAGwBtAN8AwwCOAFUAhgAXADQAAgBdADEAHgCsAIEA

Ansi based on Dropped File (is-1PHDE.tmp)

AhgMBH3W1tbW0E4wRjpLSENBNzg4MC8n0NDQfQQMGAIC5voEbNfX19fRWVlZN0pQTDpLSURaWlrR

Ansi based on Dropped File (is-M3VFU.tmp)

AHhhHQB2YB0ApogsAJZ9LwCdgjIAkHgxAIdyMwCTiWkAmpF1AJePdwCfl34Ap6CKALSvoADMy8gA

Ansi based on Dropped File (is-M3VFU.tmp)

AHhnNgCZilwAnI5kAJWKZwDLvI4AoZVyAJGHaADCtY4AnZN1AJqRdQC6r44Aopl8AKGYfACgl3wA

Ansi based on Dropped File (is-M3VFU.tmp)

AHi7AHe5AF6THisiU4dbACY9AHS3AHa5AAgMDBgLAG2mAG+nExwVZLtmnN60bsF0SqtCTa1HTa1H

Ansi based on Dropped File (is-PTAHT.tmp)

AHJBQwBBWmcAVXFCAG1RSgB5aGMARENCACtQQQBoRVUAQ3hSAHFaSwBpQkEAUkxKACthSgBnUnMA

Ansi based on Dropped File (is-1PHDE.tmp)

AHJycwBxcXIAcHBxAG5ubwBtbW4AamprAGlpagBoaGkAZ2doAGZmZwBlZWYAZGRlAGJiYwBhYWIA

Ansi based on Dropped File (is-1PHDE.tmp)

AHK2AGyrAG2sAHa5ABAZS6VWb8yFZ8d6KqIjHJYRHJYRHJYRHJYRJZsdRbBLdM2NgtWhHVEeADZP

Ansi based on Dropped File (is-PTAHT.tmp)

AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4

Ansi based on Dropped File (is-PTAHT.tmp)

AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHw6

Ansi based on Dropped File (is-PTAHT.tmp)

AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4ALFVLLFVLLFVLLFV

Ansi based on Dropped File (is-PTAHT.tmp)

AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4ALFVLLFVLLFVLLFVLLFVLHk4AHk4

Ansi based on Dropped File (is-PTAHT.tmp)

AHk4AHk4AHk4AHk4AHk4AHk4AHk4ALFVLLFVLLFVLLFVLLFVLHk4AHk4AHk4AHw6Ank4AHk4AHk4

Ansi based on Dropped File (is-PTAHT.tmp)

AHk4AHk4AHk4AHk4ALFVLLFVLLFVLLFVLLFVLHk4AHk4AHk4AHw6Ank4AHk4AHk4AHk4AHk4AHk4

Ansi based on Dropped File (is-PTAHT.tmp)

AHk4AHk4ALFVLLFVLAAAoEYUnlIfmEYmlUUilUUilUUilUUilUUilUUilkYjl0YknlIfoEYUsVUs

Ansi based on Dropped File (is-PTAHT.tmp)

AHk4AHw6Ank4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4

Ansi based on Dropped File (is-PTAHT.tmp)

AHk4ALFVLLFVLLFVLLFVLLFVLLFVLMyLWsyLWsyLWsyLWsyLWsyLWsyLWsyLWsyLWsyLWsyLWsyL

Ansi based on Dropped File (is-PTAHT.tmp)

AHlhHQBxWx0AbVgdAGlVHgBhTx0AXk0dAIlyMgB3ZjcAcWI4AJWGXQCejmUAkoReAJWJZwC8sI4A

Ansi based on Dropped File (is-M3VFU.tmp)

ahmedabad ah`medabad

Ansi based on Dropped File (is-8C1UQ.tmp)

AHO3ADdWOFY/bcF0DhkPAG6mAHGoDxoRe8mHoeC6csR7VLFRVbJTVbJTVbJTVbJTVbJTVbJTVbJT

Ansi based on Dropped File (is-PTAHT.tmp)

AhojADkJCQkJvZB2dHFvjQkJnoOFtAMJCQkJOQAjGgICOkwA0MrKysp4cnN1j6HKysrKoqCfr77K

Ansi based on Dropped File (is-M3VFU.tmp)

AHq8AHe5AHW4AHO3AHK1AERtAERtAHK2AHS3AHW4ACc9QYVNYcdybs+ELKooH5sTH5sTH5sTH5sT

Ansi based on Dropped File (is-PTAHT.tmp)

aHruQTqYZrM6QUFBQUFBQUFBQUFQxlI82MRB2MRBQdABAWBBzMxB0MJQwsRBQVJgQUFBQUFBQUFB

Ansi based on Dropped File (is-M3VFU.tmp)

AHS3AG6tBgwGDBgMAG6mAHCnEhwVab5und+2cMN3Ta1HUK5LUK5LUK5LUK5LUa5MVbFSWrRYXrdf

Ansi based on Dropped File (is-PTAHT.tmp)

AHW4ACAxFB4aAGukAG2mDxsTLqIvftSfS7RXFpMOSKlASKlASKlASKlAT65KZ71shtCYnN62aJV4

Ansi based on Dropped File (is-PTAHT.tmp)

AHyL6gB/ju4AgI/tAH+M5gB9id4AfYbIAISO0QASJbsAECCqABYqwQAUIZ4AFSObAB8wwgA2SNcA

Ansi based on Dropped File (is-M3VFU.tmp)

AI+OjQCKiYgAgYB/AJZwRwBqYlkAv5JWAIBmRABtWT4AwIs0ANSkTwDUqFwAXlZIANekPQBuWC0A

Ansi based on Dropped File (is-M3VFU.tmp)

AI1sRwBxXEEAHhsXAL+TVgCWjoMAJyUiAMGLNADVpE8A1ahcAG5YLQCVlJIA27NcAN62YQBmWTwA

Ansi based on Dropped File (is-M3VFU.tmp)

Ai84AL4RERERFFVUhpCOiHtUg2AkV0tIERERvgA4LwICv9AA4dzc3NzcpZRjXmKSj2ZknYFfkZPc

Ansi based on Dropped File (is-M3VFU.tmp)

AIAVlRTACkpKQBPSDoAPT06AAkJCABWVlQAfnpzAEE9NAAK CAYAPDkyAEZBNgA5NjEADAwKAEpKSQBIRkIAIiEfAB0cHAAZGRgAIBwTAC0mFgAQDgoADQ0MACYh FgAIBwYAOzIeAExAJgA3NjUARDkiAEM5IgBLPyUAU0YoAE1NTQA0MzEAMisbADAvLAAzLBsAPz8+ AFJFKAAvLSgAJB8VAFNGKQAaFxEA5eXlAC4sKAA7OzoAWUsrA

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

aids eiDs

Ansi based on Dropped File (is-8C1UQ.tmp)

AIfGAGyeABsnFEITKXIsQa1FN6c3bsmFUrFfIEkkAERtAHG1AHK2AAgMCg8NAGegAHi7AAAARK9J

Ansi based on Dropped File (is-PTAHT.tmp)

AIGAfwCbf2IASz4wAKCEZwCBa1MARzsuAH5pUgCih2oASDwvAKGGagCghWkAqY5wAKWKbgCmjG8A

Ansi based on Dropped File (is-M3VFU.tmp)

AIgAiwDDAMUA1QDWAM8A0ADEAMUArwCwAK4ArwCWAJcAlACVAOcA5wDVANUAtwC3ALYAtgClAKUA

Ansi based on Dropped File (is-1PHDE.tmp)

AIKCggB8fHwAe3t7AHh4eABzc3MAb29vAG5ubgBtbW0AZ2dnAGVlZQBhYWEAXV1dAFxcXABaWloA

Ansi based on Dropped File (is-1PHDE.tmp)

AIl+eQDIv7sASDozACsjHwBORkIAFRMSAHhuaQAbGRgAJCIhAElHRgBjYWAAYV9eAMrIxwDBv74A

Ansi based on Dropped File (is-M3VFU.tmp)

AIMAQAApAJAAAABDADYAeQC5AF8AOACQAEQAAwA6AFEABADIAAMALwDpAJcAhgBDAGQAuQARAL4A

Ansi based on Dropped File (is-1PHDE.tmp)

aingoto ain`goto

Ansi based on Dropped File (is-8C1UQ.tmp)

aingotovabe ain`gotovabe

Ansi based on Dropped File (is-8C1UQ.tmp)

ainjIbI ain`jIbI

Ansi based on Dropped File (is-8C1UQ.tmp)

ainjIbIgoN ain`jIbIgoN

Ansi based on Dropped File (is-8C1UQ.tmp)

ainjIbIra ain`jIbIra

Ansi based on Dropped File (is-8C1UQ.tmp)

ainkanun ain`kanun

Ansi based on Dropped File (is-8C1UQ.tmp)

ainmafik ain`mafik

Ansi based on Dropped File (is-8C1UQ.tmp)

ainmaphik ain`maphik

Ansi based on Dropped File (is-8C1UQ.tmp)

ainmontrI ain`montrI

Ansi based on Dropped File (is-8C1UQ.tmp)

ainmontroNaloy ain`montroNaloy

Ansi based on Dropped File (is-8C1UQ.tmp)

ainmote ain`mote

Ansi based on Dropped File (is-8C1UQ.tmp)

ainmoto ain`moto

Ansi based on Dropped File (is-8C1UQ.tmp)

ainsocib ain`socib

Ansi based on Dropped File (is-8C1UQ.tmp)

ainsommoto ain`sommoto

Ansi based on Dropped File (is-8C1UQ.tmp)

ainsommotovabe ain`sommotovabe

Ansi based on Dropped File (is-8C1UQ.tmp)

ainsongoto ain`songoto

Ansi based on Dropped File (is-8C1UQ.tmp)

ainsongotovabe ain`songotovabe

Ansi based on Dropped File (is-8C1UQ.tmp)

AIODgwB9fX0Ad3d3AG1tbQBpaWkAVVVVAExMTABFRUUAQkJCADo6OgAxMTEALy8vACwsLAAqKioA

Ansi based on Dropped File (is-M3VFU.tmp)

AIOWkwCClZIAkKShAIWYlQBYZGIAxN7aAMPc2AC91tIAiJqXAM/p5QDO6OQAyuPfAMnh3QDT5+QA

Ansi based on Dropped File (is-1PHDE.tmp)

AIqKigCHh4cAg4ODAH5+fgB2dnYAVlZWAFRUVABSUlIAUFBQAE5OTgBLS0sAR0dHAD09PQA2NjYA

Ansi based on Dropped File (is-M3VFU.tmp)

airport eyarpOrrT

Ansi based on Dropped File (is-8C1UQ.tmp)

airtel eyarTel

Ansi based on Dropped File (is-8C1UQ.tmp)

airway ear`we

Ansi based on Dropped File (is-8C1UQ.tmp)

airways ear`wej

Ansi based on Dropped File (is-8C1UQ.tmp)

AISFhgDo6eoA4uPkANzd3gDW19gA1dbXAMXGxwC+v8AAuLm6ALO0tQCrrK0Arq+xAMnKzABUVFUA

Ansi based on Dropped File (is-1PHDE.tmp)

AisSBEKwsLCwsLlBUu7w58nHSzTG5sG5ubCwQgQSKwIC/foEpLu7u7uzsrET6/Dv6MdLNO1AsrKz

Ansi based on Dropped File (is-M3VFU.tmp)

Aiuh,)roz

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

AIuLiwCJiYkAh4eHAIODgwCAgIAAfn5+AHZ2dgBxcXEAcHBwAGhoaABiYmIAWFhYAFdXVwBVVVUA

Ansi based on Dropped File (is-M3VFU.tmp)

AIuMjACAgYEAw8XGAJaXmADo6eoA3N3eANbX2ADS09QAx8jJAL6/wACztLUAycrMAFRUVQBSUlMA

Ansi based on Dropped File (is-1PHDE.tmp)

AiwXBG/Ly8vKysk3OktFNiDWSyI6tra2tsrKbwQXLAIC4vkEW8zMzMzEtzszUT0gDjhIMjW3w8PE

Ansi based on Dropped File (is-M3VFU.tmp)

AIYZQwBkgLkAEWa+ACaXMQB5xg8AtLEBAC60UACdLdgA550uALnnngD2CagACODQACE/5ACAmi8A

Ansi based on Dropped File (is-1PHDE.tmp)

AJ2dnQCZmZkAlZWVAI+PjwCLi4sAiYmJAIeHhwCDg4MAfn5+AHZ2dgBwcHAAb29vAGhoaABkZGQA

Ansi based on Dropped File (is-M3VFU.tmp)

AJ6engCZmZkAlZWVAJCQkACKiooAiIiIAIeHhwCCgoIAgYGBAHd3dwBycnIAcHBwAG9vbwBkZGQA

Ansi based on Dropped File (is-M3VFU.tmp)

AJ6engCZmZkAlZWVAJCQkACPj48Ai4uLAImJiQCHh4cAg4ODAH5+fgB2dnYAcHBwAGhoaABkZGQA

Ansi based on Dropped File (is-M3VFU.tmp)

AJ6enwCcnJ0AmpqbAJaWlwCVlZYAu7u7AJmZmQCVlZUAhoaGAG9vbwAwMDAAJycnAAMDAwAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

AJ6enwCcnJ0AmpqbAJaWlwCVlZYAu7u7AJqamgCZmZkAlZWVAImJiQB+fn4AQUFBABQUFAAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

AJAARAADADoAUQAEAMgAAwAvAOkAlwCGAEMAZAC5ABEAvgAmADEAeQAPALQAAQAuAFAAnQDYAOcA

Ansi based on Dropped File (is-1PHDE.tmp)

AJag+gBUWosAgYnMAKGq+ACSk5wASVPTAEtVzgBXYNYAXWfiAGt05wBsdNwAfYb5AFtirQCEjfgA

Ansi based on Dropped File (is-1PHDE.tmp)

AJaLZwB1bVIAn5VyAJGIaQCblX8AoZuFAKWfiwCkn40At7SpALOwpgCyr6UAu7iuALm3sACfmH0A

Ansi based on Dropped File (is-M3VFU.tmp)

AJCQkACPj48Ai4uLAImJiQCHh4cAg4ODAH5+fgB2dnYAcXFxAHBwcABoaGgAZGRkAGJiYgBYWFgA

Ansi based on Dropped File (is-M3VFU.tmp)

AJeMZwCflXIAjoZqAKihigCkn40As7CmALKvpQC7uK4AubewAKGZewCalYAAop6NAMPBuQC5t68A

Ansi based on Dropped File (is-M3VFU.tmp)

AJFRRADIpZ4AIx4dAI1LOwAdGRgAHhoZAB8bGgAgHBsAIR0cAJVBKwC8Xz0AIh8eACYjIgB9dXIA

Ansi based on Dropped File (is-M3VFU.tmp)

AJiVkwBSRDcAn4NnAKOIbQCojnQAqpB2AE5CNgCtk3kAV0o9AFhLPgC0moAArZR7ALedgwBJPzUA

Ansi based on Dropped File (is-M3VFU.tmp)

AJJ0HgCzjygAfGMdAJ5+JgB1Xh0AcVseAG5ZHQB4YSEAbFceAGpWHgCpiDEAZVIeAGFPHQCKcCoA

Ansi based on Dropped File (is-M3VFU.tmp)

AJl6HgCWeB4Aim8dAIxxHgCHbB4AuJQpAIRrHgCBaB4Af2YeAHtjHQB2YB0AeWIeAHNdHQCmiCwA

Ansi based on Dropped File (is-M3VFU.tmp)

AjMbE+fS0tLSs4lrjpeVkZ2dj3l5cmZi0tLS5xMbMwICzOn75dTU1NTUq6qoS3ujln18k4uoqanU

Ansi based on Dropped File (is-M3VFU.tmp)

AJmi4QA7RqQAQ06rAFRaiwCYo/oAgYnMAKGq+ACSk5wACBJ8ABAagwASHIgAGyWPACYwmwAsNagA

Ansi based on Dropped File (is-1PHDE.tmp)

AJmZmQCVlZUAkJCQAI+PjwCLi4sAiYmJAIeHhwCDg4MAfn5+AHZ2dgBwcHAAaGhoAGRkZABiYmIA

Ansi based on Dropped File (is-M3VFU.tmp)

AJmZmQCVlZUAlJSUAJCQkACPj48Ai4uLAIqKigCJiYkAiIiIAIeHhwCDg4MAgoKCAIGBgQB+fn4A

Ansi based on Dropped File (is-M3VFU.tmp)

AJoATQAUAMMAbgDLAPkAYABgAI8AhQA8AIEAhwAdAFMAYAAlAAoAeAAsABMAxAAgAAIAOABhAI4A

Ansi based on Dropped File (is-1PHDE.tmp)

AJR5aQCTemoAallPAHxpXQBsXFIAXE9HAKKTigDRzMkATTwwAHphUAB+aFkASz41AGBPRACWfGsA

Ansi based on Dropped File (is-M3VFU.tmp)

AJuALwCWfS8AkHgxAIRxNAB/bTUAcmdGAIV7WwB+dl0Ah35kAJySdQCakXUAj4l2AK2omAC0r6AA

Ansi based on Dropped File (is-M3VFU.tmp)

AJWVlQCBgYEAbW1tAGBgYABaWloAR0dHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

AJxcQgDNeloAm11FALdwVADYhGQAm2RNAN6XfACqeWUArH9tAL+PfACpgXEA4rinAKuOggC4m5AA

Ansi based on Dropped File (is-M3VFU.tmp)

ajYbAJ9XNQArJSIAEhAPABQSEQAbGRgAYV9eAHtuZwCuXy4AwnlMAKJkQAB6RSMAx4JTAEw7MADD

Ansi based on Dropped File (is-M3VFU.tmp)

AJyYjgDBvrcAhYN+AK2rpgDo5uEAhGkdAIFnHQB8YxwAemEcAGVRGAB1XhwAbVcaAHRdHQBvWRwA

Ansi based on Dropped File (is-M3VFU.tmp)

AJZvb29vbzEF0L+6ur3I0tQXP29vb29vlgCijQ4OjaIAlm9vb29vVg2+AQEBAb3R1C43b29vb2+W

Ansi based on Dropped File (is-M3VFU.tmp)

AK+plwCyrJoAXVpRAMzGtADTz8IA3trNAMG+tQDCwLoAc3JvAMzLyADR0M0Ao5VmAJaLZwCglXEA

Ansi based on Dropped File (is-M3VFU.tmp)

AK+ysQCjpqUAKMaaAAUKCQAiPjgAAQQEAFJUVACkpqYAwsTEAMDCwgCrra0AHVVeAAnO+gAkLC4A

Ansi based on Dropped File (is-M3VFU.tmp)

Ak1WAG4ICAgICAYQDAwMDAwMDAwMCwgICAgIbgBWTQICb4MAmpSUlJSUlJSUlJSUlJSUlJSUlJSU

Ansi based on Dropped File (is-M3VFU.tmp)

AK6UdQCqkXMAqI9yAEtAMwA/NisAsph6AKWNcQCzmn0At56BALObfwCKeGIAtZ2BAIh2YQCXg2wA

Ansi based on Dropped File (is-M3VFU.tmp)

akangkha akaNgkkha

Ansi based on Dropped File (is-8C1UQ.tmp)

akangkhar akaNgkkhar

Ansi based on Dropped File (is-8C1UQ.tmp)

akangkhay akaNgkkhay

Ansi based on Dropped File (is-8C1UQ.tmp)

akangkhiNI akaNgkkhiNI

Ansi based on Dropped File (is-8C1UQ.tmp)

akangkhito akangkkhito

Ansi based on Dropped File (is-8C1UQ.tmp)

akashmonDol akash`monDol

Ansi based on Dropped File (is-8C1UQ.tmp)

akaSmonDol akaS`monDol

Ansi based on Dropped File (is-8C1UQ.tmp)

akbar akbor

Ansi based on Dropped File (is-8C1UQ.tmp)

AkBisJLd=u

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

AkcWDLaXl5eXl3cfIiIiIiIiIiIiKJeXl5eXtgwWRwICkbnPs5qampqampqampqampqampqampqa

Ansi based on Dropped File (is-M3VFU.tmp)

AKELCwsLCwsLOiLoJBkQGiAePAsLCwsLoQCqhA4OhKoAoQsLCwsLCwsMRzUcFg8ULEoLCwsLCwuh

Ansi based on Dropped File (is-M3VFU.tmp)

AKibdwBPSTgAnZJzAJSKbgCWjncAy8KpAKymlQDEvasArqiYAMXAsgDa1ccA5eHWALGupgDsuiAA

Ansi based on Dropped File (is-M3VFU.tmp)

akkelguRum akkel`guRum

Ansi based on Dropped File (is-8C1UQ.tmp)

AKKNDghykgCWb29vb29dLCPAugG8xdIMOk5vb29vb5YAknIODo55AJaZmZmZmWVVLyLAu8DOAxI0

Ansi based on Dropped File (is-M3VFU.tmp)

AklRAgLK1wICAgICAgICAgICAgICAgICCC8fADY4ODg4ODg4AgICAjX0hLFruqaSdzMC8qFjf/IC

Ansi based on Dropped File (is-M3VFU.tmp)

AkMrI+VtbW1td8CcmpeVsG1tsZa5zW9tbW1t5SMrQwICZ+f643BwcHCymJmbr6BwcHBweb+vyXpw

Ansi based on Dropped File (is-M3VFU.tmp)

AKOkpAC1t7gArrCxAKipqgCRkpMA9/j5APLz9ADo6eoA4uPkANzd3gDW19gAzM3OAMHCwwC+v8AA

Ansi based on Dropped File (is-1PHDE.tmp)

AKqEDghiiAChCwsLCwsLCwxeNIvIdnmMXmALCwsLC6EAiGIODoVpAKEKCgoKCgoKOzM/0tvaknh6

Ansi based on Dropped File (is-M3VFU.tmp)

AKqqqgCnp6cApqamAKOjowChoaEAnp6eAJ2dnQCZmZkAlZWVAJSUlACQkJAAj4+PAIuLiwCKiooA

Ansi based on Dropped File (is-M3VFU.tmp)

akram ak`ram

Ansi based on Dropped File (is-8C1UQ.tmp)

akramer ak`ramer

Ansi based on Dropped File (is-8C1UQ.tmp)

aktel ekoTel

Ansi based on Dropped File (is-8C1UQ.tmp)

AKZaPwCpX0UAqWtVAKWEeACzkIMAwpyPAN20pQCeiYIA2MK6AK2blQDm08wAuaqlAKqkogDv7OsA

Ansi based on Dropped File (is-M3VFU.tmp)

Al5C*YN|@

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

ALAArgCvAJYAlwCUAJUA5wDnANUA1QC3ALcAtgC2AKUApQCZAJkAlQCVAHgAeABpAGkANgA2ADAA

Ansi based on Dropped File (is-1PHDE.tmp)

alapsalap alap`salap

Ansi based on Dropped File (is-8C1UQ.tmp)

alapsalape alap`salape

Ansi based on Dropped File (is-8C1UQ.tmp)

alarm aZlarrm

Ansi based on Dropped File (is-8C1UQ.tmp)

albot al`bot``

Ansi based on Dropped File (is-8C1UQ.tmp)

albot`` al`bot``

Ansi based on Dropped File (is-8C1UQ.tmp)

album oZal`bam

Ansi based on Dropped File (is-8C1UQ.tmp)

AlcQBIbX19fS0z40MC8iSSEODjxISDjf0tLShgQQVwIC6PoEdtjY2NjUZzobND5bWw5ALSlIStfU

Ansi based on Dropped File (is-M3VFU.tmp)

ALCXdQCehF8AwYs0AKWaiQDVplYAe2EzAI2FdwCekHYArKSUAK2nmwDIxb8AzcvHANjX1QDR0M4A

Ansi based on Dropped File (is-M3VFU.tmp)

ALe3tgC1tbQArq6tAKWlpACdnZwAkpKRAJCQjwCMjIsAioqJAIeHhgCEhIMAg4OCAKioqACIiIgA

Ansi based on Dropped File (is-M3VFU.tmp)

ALe3twC2trYApaWlAJmZmQCVlZUAeHh4AGlpaQA2NjYAMDAwAC0tLQAYGBgADw8PAAYGBgADAwMA

Ansi based on Dropped File (is-1PHDE.tmp)

alga al`ga

Ansi based on Dropped File (is-8C1UQ.tmp)

ALgLCwsLCwsLchoYGG1GQUQXQgsLCwsLuADArg4OrsAAuAsLCwsLbDw+WF1cIiEeSmk+cj8LCwu4

Ansi based on Dropped File (is-M3VFU.tmp)

algOch al`gOch

Ansi based on Dropped File (is-8C1UQ.tmp)

algOche al`gOche

Ansi based on Dropped File (is-8C1UQ.tmp)

alkatra al`kat`ra

Ansi based on Dropped File (is-8C1UQ.tmp)

ALKztACvsLEAra6vAKqrrAC8vb8ApKWnAMHCxADAwcMAvr/BAKWlpwCioqQAm5udAMLCxAC/v8EA

Ansi based on Dropped File (is-1PHDE.tmp)

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.0041B000.00000002.mdmp)

allahr allah`r

Ansi based on Dropped File (is-8C1UQ.tmp)

AllocateAndInitializeSid

Ansi based on Dropped File (_setup64.tmp.404114402)

AllocateHWnd

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

AllowFileCLSIDJunctions

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

almari al`mari

Ansi based on Dropped File (is-8C1UQ.tmp)

almarigulO al`marigulO

Ansi based on Dropped File (is-8C1UQ.tmp)

almariTa al`mariTa

Ansi based on Dropped File (is-8C1UQ.tmp)

almarite al`marite

Ansi based on Dropped File (is-8C1UQ.tmp)

almariTi al`mariTi

Ansi based on Dropped File (is-8C1UQ.tmp)

ALObgACxmX8AS0E2ALmhiAC3oIcAnYp1AMSulwDAq5QAybahAM26pgDPvakAo4lrAGxbRwCfh2oA

Ansi based on Dropped File (is-M3VFU.tmp)

alOkmala alOk`mala

Ansi based on Dropped File (is-8C1UQ.tmp)

alOkmoy alOk`moy

Ansi based on Dropped File (is-8C1UQ.tmp)

alOksojja alOk`sojja

Ansi based on Dropped File (is-8C1UQ.tmp)

alOksojjay alOk`sojjay

Ansi based on Dropped File (is-8C1UQ.tmp)

alOksongket alOk`songket

Ansi based on Dropped File (is-8C1UQ.tmp)

alOkstombho alOk`stombho

Ansi based on Dropped File (is-8C1UQ.tmp)

alOkstomvo alOk`stomvo

Ansi based on Dropped File (is-8C1UQ.tmp)

ALOOHwCxjB8AbVYTAM6kJQCvix8ArYofAKqHHwCnhR8ApYMfAKKBHwCgfx4Ann0eAGRREwDFnSYA

Ansi based on Dropped File (is-M3VFU.tmp)

alphabet oZalfabeT

Ansi based on Dropped File (is-8C1UQ.tmp)

alpin al`pin

Ansi based on Dropped File (is-8C1UQ.tmp)

alpona al`pona

Ansi based on Dropped File (is-8C1UQ.tmp)

ALQARQBGADEAiACaAEMAOwBRABsA0ACDAEAAKQCQAAAAQwA2AHkAuQBfADgAkABEAAMAOgBRAAQA

Ansi based on Dropped File (is-1PHDE.tmp)

ALqUHwDVqSQAsIseALSPHwCyjR8ArIgeAMeeIwC5kiEAqYYeAMKbJAC+lyMApYMfAKOCHwCgfx4A

Ansi based on Dropped File (is-M3VFU.tmp)

alSweXzrur//trz/fIDrSj23gztHnj0Wnj0Wnj0Wnj0Wnj0Wnj0Wnj0Wnj0Wnj0Wnj0Wq1c1////

Ansi based on Dropped File (is-PTAHT.tmp)

AlternateCodePage

Unicode based on Runtime Data (AvroKeyboard5.6.0Silent-Lava.exe )

ALW1tACurq0AqqqpAKWlpACenp0AnZ2cAJmZmACUlJMAkpKRAJCQjwCMjIsAioqJAIiIhwCHh4YA

Ansi based on Dropped File (is-M3VFU.tmp)

Always Use Tab

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AlwaysShowExt

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

ALWPHwCwix4AsYwfAKyIHgDGnSMAv5giAKiGIACkgh8AoH8eAJ19HgDCmyYAmXoeAJZ5HgC6lSYA

Ansi based on Dropped File (is-M3VFU.tmp)

ALyVHwC5kh8A2KslALaQHwCmhBwA1qolALOOHwCxjR8AsIsfAK2KHwCqhx8ApIMeAKeFHwChgB4A

Ansi based on Dropped File (is-M3VFU.tmp)

AM+9qQCni2oAqo9vAKeNbgCjiWsAsZh5ALOafQC3noEAsZl9ALefggC5oYUAu6SJAL6ojwDCrJMA

Ansi based on Dropped File (is-M3VFU.tmp)

AM/+AM/+AM/+AM/+AM/+AM/+EoigWIh7quXFNF5dBb3mBb3mNV5ent61gcyOZbtoWbRYWbRYWbRY

Ansi based on Dropped File (is-PTAHT.tmp)

AM/+AM/+AM/+EoigH2w0H2w0EoigAM/+AM/+EoigHncrGqAOGqAOGqAOGqAOH5sTH5sTH5sTH5sT

Ansi based on Dropped File (is-PTAHT.tmp)

AM/+AM/+AM/+F3aIH4AlHZsRHZsRHZsRHZsRHJYRHJYRHJYRHJYRHJYRHJYRHJYRHJYRIGk0GW18

Ansi based on Dropped File (is-PTAHT.tmp)

AM/+AM/+Dpm3F3aIIklNIklNIklNIklNEoigAM/+AM/+AM/+AM/+AsbyAsbyAM/+HVtlHYwZHJYR

Ansi based on Dropped File (is-PTAHT.tmp)

AM/+AM/+EoigHncrGqAOGqAOGqAOGqAOHKEQGqAOF54LEpwKCZgGApUBAJIAAJEAAI8ADpQPe4ZK

Ansi based on Dropped File (is-PTAHT.tmp)

AM/+AM/+EoigYJyJdtCPRbNKJqAdHZsRHZsRHJYRHJYRHZYSI5sbMKItRK9JYMBwfNKYUId5HVtl

Ansi based on Dropped File (is-PTAHT.tmp)

AM/+AM/+GW18SYhgEoigAM/+AsbyJ1FPLVpUBb3mBb3mNV5ent62f8uLX7dfUq9NUq9NUq9NVLFR

Ansi based on Dropped File (is-PTAHT.tmp)

AM/+Bb3mEoigNnNNKFdNBb3mAM/+EJCrOHlNKFdNBb3mBb3mKFdNUq9NUq9NUq9NUq9NUq9NVLFR

Ansi based on Dropped File (is-PTAHT.tmp)

AM/+C6LDQ3xrZNJ6Pb9FH7EbFq0PFq0PG6gQG6gQG6gQG6gQG6gQHqkUIqwaK7AnOLc6SsBTX8tx

Ansi based on Dropped File (is-PTAHT.tmp)

AM/+HVtlTaNQKVdOBb3mBb3mKVdOVLFRVLFRVLFRVLFRVLFRVbJTVbJTVbJTVbJTVbJTVbJTVbJT

Ansi based on Dropped File (is-PTAHT.tmp)

AM/+IFJZKFZMBb3mBb3mKFZMTa1HTa1HTa1HTa1HTa1HUK5LUK5LUK5LUK5LUK5LUK5LUK5LUK5L

Ansi based on Dropped File (is-PTAHT.tmp)

AM0KCgoKCgqlMHhnOi0lGhscEq8KCgoKzQDZxg4OxtkAzQoKCgoKpEGSk1s+HS8jHxohEgoKCgrN

Ansi based on Dropped File (is-M3VFU.tmp)

am6ShWNjY2NjY2NjY2NjY+JvY2NjY+LZbwHWaWNjcQEBbwFjgdlj4m9jZdoBAWXi2W8B1uljY2Nj

Ansi based on Dropped File (is-M3VFU.tmp)

am6xlIJGgYGBgYGBgYGBgZvXgYGBgZvT1wHQjIGBmgEB1wGBcdOBm9eBadQBAWmb09cB0JyBgYGB

Ansi based on Dropped File (is-M3VFU.tmp)

amartya omorrtyo

Ansi based on Dropped File (is-8C1UQ.tmp)

AMCuDggptQC4CwsLCyVreCBhIx1uaxVQHBk9OwsLC7gAtSkODq8uALgKCgoKCqNMh4tVogwMd0ZO

Ansi based on Dropped File (is-M3VFU.tmp)

america amerika

Ansi based on Dropped File (is-8C1UQ.tmp)

american amerikan

Ansi based on Dropped File (is-8C1UQ.tmp)

AMhrBgBwTSQA/9msAKNrIQCteDAArmoFALF9NADPmEkA2KhaALqRTgDLq3cA1bN+ALWJPAC6jkAA

Ansi based on Dropped File (is-M3VFU.tmp)

AMIApAD4AJYA8QCSAJwAgQD5AIwA+QAwAMAAVgDSAG4A6QB9APQAXQCYAI0AywCIAJcAQwDEACcA

Ansi based on Dropped File (is-1PHDE.tmp)

AmIrI+i+vr6+vr5Kg9HVxJKRfmyPxsi+vr6+6CMrYgICuOr75sDAwMDAwJstydLTxZB/cM+GwMDA

Ansi based on Dropped File (is-M3VFU.tmp)

AMjGwQD39fAAIBkGAIdrHgB6Yh0AclwdAGJQHQBbSx0AkoReAMq3hgDDsYIA0b+NAJWJaADezqUA

Ansi based on Dropped File (is-M3VFU.tmp)

amkAoaCfAJ2cmwCYl5YAj46NAIqJiACBgH8AGhkXABsaGAAcGxkAHRwaAB4dGwAkIyEAQUA+AGJh

Ansi based on Dropped File (is-M3VFU.tmp)

AMkAywDJAH0AfAB3AHYA/wD+AMsAyAARABAAEgARABMAEgAUABMAGwAaAFMAUgBPAE4ASQBIAFUA

Ansi based on Dropped File (is-M3VFU.tmp)

amla am`la

Ansi based on Dropped File (is-8C1UQ.tmp)

amlatontrIyo am`latontrIyo

Ansi based on Dropped File (is-8C1UQ.tmp)

amlatontro am`latontro

Ansi based on Dropped File (is-8C1UQ.tmp)

AMLCwgC7u7sAtLS0AKampgClpaUAmpqaAJmZmQCVlZUAgYGBAHt7ewB3d3cAcXFxAG1tbQBXV1cA

Ansi based on Dropped File (is-1PHDE.tmp)

amlok am`lok

Ansi based on Dropped File (is-8C1UQ.tmp)

amlokI am`lokI

Ansi based on Dropped File (is-8C1UQ.tmp)

AmmmSDDDo-;I

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

AMnJyADBwcAAt7e2ALW1tACurq0ApaWkAJ2dnACSkpEAkJCPAIyMiwCKiokAh4eGAISEgwCDg4IA

Ansi based on Dropped File (is-M3VFU.tmp)

amoAYWJiAF1eXgBXWFgAVldXAFVWVgBcXV4AWltcAG1ubwBsbW4AOjo7AFRUVQBSUlMAT09QAE5O

Ansi based on Dropped File (is-1PHDE.tmp)

amoAZmdnAGRlZQBhYmIAXl9fAF1eXgBcXV0AW1xcAJucnABcXV4AWltcAG1ubwBsbW4AVFRVAFNT

Ansi based on Dropped File (is-1PHDE.tmp)

ampoaI+NjUE/P6akpI6MjJCOjo6MjJGPj42Li4uJiZORkYeFhY6MjI6MjJKQkIiJh42QjouQjoOK

Ansi based on Dropped File (is-M3VFU.tmp)

ampq8PDw////////tbW1PDw8JSUlJSUlJSUlm5ub////QUFBJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

amprAGhoaQBnZ2gAYmJjAGBgYQBfX2AAXl5fAF1dXgBaWlsAWFhZAFdXWABWVlcAVVVWAOHh4gCs

Ansi based on Dropped File (is-1PHDE.tmp)

amprAGlpagBoaGkAZ2doAGNjZABhYWIAX19gAFtbXABaWlsAWFhZAFdXWABWVlcAVVVWAKysrQCq

Ansi based on Dropped File (is-1PHDE.tmp)

AmpzAKgnJycnJydAjuLl056diVSY16UnJycnqABzagICqbsA9O/v7+/v748q2ePk1JqKW9+T4O/v

Ansi based on Dropped File (is-M3VFU.tmp)

amra am`ra

Ansi based on Dropped File (is-8C1UQ.tmp)

amrai am`rai

Ansi based on Dropped File (is-8C1UQ.tmp)

amrao am`rao

Ansi based on Dropped File (is-8C1UQ.tmp)

amrita omrrita

Ansi based on Dropped File (is-8C1UQ.tmp)

AMrKyAB9fXwAd3d2AGNjYgAREhAAEhMRABMUEgAUFRMAGxwaABwdGwBTVFIAUlNRAE9QTgBJSkgA

Ansi based on Dropped File (is-M3VFU.tmp)

amrul am`rul

Ansi based on Dropped File (is-8C1UQ.tmp)

AMSbHwDCmR8A4LEkAM6jIQDAmB8Av5YfAL2WHwC4kR4A2q0kALyVHwC7lB8A2KslAL2VIAC2kB8A

Ansi based on Dropped File (is-M3VFU.tmp)

amttbnFyd3mDgJAHKiQAACQty5WHgYZ9f3t3dnFwcG9wcHVyfHt5fYaElf8tJAAA3+DbnIuJhYSA

Ansi based on Dropped File (is-M3VFU.tmp)

AmUuIOO5ubm5ubl0bz7ph4v3PlB3ubm5ubm54yAuZQICs+X54Lu7u7u7u3N5RYVL/oprcIO7u7u7

Ansi based on Dropped File (is-M3VFU.tmp)

AMXY1gCvwL4AzN/dALjJxwDf8vAA0OLgAHd/fgCttrUAucLBANPr6QDd9fMA5//9AOX9+wDi+vgA

Ansi based on Dropped File (is-1PHDE.tmp)

An attempt was made to expand the "app" constant before it was initialized

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

An attempt was made to expand the "app" constant but Setup didn't create the "app" dir

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

An attempt was made to expand the "group" constant before it was initialized

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

An attempt was made to expand the "groupname" constant before it was initialized

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

An unexpected memory leak has occurred.

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.00401000.00000020.mdmp)

AN+2pgCtjoIA0LOnAJ+LgwCWiYQA2MvGAKGcmgCRPRkAnEMdAJNBHQChSSMAiUAfAI1BIACSRCMA

Ansi based on Dropped File (is-M3VFU.tmp)

AN3e3wDc3d4A1tfYAL6/wAC4uboAs7S1AKusrQCur7EAycrMAFRUVQBSUlMAQUFCAHp6ewBnZ2gA

Ansi based on Dropped File (is-1PHDE.tmp)

AN6XfACwemUAv498AKeEdgDgtqYArY6CANS0pwC9pZsAwbCpAI89GQCXQRwAoUkjAItBIACTRSQA

Ansi based on Dropped File (is-M3VFU.tmp)

anADAnISEwUIbRMSai0GBy0XBgZFEWcjFQkvY2MvcxYnIyMnb3p8GndFIiMiIyIjIiQiIyIlG0Ul

Ansi based on Dropped File (is-1PHDE.tmp)

ananda anond

Ansi based on Dropped File (is-8C1UQ.tmp)

anandabajar anondobajar

Ansi based on Dropped File (is-8C1UQ.tmp)

anandabazar anondobajar

Ansi based on Dropped File (is-8C1UQ.tmp)

ANapIADVqCAA06YgAM2iHwDktCMA1KchANCkIADNoiAAyJ4fAMedHwDMoSAAy6AgAMaeHwDFmx8A

Ansi based on Dropped File (is-M3VFU.tmp)

anatomy oZanaTomi

Ansi based on Dropped File (is-8C1UQ.tmp)

ANbX1wDV1tYA0NHRAM/Q0ADOz88AzM3NAMrLywDExcUAwMHBAL6/vwC9vr4AvL29ALi5uQC3uLgA

Ansi based on Dropped File (is-1PHDE.tmp)

ancan an`can

Ansi based on Dropped File (is-8C1UQ.tmp)

and oZanD

Ansi based on Dropped File (is-8C1UQ.tmp)

andhra ondhro

Ansi based on Dropped File (is-8C1UQ.tmp)

ANFuSQDUcUwAqVk+AKpbQACqXEEAqV9FALNtVAClhHgA47ioANe0pwDYwroAq5qUALyspgDm08wA

Ansi based on Dropped File (is-M3VFU.tmp)

angle oZangel

Ansi based on Dropped File (is-8C1UQ.tmp)

ANIAzgDRAM0AmgBmAI8AXwCXAGcAlgBnAKAAcQCRAGkAngBzAJ4AgACbAIAAswCmAKIAewCeAH8A

Ansi based on Dropped File (is-M3VFU.tmp)

anirban onirrbaN

Ansi based on Dropped File (is-8C1UQ.tmp)

aniruddha oniruddho

Ansi based on Dropped File (is-8C1UQ.tmp)

ANjX1gDNzMsAfGBAABcUEAA8NCoAm4t2AIVpPwDCwL0AdFsxALGolwCup5oAraebALm2sADIxb8A

Ansi based on Dropped File (is-M3VFU.tmp)

Ank4AHk4AHk4ALFVLLFVLLFVLLFVLHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4AHk4ALFV

Ansi based on Dropped File (is-PTAHT.tmp)

ankOra an`kOra

Ansi based on Dropped File (is-8C1UQ.tmp)

anmona an`mona

Ansi based on Dropped File (is-8C1UQ.tmp)

anmone an`mone

Ansi based on Dropped File (is-8C1UQ.tmp)

ANnGDgiwygDNCgoKCq+HlYuPlzERKSYkICUqCAoKCs0AyrAODse2AM0JCQkJpnqMikmUc3o7Li0o

Ansi based on Dropped File (is-M3VFU.tmp)

anRycnFvb29tbXRycnFvb21ra3Vzc25sbLq4uOzq6nRycm1ra3Fvb3JwcHNxcXFvb3JwcHJwcHFv

Ansi based on Dropped File (is-M3VFU.tmp)

AnsiString

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.00401000.00000020.mdmp)

antam an`tam

Ansi based on Dropped File (is-8C1UQ.tmp)

ante an`te

Ansi based on Dropped File (is-8C1UQ.tmp)

antenna oZanTena

Ansi based on Dropped File (is-8C1UQ.tmp)

antivirus aZnTivairas

Ansi based on Dropped File (is-8C1UQ.tmp)

AnuEAKAhISEhISFRSzDaY2rcRz5UISEhISEhoACEewICobMA6OLi4uLi4lBXNmc9FGZGTGHi4uLi

Ansi based on Dropped File (is-M3VFU.tmp)

anuja onuja

Ansi based on Dropped File (is-8C1UQ.tmp)

anurima oNurima

Ansi based on Dropped File (is-8C1UQ.tmp)

anwar anOyar

Ansi based on Dropped File (is-8C1UQ.tmp)

ANXt6gCjtbMAp7m3ALTGxADF2NYAUlpZALjJxwCsvLoAzd3bAK22tQC5wsEAWWRjAOX9+wDi+vgA

Ansi based on Dropped File (is-1PHDE.tmp)

ANXW1gDS09MA0dLSANDR0QDP0NAAzc7OAMzNzQDLzMwAysvLAMjJyQDGx8cAxMXFAMPExADBwsIA

Ansi based on Dropped File (is-1PHDE.tmp)

AO3Cg+3Cg+3Cg+3Cg+3Cg+3Cg+3Cg+3Cg+3Cg+3Cg+3Cg+3Cg+3Cg+3CgwAA7cKD7cKD7cKD7cKD

Ansi based on Dropped File (is-PTAHT.tmp)

AO3Cg+3Cg+3Cg+3Cg+3Cg+3Cg+3Cg+3Cg+3Cg+3Cg+S6fuG4fOC3fOC3fAAA7cKD7cKD7cKD7cKD

Ansi based on Dropped File (is-PTAHT.tmp)

AO68IwDruSIA3K0gANqsIADUpx8A6LcjAM2iHwDktCMA0KQgANWoIgDGnR8A4LIkAMyiIQDBmR8A

Ansi based on Dropped File (is-M3VFU.tmp)

ao8AASrcAEFUxgCOkrAAGi2/AAEPvwCdnZ4Al5eYAPX19QDw8PAA7e3tAOrq6gDh4eEA3t7eANra

Ansi based on Dropped File (is-M3VFU.tmp)

AOgAoADfAH4A9wBgAM4AJgAoANkABACaAE0AFADDAG4AywD5AGAAYACPAIUAPACBAIcAHQBTAGAA

Ansi based on Dropped File (is-1PHDE.tmp)

AOsA4gDiAN8A3wDVANUA1ADUAMcAxwDCAMIAuwC7ALQAtACmAKYApQClAJoAmgCZAJkAlQCVAIEA

Ansi based on Dropped File (is-1PHDE.tmp)

AOvHrevHrdGcfN2vkuvHrevHrevHrevHrevHrdy7opWAjF1b93l2/1lW/1dU/3Jw/0hG8Ek/VoJu

Ansi based on Dropped File (is-PTAHT.tmp)

AOvHrevHrdGcfN2vkuvHrevHrevHrevHrevHrevHrdO0uV1b93l2/1lW/1dU/3Jw/0hG8M2vt+vH

Ansi based on Dropped File (is-PTAHT.tmp)

AOvHrevHrdGcfOK9pvHczPHezvLi1PXt5Pbx6vbx6tzX7F1b93l2/1lW/1dU/3Jw/0hG8NfS6vbx

Ansi based on Dropped File (is-PTAHT.tmp)

AOy6IADyvyIA57YgAOa1IADltCAA8b4iAPC9IgDjsyAA4bEgAOCwIADfsCAA3K4fANmrHwDuvCMA

Ansi based on Dropped File (is-M3VFU.tmp)

AP+kHQD1nSMA9q1GAPzWnwD/tj0A3qRHANmPEwDBhwsA7MVwAJyaEABtbR8A/v76ALu+XgCkrjoA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wA+PKkAODddALSy3QAeGlkAnJuuAEZEVwDNzNUARkVNADg3PQCcm50AwsHCALi3uACop6gA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wA+PT4AOzo7AFNSUwBSUVIASUhJAEA/QABzcnMAcnFyAHFwcQBubW4AbWxtAGxrbABramsA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wA+PT4AU1JTAE5NTgBJSEkARURFAEA/QAB1dHUAdHN0AHNycwBycXIAZ2ZnAGJhYgBYV1gA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wA7OjsAOjk6ADY1NgBUU1QAUVBRAFBPUABOTU4ASklKAEA/QAB0c3QAc3JzAHJxcgBoZ2gA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wA9OzsARUNDAHNxcQBsamoAkY+PAIiGhgAWFBMAHx0cADo4NwA5NzYAPjw7AEtJSABfXVwA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wADAgIACQgIAAsKCgAMCwsALi0tADk4OAAbGRgAJCIhAGNhYABhX14ACgkIAA0MCwAcGhgA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wADAgIACQgIAAsKCgAMCwsASEZGAC4tLQA5ODgA1tPTANHOzgBWSkgAdGBbAEcsJQBZPjcA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wAMDAsAy8vLAF9eXQBUVFQASEhHAEZGRgBEREQAQkJBAEBAPwA9PT0AMjIyABUUEwAMCwsA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wANDBUAODc4AAMCAgAJCAgACwoKAAwLCwAuLS0AOTg4ABsZGAAkIiEAY2FgAGFfXgAKCQgA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wArKqUAJiV9AEZFcwA6OIYATUuNADg3XQC0st0AFRFaACwmkwAXFEkAKiZ1ACAdTQBWVWkA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wArKqUAPjypAEZFcwCZmMoAODddALSy3QAVEVoALCaTABcUSQAqJnUAIB1NADo2iQBWVWkA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wASEV8ABAJCAAwKNQAVElgAIiFDADU0XgCQj7UABgMzABcScwAkIGoAOThJAHt6iQAkIy0A

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wAWFRUAGBcXAD07OwBFQ0MAc3FxAGxqagCRj48AiIaGABYUEwAfHRwAOjg3ADk3NgA+PDsA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wAWFRUAPTs7AEVDQwBzcXEAbGpqAJGPjwCIhoYAFhQTAB8dHAA6ODcAOTc2AD48OwBLSUgA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wBaV1kAEQ8PABUTEwAWFBQAHBoaABsZGQAeHBwAHRsbACEfHwArKSkAPTs7AEVDQwBTUVEA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wBTUlMATEtMAElISQBAP0AAdXR1AHRzdABzcnMAcnFyAGhnaABnZmcAY2JjAGBfYABfXl8A

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wBTUlMAUlFSAFFQUQBJSEkAQD9AAHV0dQB0c3QAc3JzAHJxcgBsa2wAa2prAGdmZwBjYmMA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wBTUlMAUVBRAE5NTgBNTE0ASEdIAEdGRwBCQUIAQD9AAHV0dQB0c3QAc3JzAHJxcgBfXl8A

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wBUU1QATEtMAEpJSgBDQkMAQD9AAHRzdABzcnMAcnFyAGhnaABkY2QAYmFiAGFgYQBgX2AA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wBUU1QAU1JTAEpJSgBJSEkAQD9AAHV0dQB0c3QAcnFyAGhnaABnZmcAY2JjAGFgYQBgX2AA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wBUVFQAUlNRABMREAAQEBAAEQ8PABUTEwAWFBQAIR8fAFNRUQBraWkAkY+PAIiHhwAUEhEA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wBUVFQAUlNRABYUFAATERAAEBAQAFNRUQBWVFQAzcnJANrY2ABkY2MAtrW1ABIQDwAUEhEA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wBUVFQAUlNRABYUFAATERAAEBAQAFNRUQBWVFQAzcrKAIuKigASEA8AFBIRAFVTUgBYVlUA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wBYWVcAVFRUAFJTUQAWFBQAEBAQAFpXWgDFwsMAU1FRAFZUVACuq6sAZmVlALWwrwATERAA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wCmpacAw8LEAKyrrQBaV1kArqutALSvsAARDw8AFRMTABYUFAAcGhoAGxkZAB4cHAAdGxsA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wCop6kAo6KkAJybnQCZmJoAu7q8AKuqrACrqqsAo6KjAJybnACZmJkAlpWWAMbGxQDS09IA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wD+//8A+/z8APj5+QDz9PQA7u/vAOjp6QDHx8cAuLm6ALO1tQCusLEAq6ytAKipqgBBQUIA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wD4+fgA8/TzAN3e3QD7/fwA9/n4AOjq6QDW2NcAEBERABITEwA8PT0AOjs7AJ+hoQD3+fkA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wDCwcIAuLe4AJaVlgB+gYAAhZmUAHyOigCrwLsAc3x6AIOMigB8j4sAhZmVAISYlACDl5MA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wDDxMIAsbGxAKysrACmpqYAoJ6eAJeVlACOjIsAWFlXAFRUVABSU1EANjQzAB4cGwAdGxoA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDIyccAVFRUABMREAARDw8AFRMTABYUFAAhHx8AtK6uALeysgBTUVEA1dHRAGtpaQDs6ekA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDIyccAVFRUABMREAARDw8AFRMTABYUFAAhHx8AU1FRAGtpaQCRj48AiIeHABQSEQAWFBMA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDIyccAVFRUABMREAARDw8AFRMTABYUFABTUVEAa2lpANbT0wCRj48Avr29AIiHhwDZ0tAA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDIyccAVFRUABMREAArKmAAPTxkAFhUcwBgW30APjlTAE1GYAB5dYEAVFBaAKKepwBlYWQA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDIyccAVFRUABMREACtkJAAvqOjABEPDwAVExMAFhQUAM29vQAhHx8A2dDQAFNRUQDb1tYA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDIyccAVFRUABMREADU09QAt7O0ALOvsACsqKkAqaSlAKehogARDw8AFRMTABYUFAAbGRkA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDIyccAwMDAALOzswCsrKwAp6enAFRUVAAeHBsAHRsaABwaGQBaV1kAEQ8PABUTEwAWFBQA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDIyccAwMDAALOzswCsrKwAp6enAFRUVAAeHBsAHRsaABwaGQDU09QAWldZAKijpQC5trcA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDIyccAwMDAALOzswCsrKwAp6enAJ2dnQBUVFQAHhwbAB0bGgAcGhkAWldZABEPDwAVExMA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDIyccAwMDAALOzswCsrKwAp6enAJ2dnQBUVFQAHhwbAB0bGgAcGhkAWldZAJVsbACogoIA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDIyccAwMDAALOzswCsrKwAp6enAJ2dnQCVlZUAVFRUAB4cGwAdGxoAHBoZAGRjeAAlIzUA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDLy8sAX15dAFRUVABGRkYAREREADIyMgAVFBMADQ0MAA0MCwAMDAsADAsLAAMCAgC+uLgA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDLy8sAX15dAFRUVABGRkYAREREAEJCQQAyMjIAFRQTAA0NDAANDAsADAwLAAwLCwADAgIA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDLy8sAX15dAFRUVABISEcARkZGAERERABCQkEAQEA/AD09PQA5ODgANjY1ADIyMgAVFBMA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDU09QAuLa3AKijpQCppaYAnJiZAJOPkAC5tbYAt7O0ALOvsACsqKkAsKusAKehogADAgIA

Ansi based on Dropped File (is-M3VFU.tmp)

AP///wDz9PMA+/38APf5+AAjJCQAMTIyADAxMQA9Pj4AOTo6APL09ADt7+8A6OrqAOLk5ADc3t4A

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wDz9PMA+/38APf5+AAyMzMATk9PAPf5+QDy9PQA7e/vAOjq6gDi5OQA3N7eAM/R0QDJy8sA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wDz9PMA+/38APf5+AD3+fkA8vT0AO3v7wDo6uoA4uTkANze3gDP0dEAycvLAMPFxQC+wMAA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wDz9PMA+/38APf5+AD3+fkA8vT0AO3v7wDo6uoA4uTkANze3gDP0dEAycvLAMPFxQC9v78A

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wDz9PMA+/38APf5+AD3+fkA8vT0AO3v7wDo6uoA4uTkAODi4gDQ0tIAycvLAMXHxwCusLAA

Ansi based on Dropped File (is-1PHDE.tmp)

AP///wDz9PMA+/38APf5+AD3+fkA8vT0AO3v7wDo6uoA4uTkAOHj4wDc3t4Az9HRAMrMzADJy8sA

Ansi based on Dropped File (is-1PHDE.tmp)

aP2t$IJ4y&

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

AP7+/gD9/f0A9PT0AN7e3gDY2NgA1dXVANHR0QDOzs4Ay8vLAMbGxgDDw8MAvr6+ALe3twC1tbUA

Ansi based on Dropped File (is-M3VFU.tmp)

apadmostok apad`mostok

Ansi based on Dropped File (is-8C1UQ.tmp)

aparna oporrNa

Ansi based on Dropped File (is-8C1UQ.tmp)

APHw7QDR0M0AnI9kAJaLZwCglXEAnZNyAI6GagCjmnsAoZl8AKCYfQCXkHcAnpd+ALKqjwCblYEA

Ansi based on Dropped File (is-M3VFU.tmp)

apna ap`na

Ansi based on Dropped File (is-8C1UQ.tmp)

apnaapni ap`naap`ni

Ansi based on Dropped File (is-8C1UQ.tmp)

apnader ap`nader

Ansi based on Dropped File (is-8C1UQ.tmp)

apnaderke ap`naderke

Ansi based on Dropped File (is-8C1UQ.tmp)

apnake ap`nake

Ansi based on Dropped File (is-8C1UQ.tmp)

apnar ap`nar

Ansi based on Dropped File (is-8C1UQ.tmp)

apni ap`ni

Ansi based on Dropped File (is-8C1UQ.tmp)

aponkar apon`kar

Ansi based on Dropped File (is-8C1UQ.tmp)

Append Completion

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

apple oZapel

Ansi based on Dropped File (is-8C1UQ.tmp)

Application error:Exception code:0x%08xAddress:0x%08xException data:

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

application oZaplikeSan

Ansi based on Dropped File (is-8C1UQ.tmp)

apply aZplai

Ansi based on Dropped File (is-8C1UQ.tmp)

AppMessageBox failed.

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

APPz9ADu7u8A3d3eAMTExQC0tLUArKytAKqqqwCMjI0AhYWGAIGBggD8/PwA+Pj4AMfHxwDCwsIA

Ansi based on Dropped File (is-1PHDE.tmp)

April 28, 2011

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

april epril

Ansi based on Dropped File (is-8C1UQ.tmp)

APSDPgD0hT8A8YNAAOmAPQBmNxsA3Xg7APSGQgDyhkMA9YdFAPCFRQDxh0kA8YtNAPmTUwDwkFQA

Ansi based on Dropped File (is-M3VFU.tmp)

APz//wDy/f8A+P7/ABSZuwAYeJIAG8H4AL7t/AAStfAAUsbxAIrc+AD5+vsA8fX+AMTQ8QALPdsA

Ansi based on Dropped File (is-M3VFU.tmp)

AQEBAQEBAQEBAQ5QMyQkJDMRTgFZLlcsVyxXLFcsVy5ZAU4RMzIyZjNYEwEvASoBKgEqAVQBKgEv

Ansi based on Dropped File (is-1PHDE.tmp)

AQEBAQEBLQEBKi0By7wBAQEBAQEBAQEBAcsBAScnJycnJycnJycnJycnvQUIzwoMKCQkJCQkJCQk

Ansi based on Dropped File (is-M3VFU.tmp)

AQEBAQEBrwEBO68BMcYBAQEBAQEBAQEBATEBAWtra2tra2tra2tra2trKCQIDPmsIjIyMjIyJjIy

Ansi based on Dropped File (is-M3VFU.tmp)

AQEBAQEByAEBz8gBxNkBAQEBAQEBAQEBAcQBAd/f39/f39/f39/f39/f5QAIJSgA5AsLCwsLCwsL

Ansi based on Dropped File (is-M3VFU.tmp)

AQFcYFc9Ojk7Owt+LyQkJC8Tcm9vPEMqWwFZLVNBPTxvb3ITLzIyZi+BFhw/PkQraAEBbHtDQD4/

Ansi based on Dropped File (is-1PHDE.tmp)

aqgJGanamztbzFyczR//7/ /v3//////f/+//////////////////////////////////////////////////////////////// /f/8///8+Pvl5/rpvs3/YF7/VlTjw9H/8Pv4PDD8go397fDu/O/////w///q+/r87fb54uvu1t/j y9baxtDXws7UvsnRucTMuMfQXGt0XWx1PUxVU2JriZihi5qjlqWuqbG46vD1/f///vz7///+//

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AQKOAQ6TDleVP6l1Rcl3Nsl3NqZVLMp3Nsp3Nsp3Nsp3Nsp3Nsp3Nsp3Nt+thv///8p3Nsp3Nsp3

Ansi based on Dropped File (is-PTAHT.tmp)

AQKOAQ6TDleVP6l1Rcl3Nsl3Nsl3Nsl3Nsl3Nsl3Nsl3Nsl3Nsl3Nsl3Nsl3Nsl3Nsl3Nsl3Nsl3

Ansi based on Dropped File (is-PTAHT.tmp)

AQLBAQHBAQHAAQHAAQHAAQHAAQHAAQHAAQHAAQHAAQHAAQHAAQHAAQHAAQHAAQTEAwHAAQC+AAC7

Ansi based on Dropped File (is-PTAHT.tmp)

AqMeFCDT09PTHnNiYV9HeEQfH3GEg2yr09PTIBQeowICzen75tXV1dXVTG46YkKqqh9DXVeFirTV

Ansi based on Dropped File (is-M3VFU.tmp)

Ar$~d5JV

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

arabia arob

Ansi based on Dropped File (is-8C1UQ.tmp)

Arabic Transparent

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Arabic Transparent Bold

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Arabic Transparent Bold,0

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Arabic Transparent,0

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

arampriyo aram`priyo

Ansi based on Dropped File (is-8C1UQ.tmp)

archive arrkaiv

Ansi based on Dropped File (is-8C1UQ.tmp)

arekTa arek`Ta

Ansi based on Dropped File (is-8C1UQ.tmp)

arekTi arek`Ti

Ansi based on Dropped File (is-8C1UQ.tmp)

arekTu arek`Tu

Ansi based on Dropped File (is-8C1UQ.tmp)

ArfAANcUFBQUEH5uZmRELEIXGHyYmXioFBQU1wDAtwIC2OoA/Pb29vb2RnkzaH6rq0eBY1aandz2

Ansi based on Dropped File (is-M3VFU.tmp)

argentina arrjenTina

Ansi based on Dropped File (is-8C1UQ.tmp)

Arial Baltic,186

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Arial CE,238

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Arial CYR,204

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Arial Greek,161

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Arial TUR,162

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

arijit orijit``

Ansi based on Dropped File (is-8C1UQ.tmp)

arindam orindom

Ansi based on Dropped File (is-8C1UQ.tmp)

army arrmi

Ansi based on Dropped File (is-8C1UQ.tmp)

ARNYMwgIBzMtVQEZMCstKy0rLVUtKzAZAVUtMyQjJDNbVgFZAUABQAFAAU4BQAFZAVZbMy0uLTNd

Ansi based on Dropped File (is-1PHDE.tmp)

article arrTikel

Ansi based on Dropped File (is-8C1UQ.tmp)

artist arrTisT

Ansi based on Dropped File (is-8C1UQ.tmp)

arunima oruNima

Ansi based on Dropped File (is-8C1UQ.tmp)

ARYcACxTYQAyYXQAB6DxAAEGCQB3enwABjthADViiQB7iZYAABMpABBt4wBkhs8ABkLjAAk+9ABf

Ansi based on Dropped File (is-M3VFU.tmp)

aS+ip+Hh4eHh+gC+uwIIur0AEt/f39/f39/fyR6ggoShrLTf39/f398SAL268ALi6AD59AYGBgYG

Ansi based on Dropped File (is-M3VFU.tmp)

asbenna asben`na

Ansi based on Dropped File (is-8C1UQ.tmp)

asenni asen`ni

Ansi based on Dropped File (is-8C1UQ.tmp)

aSh,QKq<jf?

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

ashraful ash`raful

Ansi based on Dropped File (is-8C1UQ.tmp)

asia eSia

Ansi based on Dropped File (is-8C1UQ.tmp)

AsICAsECAsECAsEBAsEBAcEBAcABAcABAcABAcABAcABAcABAcABAcABAcABAcABAcABAcABAcAB

Ansi based on Dropped File (is-PTAHT.tmp)

AsICAsECAsECAsEBAsEBAcEBAcABAcABDcQRLM47UNprauOOcNqVQHxWTpppZ+KKS9llKM02C8MO

Ansi based on Dropped File (is-PTAHT.tmp)

AsICAsECAsECAsEBAsEBAcEBAcABBMEFB8IJC8MODsQSD8UUDsQSC8MOCMIKBMEFAcABAcABAcAB

Ansi based on Dropped File (is-PTAHT.tmp)

Asking user for new disk containing "%s".

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

Askl^ZB9.

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

asks will be merged with the set of tasks that would have otherwise been selected by default./PASSWORD=passwordSpecifies the password to use.For more detailed information, please visit http://www.jrsoftware.org/ishelp/index.php?topic=setupcmdline

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 - Lava.exe , 00022598-00002944.00000001.23366.00401000.00000020.mdmp)

aslam as`lam

Ansi based on Dropped File (is-8C1UQ.tmp)

asle as`le

Ansi based on Dropped File (is-8C1UQ.tmp)

aslen as`len

Ansi based on Dropped File (is-8C1UQ.tmp)

ASLFYHmi

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

asli as`li

Ansi based on Dropped File (is-8C1UQ.tmp)

asma as`ma

Ansi based on Dropped File (is-8C1UQ.tmp)

asman as`man

Ansi based on Dropped File (is-8C1UQ.tmp)

asmane as`mane

Ansi based on Dropped File (is-8C1UQ.tmp)

asmaner as`maner

Ansi based on Dropped File (is-8C1UQ.tmp)

asmanI as`manI

Ansi based on Dropped File (is-8C1UQ.tmp)

asmanTa as`man`Ta

Ansi based on Dropped File (is-8C1UQ.tmp)

asmanTar as`man`Tar

Ansi based on Dropped File (is-8C1UQ.tmp)

aSP nG%.2

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

assistant oZasisTyanT

Ansi based on Dropped File (is-8C1UQ.tmp)

association oZasOsiyeSan

Ansi based on Dropped File (is-8C1UQ.tmp)

astam as`tam

Ansi based on Dropped File (is-8C1UQ.tmp)

asten as`ten

Ansi based on Dropped File (is-8C1UQ.tmp)

asti as`ti

Ansi based on Dropped File (is-8C1UQ.tmp)

asy(:Y+f

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

AT%L6hlNB

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

aT09PT09PRAmckNMGRROO0FwaRFNewVjHA5paWlpaWlpPQwNDAsLPnMrc3MrKWtqamoMDAwMDAwM

Ansi based on Dropped File (is-1PHDE.tmp)

At8LKxM3W0dng3ePq5+3y7/P4/f//2dvcAAABAwUGi42O /f///f///f///////////////////////////////////v7+/////////v7+/v7+/////v7++fn5 /fz/zeztKlVSAAIBCAIHoJ+oqbfDobfDpra9cH2Fa3N6iY2Smp2hsLW4wsrKvsjI1Nfb1tnd2dzg 3uHl4+bq5+ru6+7y7fD09vv69/z7+P38+f79+v/++///+///+//

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AT9xPwFeSEVGRg1tOiQkJDoTY2FhSU0BXzMxM18BTUlhYWMTOjIyZjpwFiBJTFABNVNPU3IBUExJ

Ansi based on Dropped File (is-1PHDE.tmp)

atk!@.{_9

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

atm eTiem

Ansi based on Dropped File (is-8C1UQ.tmp)

aTTa aT`Ta

Ansi based on Dropped File (is-8C1UQ.tmp)

aTTi aT`Ti

Ansi based on Dropped File (is-8C1UQ.tmp)

Attributes

Unicode based on Runtime Data (AvroKeyboard5.6.0Silent-Lava.exe )

audio oDiO

Ansi based on Dropped File (is-8C1UQ.tmp)

auditorium oDiTOriam

Ansi based on Dropped File (is-8C1UQ.tmp)

august ogasT

Ansi based on Dropped File (is-8C1UQ.tmp)

australia osTreliya

Ansi based on Dropped File (is-8C1UQ.tmp)

AuthenticodeEnabled

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.exe )

authority othoriTi

Ansi based on Dropped File (is-8C1UQ.tmp)

AutoCheckSelect

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AutoDetect

Unicode based on Runtime Data (AvroKeyboard5.6.0Silent-Lava.exe )

autodict.dct

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AutoInstall

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

automatic oTOmeTik

Ansi based on Dropped File (is-8C1UQ.tmp)

automobile oTOmObail

Ansi based on Dropped File (is-8C1UQ.tmp)

autopsy oTOpsi

Ansi based on Dropped File (is-8C1UQ.tmp)

AutoSuggest

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

avast oZavasT

Ansi based on Dropped File (is-8C1UQ.tmp)

avenue oZavenyu

Ansi based on Dropped File (is-8C1UQ.tmp)

AvER=9Bq*

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

Avro Keyboard

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

Avro Keyboard 5.6.0

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Avro Keyboard 5.6.0 - Lava.exe

Unicode based on Runtime Data (AvroKeyboard5.6.0Silent-Lava.exe )

Avro Keyboard 5.6.0 - Lava.tmp

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.exe )

Avro Keyboard Layout

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Avro Keyboard Skin

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Avro Keyboard.exe

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Avro Keyboard.url

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

avro ovro

Ansi based on Dropped File (is-8C1UQ.tmp)

Avro Spell Checker.exe

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

avroi ovroi

Ansi based on Dropped File (is-8C1UQ.tmp)

avroke ovroke

Ansi based on Dropped File (is-8C1UQ.tmp)

AvroKeyboardLayout

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

AvroKeyboardSkin

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

avroo ovroO

Ansi based on Dropped File (is-8C1UQ.tmp)

avror ovror

Ansi based on Dropped File (is-8C1UQ.tmp)

avrota ovroTa

Ansi based on Dropped File (is-8C1UQ.tmp)

avrote ovrote

Ansi based on Dropped File (is-8C1UQ.tmp)

AvroUpdateCheck

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

aW1xcXFxcYIcFRwIBol7e3t7eXR0c3Nxb25tamppaWVlZWBgYF9kZF5dXFxcXFtbW1taWlpaWVlZ

Ansi based on Dropped File (is-M3VFU.tmp)

AwICAC4tLQA5ODgARkVFAG5tbQCjoqIAGxkYAGFfXgAKCQgADQwLABwaGAAPDg0AHx0bAB0cGwAx

Ansi based on Dropped File (is-M3VFU.tmp)

aWlp////////////////////////////////////////////////////////////////aWlpAAAA

Ansi based on Dropped File (is-OODVK.tmp)

aWlp////////////////////////////////////////////////aWlpJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

aWlpaWdpe7a0eHe4lXYAi2lpaRw5ZmQxgmtra4KCYQAAcJ0AiJQAimtrgjFkZjMcgGpqgICAXQCy

Ansi based on Dropped File (is-1PHDE.tmp)

aWlpaWhpaWhoFBMSExRudS9jYy8KHW5sbGxsbG1tbW1tbW1tbW1sbG1tbW1tbW1tbW1tbG1tbW1t

Ansi based on Dropped File (is-1PHDE.tmp)

aWlpaWlsU73jaWlpV2lpvX9/f3+9aWlX7QAA+3dm3WbjtwAAAFdpab1/f39/f39/gaEKA7CxBAQE

Ansi based on Dropped File (is-1PHDE.tmp)

aWlpJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

aWlXaWlpaWlpV2lpV2lpab1paWlpaWlpaWlXaWm9f39/f71paVdpaWlpaWkAAABlaGlpV2lpvX9/

Ansi based on Dropped File (is-1PHDE.tmp)

AwMDAAICAgABAQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

AwMDAwMD4AMDAwMDAwMDAwMDAwP8AwMDAwMDAwMDCgP8AwoKCgP8AwoDAwMDAwMDAwP8AwMDAwMD

Ansi based on Dropped File (is-M3VFU.tmp)

AwMDAwMDA+ADAwMDCA==

Ansi based on Dropped File (is-M3VFU.tmp)

AwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMI

Ansi based on Dropped File (is-M3VFU.tmp)

AwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwNo

Ansi based on Dropped File (is-M3VFU.tmp)

AwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMIBQUFBQUFBQUFBQUFBQUFBQUF

Ansi based on Dropped File (is-M3VFU.tmp)

AwMDAwMDAwMDAwMOZAxGGQICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIC

Ansi based on Dropped File (is-1PHDE.tmp)

AWoqTAEBAQEBPhCDMiQkJDITfX9tAQEBAWBNZgEBAQEBhn4TMjIyZjKGF4FKAQEBAVpNZAEBAQEB

Ansi based on Dropped File (is-1PHDE.tmp)

AwYFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUF

Ansi based on Dropped File (is-M3VFU.tmp)

AX*hz-j<*

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

ayAObiIPcyMQciMQciMQciMQciMQciMQciMQciMQciMQciMQciMQciMQciMQciMQciMQciMQciMQ

Ansi based on Dropped File (is-PTAHT.tmp)

aZ&Z43m~`b

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

a}(kG y6

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

B)N&irp*!

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

b.`~W[:I+X

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

b1UAVUdGADBSSwBTaEUAT25RAEtVSgBTaFkATUVhAE9VTwBRcG8AVzY1ADdkRgA2NVUAWDMzAHpD

Ansi based on Dropped File (is-1PHDE.tmp)

b3cAYjZMADZPSgB5NDQATzVvAHVicABpNWMATUVhAE9VTwBRcG8AV3BiADhBRQBpQTgAUzRDAEZF

Ansi based on Dropped File (is-1PHDE.tmp)

b3FzdHR2ent7e3t8iRwIHBAFkIODg4ODfn5/f318fHuDDf48dnR3PP48c29ubm1tamppaWlpaWho

Ansi based on Dropped File (is-M3VFU.tmp)

b3NxcW5sbHFvb3Fvb3Z0dI2Lizo4OImHh3Vzc25sbG5sbHRycnVzc21ra3Z0dHl3d2xqanFvb29t

Ansi based on Dropped File (is-M3VFU.tmp)

b3RycnJwcIqIiDo4OISCglpYWFlXV4OBgTg2NomKiG5vbW9wbnJycm9xcmlrbGtrcU9SbkxTok1a

Ansi based on Dropped File (is-M3VFU.tmp)

B4gS;v'lY

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

b5+/T3+/T3/PX4/PX4//j7/vX48Ofq/vf6+PP17ers/fr84+LkUE9RISAi EA0PGxYYGRIVGRATHxQXGxATGRQWJB8hFA8RFxIUJB8hfnl79/L08ezu7/Hy/f//+vz9+vz98/X2 9ff4/f//4ePk+vn7+Pf5//7/7ezu/fz+9vX3//7/+/r87vj4+P//4ebn+////f//9PP1+/j6/Pn7 /f///f///f///P7+/f///f///f///f///f///f

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

B5vroAO{T

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

b63uXuz9jir7vFo6+5oKy2h5OdW2dxf4uVxtLcucXPvsjSwszWwM3V wc/VxtLW3OPm+/3+//7//////Pz8+Pj4/f39/////////////v7+//////////////////////// /v7+/v7+///+///+//79//79//79//79///+///+//////////////////////////////////// //////////////////////////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

b6uvp8fDy7+7w+fj6/P37/v/7//////////////////// //////////////////////////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// ///////////////////////////////////////////////////

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

B=@>Es0}5

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

B@3%"FD\)

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

B\1bd's$4

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

bABlZWUAZGRkAGFhYQBZWVkAWFhYAFdXVwBWVlYAVFRUAFNTUwBSUlIAT09PAE5OTgBNTU0ATExM

Ansi based on Dropped File (is-1PHDE.tmp)

babohar bybohar

Ansi based on Dropped File (is-8C1UQ.tmp)

back byak

Ansi based on Dropped File (is-8C1UQ.tmp)

background byakgraunD

Ansi based on Dropped File (is-8C1UQ.tmp)

backspace byak`spes

Ansi based on Dropped File (is-8C1UQ.tmp)

backup byak`ap

Ansi based on Dropped File (is-8C1UQ.tmp)

badminton byaDminTon

Ansi based on Dropped File (is-8C1UQ.tmp)

bakko bakyo

Ansi based on Dropped File (is-8C1UQ.tmp)

bakri bak`ri

Ansi based on Dropped File (is-8C1UQ.tmp)

baksongzom bak`songzom

Ansi based on Dropped File (is-8C1UQ.tmp)

baksongzomI bak`songzomI

Ansi based on Dropped File (is-8C1UQ.tmp)

baksorrboswo bak`sorrboswo

Ansi based on Dropped File (is-8C1UQ.tmp)

ballot byaloT

Ansi based on Dropped File (is-8C1UQ.tmp)

ballygunge baligonj

Ansi based on Dropped File (is-8C1UQ.tmp)

bamfront bam`fronT

Ansi based on Dropped File (is-8C1UQ.tmp)

BAMjEwW1JMqZaLu5iDuYZm t3tXtnVNtHFItG9GtHBHtnRMuXtVvYRjw5d8vp6Ke15NNSojNTQzQkJCSkpKTExMTExMTExMTExM AAAAAAAAX19fSUlJSUlJSUlJSUlJRkZGQEBANTQ0PTc0gHNsrZeKupqGvJJ5u4xvu4psvIxvvpF2 wZuDvJyJmX5uTjwxLykmNTU1Q0NDSkpKTExMTExMTExMTExMTExMAAAAAAAAX19fSUlJSUlJSU

Ansi based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

bampash bam`pash

Ansi based on Dropped File (is-8C1UQ.tmp)

bampashe bam`pashe

Ansi based on Dropped File (is-8C1UQ.tmp)

bampasher bam`pasher

Ansi based on Dropped File (is-8C1UQ.tmp)

banasree bonSrI

Ansi based on Dropped File (is-8C1UQ.tmp)

bandh bon,,dh

Ansi based on Dropped File (is-8C1UQ.tmp)

banerjee byanarrji

Ansi based on Dropped File (is-8C1UQ.tmp)

bangali baNgali

Ansi based on Dropped File (is-8C1UQ.tmp)

banjonborrN bynjonborrN

Ansi based on Dropped File (is-8C1UQ.tmp)

bank byangk

Ansi based on Dropped File (is-8C1UQ.tmp)

BAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAgcHB4PxhADAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMD

Ansi based on Dropped File (is-M3VFU.tmp)

BAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAgUFBb2Iw0DAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMD

Ansi based on Dropped File (is-M3VFU.tmp)

BAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQE

Ansi based on Dropped File (is-1PHDE.tmp)

BAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQI

Ansi based on Dropped File (is-M3VFU.tmp)

BAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBCIvBAQuISgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgo

Ansi based on Dropped File (is-M3VFU.tmp)

BAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEmLbc+AjrL/nh3W8DA6ysNmga4AMaaDYaA5caaAMDAwMD

Ansi based on Dropped File (is-M3VFU.tmp)

BAQEBAQEBAQEBAQECA==

Ansi based on Dropped File (is-M3VFU.tmp)

BAQEBAQEBARgMGAmRQQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQE

Ansi based on Dropped File (is-1PHDE.tmp)

BAQEVh94BAQEBAQEBAgIlomQkJCQkJCQkJCQkJCQkJCQkJBkH2qQkJCQkJCQCAiViI+Pj4+Pj4+P

Ansi based on Dropped File (is-M3VFU.tmp)

BAQEYDBgJkUEMGAwYAQmYGAKcHV4eHUlX28vb19vL19fX19fX19fX19fX19fX19fX19fX19fX19f

Ansi based on Dropped File (is-1PHDE.tmp)

baseball bes,,bol

Ansi based on Dropped File (is-8C1UQ.tmp)

basmatI bas`motI

Ansi based on Dropped File (is-8C1UQ.tmp)

basmati bas`motI

Ansi based on Dropped File (is-8C1UQ.tmp)

basmoti bas`motI

Ansi based on Dropped File (is-8C1UQ.tmp)

basu bosu

Ansi based on Dropped File (is-8C1UQ.tmp)

basundhara bosundhora

Ansi based on Dropped File (is-8C1UQ.tmp)

bathroom bath`room

Ansi based on Dropped File (is-8C1UQ.tmp)

battery byaTari

Ansi based on Dropped File (is-8C1UQ.tmp)

bazar bajar

Ansi based on Dropped File (is-8C1UQ.tmp)

BB0dBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQE

Ansi based on Dropped File (is-M3VFU.tmp)

BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB???<<<???BBBBBBBBB

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

bBG0&]d_4<

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

BBUVBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQE

Ansi based on Dropped File (is-M3VFU.tmp)

BbYYGBgYE9HRGMTQGMTExNDEHRzExi8vxMTExC8vL8QiIi8vLy8vLy8vLy8vLy8dHS8vLy8vLy8v

Ansi based on Dropped File (is-M3VFU.tmp)

bdGYbdGYbdGYbdGYbdGYbc2SZ8OCWL97UtGYbdGYbdGYbdGYbQDTnnXTnnXKj2fDglnTnnXTnnXT

Ansi based on Dropped File (is-PTAHT.tmp)

BDSUnthemedDesigner

Unicode based on Dropped File (is-G1Q2V.tmp.4097182795)

be+Fd/L4+H8UVfb4bXdi+PSXbYViYvhiyvj4FG1tbW1tvW1tbW1tbW1tbZJtbb3JycnJvW1tAAAA

Ansi based on Dropped File (is-1PHDE.tmp)

BeginBufferedPaint

Unicode based on Dropped File (is-G1Q2V.tmp.4097182795)

BeginPrompt

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

begum begom

Ansi based on Dropped File (is-8C1UQ.tmp)

belt belT

Ansi based on Dropped File (is-8C1UQ.tmp)

bEMAOiIMAKNnMwA9JxQAjXNbAKVoKgBwUzYAj3BRAAoJCAApJSEADQwLABwaGAAPDg0AHx0bADEw

Ansi based on Dropped File (is-M3VFU.tmp)

bengal bengol

Ansi based on Dropped File (is-8C1UQ.tmp)

bengali bengoli

Ansi based on Dropped File (is-8C1UQ.tmp)

bF3K4t/0////IgywIgywIgywIgywIgywMBjPMBjPIgywIgywIgywIgywVkXD0Mzu////IgywmI7a

Ansi based on Dropped File (is-OODVK.tmp)

bFlj!@{C/E

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

bfr_U-( +

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

Bfv3>:iSs

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

bg4dPz82R0FCelM9ElhYX08fZlg/bjhYZB8/Z3ozInpxImR2GD8YEBgOc3MOIiJQIiIiYkwrIiIi

Ansi based on Dropped File (is-1PHDE.tmp)

Bg]qzD_|G4

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

bGdlZWVlZWdsBjQtLi40c3Jwbm5ubm5wE3MuMC8wNHh3dnV0dHR1dndCGy8wLzQ0NDQ0NDQ0NDQv

Ansi based on Dropped File (is-1PHDE.tmp)

bGUVY p|]

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

bGwAaGhoAGdnZwBlZWUAYWFhAGBgYABfX18AXl5eAFxcXABbW1sAWlpaAFlZWQBYWFgAV1dXAFZW

Ansi based on Dropped File (is-1PHDE.tmp)

BgYGAAMDAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0NDQ0N

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBgYGBgYG2t4AzsgCAtbXDd3DBQUFBQUFBQUFBQUFBQUFBQUFBQXD3Q3X1hgY1NfG

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBgYGBgYG7fEAubMCAsHqDfCuBQUFBQUFBQUFBQUFBQUFBQUFBQWu8A3qwRgYv+qx

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBgYGBgYG9PkA6OICAvDxDPjcBQUFBQUFBQUFBQUFBQUFBQUFBQXc+Azx8BgY7vHg

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgbvAAiA32f0DQrsBQUFBQUFBQUFBQUFBQUFBQUFBQUF

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYG

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGCBT23xVcdnZ2dnJybmtraGhoY2NjXllYWFhX

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGCBwP/h1lgYGBgXh4dXJycHBwbGxsZ2NiYmJh

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGCLskvg+Tl5eXlpaWlpaRkZGRkY+Pj4+PjY2N

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBgYGBgYGBgYGBiMj3/kImc5m3eQvLwWKBSISiyGtIQWziq0iip0hBQUFBQUFBQUF

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBgYGBgYGBt345e4CAu3k99sFBQUFBQUFBQUFBQUFBQUFBQUFBQUF2/fk7RgY7OP5

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBgYGBgYGBtb13uoCAujd9NQFBQUFBQUFBQUFBQUFBQUFBQUFBQUF1PTd6BgY59z2

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBgYGBgYGBtr34usCAurh9tgFBQUFBQUFBQUFBQUFBQUFBQUFBQUF2Pbh6hgY6eD4

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBgYGBgYGBtz45O0CAuzj99oFBQUFBQUFBQUFBQUFBQUFBQUFBQUF2vfj7BgY6+L5

Ansi based on Dropped File (is-M3VFU.tmp)

BgYGBgYGBgYGBk4GFgYGBgYGBhYGBhYGBgYOY2MOBRUPBRUFBU0FBQUFBQUFBQUFBQUFBQUFBQUF

Ansi based on Dropped File (is-1PHDE.tmp)

BgYGU1JRBgYGBgYGBggIopWcnJycnJycnJycnJycnJycnJxdf4WcnJycnJycCAihlJubm5ubm5ub

Ansi based on Dropped File (is-M3VFU.tmp)

bhalobastam bhalobas`tam

Ansi based on Dropped File (is-8C1UQ.tmp)

bhalobaste bhalobas`te

Ansi based on Dropped File (is-8C1UQ.tmp)

bhalobasten bhalobas`ten

Ansi based on Dropped File (is-8C1UQ.tmp)

bhalobasti bhalobas`ti

Ansi based on Dropped File (is-8C1UQ.tmp)

bhalobasto bhalobas`to

Ansi based on Dropped File (is-8C1UQ.tmp)

bharat bharot

Ansi based on Dropped File (is-8C1UQ.tmp)

bhattacharya voTTacarrz

Ansi based on Dropped File (is-8C1UQ.tmp)

bhavan vbn

Ansi based on Dropped File (is-8C1UQ.tmp)

bHG7bHG7bHG7bEd+WxCQqw6Zt0J3WXG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHC7a3C7a3C7a3C7

Ansi based on Dropped File (is-PTAHT.tmp)

bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bG21akyGXleVYnG7bHG7

Ansi based on Dropped File (is-PTAHT.tmp)

bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHC7a3C7a3C7a3C7

Ansi based on Dropped File (is-PTAHT.tmp)

bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7bHG7

Ansi based on Dropped File (is-PTAHT.tmp)

bHJnEiEiHAQEHM7IfXlqZWJgW1hUXlFRUVFRXlNYW2BkaG15yM4cBAQcIxGEc25rZWJhX1pYVVRT

Ansi based on Dropped File (is-M3VFU.tmp)

bhowmik vOUmik

Ansi based on Dropped File (is-8C1UQ.tmp)

bhutan bhUTan

Ansi based on Dropped File (is-8C1UQ.tmp)

bicycle baisaikel

Ansi based on Dropped File (is-8C1UQ.tmp)

bidyut bidyut``

Ansi based on Dropped File (is-8C1UQ.tmp)

BigoKAIoKFcnAo11KFdXV21jY20mjCYmBSYmJiYmJiYmJiYmJiYmJiYmJiYmJiYmJiYmJlYmjCYm

Ansi based on Dropped File (is-1PHDE.tmp)

bikkhato bikhyato

Ansi based on Dropped File (is-8C1UQ.tmp)

biochemistry bayOkemisTri

Ansi based on Dropped File (is-8C1UQ.tmp)

biology bayOlji

Ansi based on Dropped File (is-8C1UQ.tmp)

birla biRla

Ansi based on Dropped File (is-8C1UQ.tmp)

birthday barrthDe

Ansi based on Dropped File (is-8C1UQ.tmp)

bismilla bis`milla

Ansi based on Dropped File (is-8C1UQ.tmp)

bismillah bis`millah

Ansi based on Dropped File (is-8C1UQ.tmp)

bismillahir bis`millahir

Ansi based on Dropped File (is-8C1UQ.tmp)

biswas biSwas

Ansi based on Dropped File (is-8C1UQ.tmp)

bixabh11eHh1bG0IPVk9bT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09

Ansi based on Dropped File (is-1PHDE.tmp)

BJ1WkY+MiYeFXRfyDwYVFgoUWIiJjI6RnP8tJQ4OzOPbnpeTVpKPjYuJTzoWBR8fO0+LjI+RVpSd

Ansi based on Dropped File (is-M3VFU.tmp)

BJM6goF+OeTd2kdvbm5ub28z7HV4foCCkgQmHQ4Oy9HGlImFOoOB7dzaBXV2dnZ3OeIKf4GCOoWT

Ansi based on Dropped File (is-M3VFU.tmp)

BKygnZyZlZKPi4eGhYWFhYaLjpKVmZudqQQhFw4O5+3irqOhoJ+cmpeUk5KQkI+Rk5SWmZydoKKt

Ansi based on Dropped File (is-M3VFU.tmp)

bL#eyF1d

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

blackberry blyakberi

Ansi based on Dropped File (is-8C1UQ.tmp)

BLBgoaCemEwJ7Ofl5efo7e4JV5WYnp+hrgQuJg4O3uPZsaijYKKgOgrnAQEBAeft7kA/naChYKWv

Ansi based on Dropped File (is-M3VFU.tmp)

BlFa_Lbh0u

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

BLGwAwqhX39/nBDx9fXxx5soJ0ZGRkZGRkZGPCo6RkY6/0pGRkYnKObm5ua9Z2cRZ5BnZ2dnZ2dn

Ansi based on Dropped File (is-1PHDE.tmp)

bloc blok

Ansi based on Dropped File (is-8C1UQ.tmp)

block blok

Ansi based on Dropped File (is-8C1UQ.tmp)

blogger blogar

Ansi based on Dropped File (is-8C1UQ.tmp)

blouse blauj

Ansi based on Dropped File (is-8C1UQ.tmp)

BLsDALYAALIAAK4AAKoABp0AQGwSn1cwsVUssVUssVUssVUsoEYUnlIfmEYml0Ykl0YjlUUilUUi

Ansi based on Dropped File (is-PTAHT.tmp)

BLsDALYAALIAAK4AAKoABp0AQGwSn1cwsVUssVUssVUssVUssVUssVUssVUssVUssVUssVUssVUs

Ansi based on Dropped File (is-PTAHT.tmp)

BLtvrKuppqWiaCclKD0mHR0caaSoqaqsuQUaEQ4O7PHnd7Kub62raWlUNE82IDQvKT5UaWmsb692

Ansi based on Dropped File (is-M3VFU.tmp)

bluetooth bluTuth

Ansi based on Dropped File (is-8C1UQ.tmp)

blUIVQilrJ+2pQ4OVWhRYlVVCAgITnxTDcnDydASQ2xOCAgIVVViUWhVDg5VZ09hCFVVCDwIcX4f

Ansi based on Dropped File (is-M3VFU.tmp)

bl{V$OU&y

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

bm5u4uLi////JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlWFhY0dHR////JSUlmZmZ

Ansi based on Dropped File (is-OODVK.tmp)

bm5u8PDwJSUlJSUlJSUlJSUl4uLifHx8JSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlQkJC8PDwJSUl

Ansi based on Dropped File (is-OODVK.tmp)

BMcDBccEC8kNFMwZHM4kJNEuKdI0JdEvHc4lFMwZDMkOBMcDDckJDckJDckJDckJDckJDckIDckI

Ansi based on Dropped File (is-PTAHT.tmp)

BMcDBMcDBMcDBMcDBMcDBMcDBMcDBMcDBMcDBMcDBMcDBMcDCMcFBMcDAMQAAMAABbMALocPa2Ep

Ansi based on Dropped File (is-PTAHT.tmp)

BMcDBMcDBMcDBMcDBMcDBMcDBMcDBMcDBMcDBMcDBMcDBMcDDckJDckJDckJDckJDckJDckIDckI

Ansi based on Dropped File (is-PTAHT.tmp)

bMpoLcpoLc1zPdaXbtWTaM53QspoLag6Kd+VWAAArD0r1XAy1XAy1XAy1XAy1XAy1XAy1XAy1XAy

Ansi based on Dropped File (is-PTAHT.tmp)

BMW6t7Wzr658YWUsNhcVExEgxq+vs7S3w/9ZTw4O7vPpxr67uri1xWFGRiwZEjsVExMYx7W3urvF

Ansi based on Dropped File (is-M3VFU.tmp)

bNNdc7t+pdvCQoM7lVEhlVEhlVEhZygF35ZY35VX35VY35ZXZygFlVEhlVEhlVEhcp9VmN61tevM

Ansi based on Dropped File (is-PTAHT.tmp)

bNNdc7t+pdvCSIY91XAy1XAy1XAyrD0r35VY35VY4JZY4JVXrD0r1XAy1XAy1XAyhqlbmN61tevM

Ansi based on Dropped File (is-PTAHT.tmp)

bNNdc7t+pdvCSopB5p1f5p1f5p1ftm1K35ZY35VY4JZY35ZYtm1K5p1f5p1f5p1fjLdpmN61tevM

Ansi based on Dropped File (is-PTAHT.tmp)

board bOrrD

Ansi based on Dropped File (is-8C1UQ.tmp)

bodmaish bod`maish

Ansi based on Dropped File (is-8C1UQ.tmp)

bodmaishi bod`maishi

Ansi based on Dropped File (is-8C1UQ.tmp)

bodmash bod`mash

Ansi based on Dropped File (is-8C1UQ.tmp)

bodmashi bod`mashi

Ansi based on Dropped File (is-8C1UQ.tmp)

bodmayeshi bod`mayeshi

Ansi based on Dropped File (is-8C1UQ.tmp)

bodmejaj bod`mejaj

Ansi based on Dropped File (is-8C1UQ.tmp)

bodmejajI bod`mejajI

Ansi based on Dropped File (is-8C1UQ.tmp)

bodonkhani bodon`khani

Ansi based on Dropped File (is-8C1UQ.tmp)

bodrag bod`rag

Ansi based on Dropped File (is-8C1UQ.tmp)

bodragI bod`ragI

Ansi based on Dropped File (is-8C1UQ.tmp)

bodrul bod`rul

Ansi based on Dropped File (is-8C1UQ.tmp)

bogra boguRa

Ansi based on Dropped File (is-8C1UQ.tmp)

bolbe bolobe

Ansi based on Dropped File (is-8C1UQ.tmp)

bolben bol`ben

Ansi based on Dropped File (is-8C1UQ.tmp)

bolbi bol`bi

Ansi based on Dropped File (is-8C1UQ.tmp)

bolbo bol`bo

Ansi based on Dropped File (is-8C1UQ.tmp)

bolbona bol`bona

Ansi based on Dropped File (is-8C1UQ.tmp)

bolenni bolen`ni

Ansi based on Dropped File (is-8C1UQ.tmp)

bollam bol`lam

Ansi based on Dropped File (is-8C1UQ.tmp)

bolle bol`le

Ansi based on Dropped File (is-8C1UQ.tmp)

bollei bol`lei

Ansi based on Dropped File (is-8C1UQ.tmp)

bollen bol`len

Ansi based on Dropped File (is-8C1UQ.tmp)

bolli bol`li

Ansi based on Dropped File (is-8C1UQ.tmp)

bollo bol`lo

Ansi based on Dropped File (is-8C1UQ.tmp)

bollywood boliuD

Ansi based on Dropped File (is-8C1UQ.tmp)

bonna bonya

Ansi based on Dropped File (is-8C1UQ.tmp)

boolean bulian

Ansi based on Dropped File (is-8C1UQ.tmp)

bornona borrNona

Ansi based on Dropped File (is-8C1UQ.tmp)

bosenni bosen`ni

Ansi based on Dropped File (is-8C1UQ.tmp)

botany bOTani

Ansi based on Dropped File (is-8C1UQ.tmp)

botol bOtol

Ansi based on Dropped File (is-8C1UQ.tmp)

bOzWX9OsP7tzSY6Tdj3SamZnZXN0cm9wbm1ubHBxb4aHhTQ1M4aHhVtZWVlXV4WDgzs5OYuJiXNx

Ansi based on Dropped File (is-M3VFU.tmp)

BQAICAcACQkIAAsLCgAMDAsADQ0MAA8PDgAyMjAAIiIhAE9PTQAnJyYAY2NhAGFhXwBaWlgAMzMy

Ansi based on Dropped File (is-M3VFU.tmp)

BQSgAGthXAQEXHFqZGcFBQUFBQUFBQUFBQUFBQUFBQUFBWdkanFcBAQ8IaJlBQUFBQUFBQUFBQUF

Ansi based on Dropped File (is-M3VFU.tmp)

BQUFbG1qBQUFBQUFBQgItqmwsLCwsLCwsLCwsLCwsLCwsLB7d32wsLCwsLCwCAi1qK+vr6+vr6+v

Ansi based on Dropped File (is-M3VFU.tmp)

BQUFBQUFBQgMDAwv+Nv399v39/f39/fb9/j49/f39/cVFRYW29vc2/f39/f3+Pf43Pj399zb2/j3

Ansi based on Dropped File (is-M3VFU.tmp)

BQUFBQUFBQj6+vr5+Nr399r39/f39/fa9/j49/f39/cRERIS2trb2vf39/f3+Pf42/j399va2vj3

Ansi based on Dropped File (is-M3VFU.tmp)

BQUFBQUFBQUFBQUFBGkANColBQUFBQUFBQUFBQUFBQUFMC0zOiUFBQUFBQUFBQUFBQUFBQUFLmsL

Ansi based on Dropped File (is-M3VFU.tmp)

BQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQgQEBck/xEEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQE

Ansi based on Dropped File (is-M3VFU.tmp)

BQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBgMKCi8iBAQEBAQEBAQEBAQE

Ansi based on Dropped File (is-M3VFU.tmp)

BQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUF

Ansi based on Dropped File (is-M3VFU.tmp)

BQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUhnd35CIxx

Ansi based on Dropped File (is-M3VFU.tmp)

BQUFBQUFBQUFBQUFCA==

Ansi based on Dropped File (is-M3VFU.tmp)

BQUFBQUFBQUFBWWiITwAAF1jAANoaGhoaGhoaGhoaGhoaGhoaGhoaGhoAwBjXQAAXWMAA2hoaGho

Ansi based on Dropped File (is-M3VFU.tmp)

BQUFBQUFTU0FBQUFBRUFFQUVBQUFDmNjDiAgICAEICAgBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQE

Ansi based on Dropped File (is-1PHDE.tmp)

brake brek

Ansi based on Dropped File (is-8C1UQ.tmp)

brazil brajil

Ansi based on Dropped File (is-8C1UQ.tmp)

brb ekoTu pore aschi

Ansi based on Dropped File (is-8C1UQ.tmp)

bRcnbB4dHh0eHR0eHR4dHx4dH252K2NjK3hyEWtrEWxsbW1tbW1tbW1sbW1sbm5xJ3BsbG5ubWwR

Ansi based on Dropped File (is-1PHDE.tmp)

break brek

Ansi based on Dropped File (is-8C1UQ.tmp)

briddhi brriddhi

Ansi based on Dropped File (is-8C1UQ.tmp)

britain briTen

Ansi based on Dropped File (is-8C1UQ.tmp)

british briTiS

Ansi based on Dropped File (is-8C1UQ.tmp)

britney briTni

Ansi based on Dropped File (is-8C1UQ.tmp)

broadband broDbyanD

Ansi based on Dropped File (is-8C1UQ.tmp)

BrowseInPlace

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

browser braujar

Ansi based on Dropped File (is-8C1UQ.tmp)

brush brash

Ansi based on Dropped File (is-8C1UQ.tmp)

BRYWBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUF

Ansi based on Dropped File (is-M3VFU.tmp)

bsc bi`es`si

Ansi based on Dropped File (is-8C1UQ.tmp)

bsp3Nsp3Nsp3NqZVLMl3Nsl3Nsl3NqZVLMp3Nsp3Nsp3NrGqt/b29vv7+/j4+Pf39/X19fPz8/Hx

Ansi based on Dropped File (is-PTAHT.tmp)

bTESoGI0oGI0oGI0oGI0oGI0oGI0oGI0oGI0oGI0oGI0oGI0oGI0oGI0oGI0oGI0oGI0oGI0oGI0

Ansi based on Dropped File (is-PTAHT.tmp)

bTESoGI0oGI0oGI0oGI0pG9TqISHqIiVpHx5oWZAoGI0oGI0n2ZBmnaCjYbZi3y+lmppoGI0oGI0

Ansi based on Dropped File (is-PTAHT.tmp)

btv biTivi

Ansi based on Dropped File (is-8C1UQ.tmp)

buddha buddho

Ansi based on Dropped File (is-8C1UQ.tmp)

buddhadeb buddhodeb

Ansi based on Dropped File (is-8C1UQ.tmp)

BufferedPaintSetAlpha

Unicode based on Dropped File (is-G1Q2V.tmp.4097182795)

bUhV'7n:

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

building bilDing

Ansi based on Dropped File (is-8C1UQ.tmp)

bulb balb

Ansi based on Dropped File (is-8C1UQ.tmp)

bulbul bul`bul

Ansi based on Dropped File (is-8C1UQ.tmp)

bulbuli bul`buli

Ansi based on Dropped File (is-8C1UQ.tmp)

bullet buleT

Ansi based on Dropped File (is-8C1UQ.tmp)

business bijnes

Ansi based on Dropped File (is-8C1UQ.tmp)

button baTon

Ansi based on Dropped File (is-8C1UQ.tmp)

bVkeAJuALwB/bTUAlYheAJ6QZACdj2QAkYVeAJmNaACTiWkAnZN0AJqRdQCYkHcAp6CKALSvoAC6

Ansi based on Dropped File (is-M3VFU.tmp)

bW1tbW1tbW1tbW1tbW1tbW1tbW1tbW1tbW1tbW1tbW1tbW1tbW1tbSEhi3OJVFRUVFRUVFRUVFRU

Ansi based on Dropped File (is-1PHDE.tmp)

bW1tbWxsbGxuHXgvZAxsfHl2dXV1dXV1dXV1dXV1dXV1dXV1dXV1dXV1dXV1dXV1dXV1dXV1dXV1

Ansi based on Dropped File (is-1PHDE.tmp)

bW1tbWxtbWxsEWsQaxFyeCtjYysGdXJwcHBwcHFxcXFxcXFxcXFwcHFxcnJycXFxcXFxcHFxcXFx

Ansi based on Dropped File (is-1PHDE.tmp)

bW1uJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlJSUlioqLxMTFJSUl

Ansi based on Dropped File (is-OODVK.tmp)

bW1uJSUlJSUlJSUlJSUlJSUlJSUlJSUlX19f/v7/JSUlQkJC/v7/QkJCJSUlJSUlJSUlJSUlJSUl

Ansi based on Dropped File (is-OODVK.tmp)

bW5sbHZ0dG5sbHJwcG9tbW9tbW9tbXNxcXFvb3NxcW9tbW9tbXFvb3JwcHZ0dG5sbKmnp/Hv72xq

Ansi based on Dropped File (is-M3VFU.tmp)

bwBsbW4APT0+ADY2NwBUVFUAU1NUAFJSUwBRUVIAUFBRAE9PUABLS0wASUlKAEdHSABFRUYAQkJD

Ansi based on Dropped File (is-1PHDE.tmp)

BwbXADYsJwQEJzw1LzIHBwcHBwcHBwcHBwcHBwcHBwcHBzIvNTwnBAQQDdkwBwcHBwcHBwcHBwcH

Ansi based on Dropped File (is-M3VFU.tmp)

BwcHBwcHB3ZoBwcHBwcHBwcHBwcHBwcHBz4XEV4+Fw5jYw4GThYGBgYibHt7ewYGBgYGBgYGBgYG

Ansi based on Dropped File (is-1PHDE.tmp)

BwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHB/AACIPf

Ansi based on Dropped File (is-M3VFU.tmp)

BwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHJCQkJCTiKAiI5vnfzuXl

Ansi based on Dropped File (is-M3VFU.tmp)

BwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwfhAAhfzUrmDAvcBgYGBgYGBgYGBgYGBgYGBgYGBgYG

Ansi based on Dropped File (is-M3VFU.tmp)

BwcHBwcHBwcHBzDZDRAAACguAAUzMzMzM5GtujMzMzMzMzMzMzMzMzMzBQAuKAAAKC4ABTMzMzPV

Ansi based on Dropped File (is-M3VFU.tmp)

bWFhYZqamomJiYmJiZmZmWBgYG1tbaampsLCwsDAwL+/v7+/v7+/v7+/v7+/v7+/v7+/v7+/v7+/

Ansi based on Dropped File (is-M3VFU.tmp)

bWxvaWZlZ35hYGFiZ2JcVlZWVlZVVVVVW1paWlpaWlpaWlpaW1VVVVVVVlZWXFxcXFxgYGFkZGVm

Ansi based on Dropped File (is-M3VFU.tmp)

bXlwZ5eIeLWhj8u0nsq3orGjkZSJe392aYR7bo2CdKaZicKkicGjirCZg45/b3pzanBva25xb4OI

Ansi based on Dropped File (is-M3VFU.tmp)

bXZ0dHFvb3Vzc3Vzc4qIiD89PX99fVpYWFpYWIOBgTs5OYyKinJwcHRycnNxcXN0cGxrZ2ZjX9PO

Ansi based on Dropped File (is-M3VFU.tmp)

by SFXMaker

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

byarrtho by`rrtho

Ansi based on Dropped File (is-8C1UQ.tmp)

byay by`Y

Ansi based on Dropped File (is-8C1UQ.tmp)

BYG9TElBS0lJTEpKTEpKSkhITEpKSkhITUtLfnx8NTMzdnR0XlxcYF5eYF5eYF5eX11dW1lZa1Vo

Ansi based on Dropped File (is-M3VFU.tmp)

bYgqSXYNdxcaLwA4AC+HfA4NDQ4PEgOGXV8KEA4NDnyHLzIyMi8ETSMhISEhJBhzAQElfCIhI00E

Ansi based on Dropped File (is-1PHDE.tmp)

ByIyAAMNEwAHGCIAyMjIAMfHxwCioqIAkZGRAImJiQBXV1cAVVVVAFNTUwBQUFAAS0tLAAUFBQ8F

Ansi based on Dropped File (is-M3VFU.tmp)

byrrth by`rrth

Ansi based on Dropped File (is-8C1UQ.tmp)

byrrthta by`rrthta

Ansi based on Dropped File (is-8C1UQ.tmp)

byrrthtay by`rrthtay

Ansi based on Dropped File (is-8C1UQ.tmp)

byte baiT

Ansi based on Dropped File (is-8C1UQ.tmp)

BZ2_bzDecompress

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

BZ2_bzDecompressEnd

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

BZ2_bzDecompressInit

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

BZ9Sfh%W*Q

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

bzlib: Internal error. Code %d

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

C D/P<{n

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

c'>\oISH&

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

c.4+~lFN

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

c29vc3NvcXFvcUFBQUFBdEFCQnZ2eHl5REZ8fn5IR0dJhISESYCXuxYQ1wZhjIdQh4eFiYZOhElJ

Ansi based on Dropped File (is-M3VFU.tmp)

c3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc2VlZXR3eHh1

Ansi based on Dropped File (is-1PHDE.tmp)

c3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nz

Ansi based on Dropped File (is-1PHDE.tmp)

C4d}?h*&_

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

C8gGC8gGC8gGC8gGC8gGC8gGBMQDBMQDBMQDBMQDBMMDA8MDA8MDA8MCA8MCA8ICA8ICA8ICAsIC

Ansi based on Dropped File (is-PTAHT.tmp)

c9WNg92jh9mrXpyHX52IX52IXZyFdcObiuGtkuW4l+jAXZyGEoigAM/+Dpm3Tod3b9OHQ7xKI6sd

Ansi based on Dropped File (is-PTAHT.tmp)

c9WNMLIvHKEQHKEQHKEQHKEQH6IUL6sqTr1WddOOgtqgSLpPGksbABIbAGORAIXEAIPDAIDBAH2/

Ansi based on Dropped File (is-PTAHT.tmp)

c:\directory

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

c\&h*L8:Q

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

CA6SQEBAQECPj48ZISsmMCbhBqwM7s7OAD6MjIyKioqKioqKPUSnPT09iESpiIiYqT2oRD09kwGK

Ansi based on Dropped File (is-M3VFU.tmp)

cable keb,,l

Ansi based on Dropped File (is-8C1UQ.tmp)

cAD5+LsABgYFAAgIBwAJCQgACwsKAA8PDgAyMjAAOzs5ACIiIQBPT00AJycmAGNjYQBhYV8AWlpY

Ansi based on Dropped File (is-M3VFU.tmp)

cadni ca^dnI

Ansi based on Dropped File (is-8C1UQ.tmp)

cadre kyaDar

Ansi based on Dropped File (is-8C1UQ.tmp)

CAgAJSkpAFxlZQBBR0cACwwMALvLywBVWloAERISAENGRgAxMzMAT1JSAHt/fwCLj48ANzg4AL7B

Ansi based on Dropped File (is-1PHDE.tmp)

CAgHCAgIBwcICAgICAgICAcHLy8vCQoSK2ZEK20bCC4tLi0uLS4tLS4tLi0uLS4uLi0uLi0uLS4t

Ansi based on Dropped File (is-1PHDE.tmp)

CAgICAg3H2EICAgICAgICAgKCAgICAgICAgICAgICAgICAgIbB8fUQgICAgICAgICBIICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgI3vnk7QII7OP43AcHBwcHBwcHBwcHBwcHBwcHBwcHBwfc+OPs8ALr4vfaBgYGBgYG

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICAgICA0Nw8OlyLgDAwMDAwMDAwMDAwMDAwMDAwMDA7jIpcPD

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICOIACNTN

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICwhv0ggQ

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgSCBgYCAsI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBEICwsIEQgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIOBoMaEwODg4ODg4O

Ansi based on Dropped File (is-1PHDE.tmp)

CAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBAIEhIICggICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICQkIEQgICAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICwgWFggKCAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgRCA8PCAsICAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICAgICAgICBEICAgICAgICAgICAgICAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICAgKCAsLCQwJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJ

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICAoICAgIEAgICAgICAgICAgICAgICAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgICwhYWAgKCAgICAgICAgICAgICAgICAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgIFQAIaHYA8O0HBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcHBwcH

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICAgICAgRCNv4CBEICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAgICAgICHEoCO/nKOLn5+fn50ckJCQkzc3JxsnJzyQkJCQkJAcHBwcHBwcHBwcH

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICAhdHx90CAgICAgICAgICwgICAgICAgICGZJcztHZggICEMfH04ICAgICAgICAgK

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgICBEICAgICAgICAgICAgICAgICAgImnYICAgICAgICAgICwgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAgQCAkJCAsICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICAoIGBgIEggICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICNXM0tHQzQgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICOjoDw8PDw8PAwMDAwMDAwMDAwMDAwMXGBYUEBAFBQUFBQUFBQUFBQUFBQYHFQoJEIx+

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgICwgICAh1IR8fIHJHSjgfHx8fHx8fKAgICAgICAgICAgQCAgIVyAfID8dCAgICFMfHx83

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgIEQhuUggRCAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgImlEvHx8fHx8fPghpJB8fWggICAgICAgICBAICAgICGMtHx8fHx8fHx8fNSMfHyAdCAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgICAgrk5KRCAgI1r4JCgjFuMe9AAAJoY2cCioKCg8qrxCgMzgwJzGjkyoPCgoqCpyNoQkODgmn

Ansi based on Dropped File (is-M3VFU.tmp)

CAgIEQgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgRCAgICAgICAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

CAgJEwkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkICAkTCQkJCQkJCQkJCQkJCQkJCQkJCQkJ

Ansi based on Dropped File (is-M3VFU.tmp)

CAgKEwoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoKCgoICAoTCgoKCgoKCgoKCgoKCgoKCgoKCgoK

Ansi based on Dropped File (is-M3VFU.tmp)

CAIHDg4ODg4ODm4fHx9QcFQfH2IOQR9SDg4ODg4ODggImIwWFhYWFhYWFksfHzExHx8xGxZEH1UW

Ansi based on Dropped File (is-M3VFU.tmp)

CAjNxsTExMWjqKOmoZ+kCAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgI

Ansi based on Dropped File (is-M3VFU.tmp)

cakladar cak`ladar

Ansi based on Dropped File (is-8C1UQ.tmp)

cakranI cak`ranI

Ansi based on Dropped File (is-8C1UQ.tmp)

cakri cak`ri

Ansi based on Dropped File (is-8C1UQ.tmp)

cakri-bakri cak`ri-bak`ri

Ansi based on Dropped File (is-8C1UQ.tmp)

cakribakri cak`ribak`ri

Ansi based on Dropped File (is-8C1UQ.tmp)

cakrihIn cak`rihIn

Ansi based on Dropped File (is-8C1UQ.tmp)

calculator kyal`kuleTor

Ansi based on Dropped File (is-8C1UQ.tmp)

calcutta kyal`kaTa

Ansi based on Dropped File (is-8C1UQ.tmp)

calendar kyalenDar

Ansi based on Dropped File (is-8C1UQ.tmp)

calkata kol`kata

Ansi based on Dropped File (is-8C1UQ.tmp)

calkumRa cal`kumRa

Ansi based on Dropped File (is-8C1UQ.tmp)

calkumRar cal`kumRar

Ansi based on Dropped File (is-8C1UQ.tmp)

calkumRO cal`kumRO

Ansi based on Dropped File (is-8C1UQ.tmp)

calkumROr cal`kumROr

Ansi based on Dropped File (is-8C1UQ.tmp)

CallForAttributes

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

CallWindowProcW

Ansi based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

camera kyamera

Ansi based on Dropped File (is-8C1UQ.tmp)

CAMIDw8PDw8PDw8+V0ZYD05AYXgPXk1KDw8PDw8PDwgIuKwYGBgYGBgYGGJva1Q8UmduGBhgWVEY

Ansi based on Dropped File (is-M3VFU.tmp)

Can only call function "ExpandConstant" within parameter lists

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

canada kanaDa

Ansi based on Dropped File (is-8C1UQ.tmp)

cancel kyan`sel

Ansi based on Dropped File (is-8C1UQ.tmp)

Cancel/Try Again/Continue

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

CancelPrompt

Unicode based on Memory/File Scan (Avro Keyboard 5.6.0 Silent - Lava.exe.bin)

CandidateOptions.dat

Unicode based on Runtime Data (Avro Keyboard 5.6.0 - Lava.tmp )

Cannot access a 64-bit key in a "reg" constant on this version of Windows

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

Cannot call "%s" function during Uninstall

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

Cannot call file extractor recursively

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

Cannot debug. Debugger version ($%.8x) does not match Setup version ($%.8x)

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

Cannot evaluate "%s" constant during Uninstall

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

Cannot evaluate "code" constant because of possible side effects

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

Cannot expand "cf64" constant on this version of Windows

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

Cannot expand "dotnet2064" constant on this version of Windows

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

Cannot expand "dotnet4064" constant on this version of Windows

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

Cannot expand "group" constant because it was not available at install time

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

Cannot expand "groupname" constant because it was not available at install time

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

Cannot expand "pf64" constant on this version of Windows

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

Cannot expand "syswow64" constant because there is no SysWOW64 directory

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

Cannot install files to 64-bit locations on this version of Windows

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

Cannot read an encrypted file before the key has been set

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00400000.00000002.mdmp)

Cannot register 64-bit DLLs on this version of Windows

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

Cannot utilize 64-bit features on this version of Windows

Unicode based on Hybrid Analysis (Avro Keyboard 5.6.0 - Lava.tmp , 00022729-00001972.00000001.23357.00401000.00000020.mdmp)

canon kyanon

Ansi based on Dropped File (is-8C1UQ.tmp)

canvas kyanvas

Ansi based on Dropped File (is-8C1UQ.tmp)

capacity kyapasiTi

Ansi based on Dropped File (is-8C1UQ.tmp)

capgeminee kyapjemini

Ansi based on Dropped File (is-8C1UQ.tmp)

capisna capis`na

Ansi based on Dropped File (is-8C1UQ.tmp)

capisne capis`ne

Ansi based on Dropped File (is-8C1UQ.tmp)

capital kyapiTal

Ansi based on Dropped File (is-8C1UQ.tmp)

caplam cap`lam

Ansi based on Dropped File (is-8C1UQ.tmp)

caple cap`le

Ansi based on Dropped File (is-8C1UQ.tmp)

caplei cap`lei

Ansi based on Dropped File (is-8C1UQ.tmp)

caplen cap`len

Ansi based on Dropped File (is-8C1UQ.tmp)

caplo cap`lo

Ansi based on Dropped File (is-8C1UQ.tmp)

caplO cap`lO

Ansi based on Dropped File (is-8C1UQ.tmp)

caps kyap,,s

Ansi based on Dropped File (is-8C1UQ.tmp)

captam cap`tam

Ansi based on Dropped File (is-8C1UQ.tmp)

capte cap`te

Ansi based on Dropped File (is-8C1UQ.tmp)

capten cap`ten

Ansi based on Dropped File (is-8C1UQ.tmp)

capti cap`ti

Ansi based on Dropped File (is-8C1UQ.tmp)

captis cap`tis

Ansi based on Dropped File (is-8C1UQ.tmp)

capture kyapcar

Ansi based on Dropped File (is-8C1UQ.tmp)

CAQJEBAQEBAQEBAkPi0/EDQoSYAQRTNvEBAQEBAQEAgIpJgYGBgYGBgYGEhVUjshOE9UGBhHQDYY

Ansi based on Dropped File (is-M3VFU.tmp)

card karrD

Ansi based on Dropped File (is-8C1UQ.tmp)

cargo karrgO

Ansi based on Dropped File (is-8C1UQ.tmp)

carrier kyariyar

Ansi based on Dropped File (is-8C1UQ.tmp)

carry kyari

Ansi based on Dropped File (is-8C1UQ.tmp)

cartoon karrTun

Ansi based on Dropped File (is-8C1UQ.tmp)

cassette kyaseT

Ansi based on Dropped File (is-8C1UQ.tmp)

castro kastrO

Ansi based on Dropped File (is-8C1UQ.tmp)

catalog kyaTalog

Ansi based on Dropped File (is-8C1UQ.tmp)

catalogue kyaTalog

Ansi based on Dropped File (is-8C1UQ.tmp)

Extracted Files

Displaying 24 extracted file(s). The remaining 34 file(s) are available in the full version and XML/JSON reports.

Informative Selection 1

Avro Keyboard 5.6.0 - Lava.exe

Download Disabled Extended File Details Hash Seen Before

Size
4.9MiB (5177344 bytes)

Type
peexe executable

Description
PE32 executable (GUI) Intel 80386, for MS Windows

Runtime Process
Avro Keyboard 5.6.0 - Lava.exe (PID: 2944)

MD5

5109ccf748dac9ce720d32a2aa95ea3c

SHA1

a161010f1266940f5d98c59068345839a33929c2

SHA256

ff8ef71fcc273be3319e9baebb7cab6a8f7140346c35355c7e9fd24431aed207

Extended File Details

Avro Keyboard 5.6.0 - Lava.exe

Filename: Avro Keyboard 5.6.0 - Lava.exe
Size: 4.9MiB (5177344 bytes)
Type: peexe executable
Description: PE32 executable (GUI) Intel 80386, for MS Windows
Architecture
: 32 Bit
MD5
: 5109ccf748dac9ce720d32a2aa95ea3c
SHA1
: a161010f1266940f5d98c59068345839a33929c2
SHA256
: ff8ef71fcc273be3319e9baebb7cab6a8f7140346c35355c7e9fd24431aed207
SHA512
: ba514cf6aee68a990f5c4db41bb584953852d26d6e26c20749f083c8d6e923b7395fe9d0a70bea9b6fdaeabc278f7f5710d3fe8beb4c062a98eea92955413b3c
ssdeep
: 98304:t9Nwu4V+smiKXPu7pb+FzBLTDvdMDx9VMFpUnFIRAeWO7QfHYFyaTu5/:t9NwV2iK/ct+tNThw9QEIZWOc4FyaTuR
imphash
: 48aa5c8931746a9655524f67b25a47ef
authentihash
: 63bd6edf298b2bd2508c08ba467a20fc54f85a03bbc5e80ee8e3d10fd02bb490
Compiler/Packer
: Borland Delphi 4.0

Version Info

FileVersion: Avro Keyboard 5.6.0
CompanyName: OmicronLab
Comments: This installation was built with Inno Setup.
ProductName: Avro Keyboard
ProductVersion: 5.6.0
FileDescription: Avro Keyboard - UNICODE compliant Open source Bangla typing
Translation: 0x0000 0x04b0

File Sections

Details	Name	Entropy	Virtual Address	Virtual Size	Raw Size	MD5
Name .text Entropy 6.39148264826 Virtual Address 0x1000 Virtual Size 0xf12c Raw Size 0xf200 MD5 3a126e478661f20816f9d9285615f98e	.text	6.39148264826	0x1000	0xf12c	0xf200	3a126e478661f20816f9d9285615f98e
Name .itext Entropy 5.73207084897 Virtual Address 0x11000 Virtual Size 0xb44 Raw Size 0xc00 MD5 ba48b9b17b3dd8b92da3bd93f20ddb34	.itext	5.73207084897	0x11000	0xb44	0xc00	ba48b9b17b3dd8b92da3bd93f20ddb34
Name .data Entropy 2.24631280666 Virtual Address 0x12000 Virtual Size 0xc88 Raw Size 0xe00 MD5 d7fd5f4b562d7961758f3d6a8c834fd0	.data	2.24631280666	0x12000	0xc88	0xe00	d7fd5f4b562d7961758f3d6a8c834fd0
Name .bss Entropy 0 Virtual Address 0x13000 Virtual Size 0x56b4 Raw Size 0x0 MD5 d41d8cd98f00b204e9800998ecf8427e	.bss	0	0x13000	0x56b4	0x0	d41d8cd98f00b204e9800998ecf8427e
Name .idata Entropy 4.97188203377 Virtual Address 0x19000 Virtual Size 0xdd0 Raw Size 0xe00 MD5 93d91a2b90e60bd758fc0c4908856ae1	.idata	4.97188203377	0x19000	0xdd0	0xe00	93d91a2b90e60bd758fc0c4908856ae1
Name .tls Entropy 0 Virtual Address 0x1a000 Virtual Size 0x8 Raw Size 0x0 MD5 d41d8cd98f00b204e9800998ecf8427e	.tls	0	0x1a000	0x8	0x0	d41d8cd98f00b204e9800998ecf8427e
Name .rdata Entropy 0.20448815744 Virtual Address 0x1b000 Virtual Size 0x18 Raw Size 0x200 MD5 3dffc444ccc131c9dcee18db49ee6403	.rdata	0.20448815744	0x1b000	0x18	0x200	3dffc444ccc131c9dcee18db49ee6403
Name .rsrc Entropy 6.94967778395 Virtual Address 0x1c000 Virtual Size 0x1e894 Raw Size 0x1ea00 MD5 4a16ea25715b1f69e03fddf880216fda	.rsrc	6.94967778395	0x1c000	0x1e894	0x1ea00	4a16ea25715b1f69e03fddf880216fda

File Imports

AdjustTokenPrivileges

LookupPrivilegeValueW

OpenProcessToken

RegCloseKey

RegOpenKeyExW

RegQueryValueExW

InitCommonControls

CloseHandle

CreateDirectoryW

CreateEventW

CreateFileW

CreateProcessW

DeleteFileW

EnumCalendarInfoW

ExitProcess

FindClose

FindFirstFileW

FindResourceW

FormatMessageW

FreeLibrary

GetACP

GetCommandLineW

GetCPInfo

GetCurrentProcess

GetCurrentThreadId

GetDiskFreeSpaceW

GetEnvironmentVariableW

GetExitCodeProcess

GetFileAttributesW

GetFileSize

GetFullPathNameW

GetLastError

GetLocaleInfoW

GetModuleFileNameW

GetModuleHandleW

GetProcAddress

GetStartupInfoA

GetStdHandle

GetSystemInfo

GetThreadLocale

GetTickCount

GetUserDefaultLangID

GetVersion

GetVersionExW

GetWindowsDirectoryW

InterlockedCompareExchange

InterlockedExchange

LoadLibraryExW

LoadLibraryW

LoadResource

LocalAlloc

LockResource

lstrcpynW

lstrlenW

MultiByteToWideChar

QueryPerformanceCounter

RaiseException

ReadFile

RemoveDirectoryW

ResetEvent

RtlUnwind

SetEndOfFile

SetErrorMode

SetEvent

SetFilePointer

SetLastError

SignalObjectAndWait

SizeofResource

Sleep

TlsGetValue

TlsSetValue

UnhandledExceptionFilter

VirtualAlloc

VirtualFree

VirtualProtect

VirtualQuery

WaitForSingleObject

WideCharToMultiByte

WriteFile

SysAllocStringLen

SysFreeString

SysReAllocStringLen

CallWindowProcW

CharNextW

CharUpperBuffW

CreateWindowExW

DestroyWindow

DispatchMessageW

ExitWindowsEx

GetKeyboardType

GetSystemMetrics

LoadStringW

MessageBoxA

MessageBoxW

MsgWaitForMultipleObjects

PeekMessageW

SetWindowLongW

TranslateMessage

Informative 23
- is-5A2PQ.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  2MiB (2116226 bytes)
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  6870f8c8bc544dde4192eb270c30cb93
  
  SHA1
  
  e785d5ea8f06c87efed4f9568b87b6a70729e8db
  
  SHA256
  
  ee19a5addec7613f7aea07d55a53fcc28bfc05ce79f8e028ed219bf565df16fb
- is-FKSVD.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  2MiB (2116147 bytes)
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  27c0c87d8dfdfe0a0d494bdb4effaeb5
  
  SHA1
  
  1f4fb7f1e7534cfac7cd963c4174de36ba6e9e6d
  
  SHA256
  
  7313d2e255c3a8e8545d71145e60bf3931d9806c07553caf433f4eb2dae7aa51
- is-H1J09.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  2MiB (2075372 bytes)
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  fcc154784d57000a7687807d6bc904e2
  
  SHA1
  
  23d399b62a84664f3d236926afd3e2baf02d6e17
  
  SHA256
  
  1a30c40e5f605a480dfec534987133368841bee9b4398eb122f0f39174fdae56
- is-JV9FP.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  2MiB (2075443 bytes)
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  a32a1c81e5962480ec79dba012f65f20
  
  SHA1
  
  01d238d52c03fc891ea7ad9c057c82784019b0df
  
  SHA256
  
  b12d480f302a66cc8c3c3c0959e2cf6b8d441ca37199ffacb519612cb79e5825
- is-MMQID.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  1MiB (1064904 bytes)
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  48b60e812b5cb3793bc84f7c9bebf9a1
  
  SHA1
  
  6c439eaab29ea0d24849fc4cb96e98b2209a848a
  
  SHA256
  
  dfea88eced26784a99e07884af52ca01c41b964eab4b10ac3642ca44d622c2d0
- is-1PHDE.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  96KiB (98227 bytes)
  
  Type
  text
  
  Description
  XML 1.0 document, ASCII text, with CRLF line terminators
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  4b36ea14bd7af050079adf58abfd9dcf
  
  SHA1
  
  64a269de5e621df9159b3bc184792e7792be44ac
  
  SHA256
  
  145791285d311b4daf9b579afb39c93d63d838722fccd3bb41b10f1577724842
- is-28RT5.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  208KiB (212867 bytes)
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  6bd3e01335bad8f5f33e8b88a452ef37
  
  SHA1
  
  2392319ee52acf921fd522b74fd3b975301c14db
  
  SHA256
  
  f8677434846191395e53430985edda2b8dc6dcf581ddd36abe7c7fd0bdc3db33
- is-2A2MP.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  157KiB (160381 bytes)
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  88930997c6cf9d8501810149a27b152f
  
  SHA1
  
  ec935c15118b549dc814efb8a92d242ec9b68fba
  
  SHA256
  
  1e83db579042de8f8959318d93ed56e905d968eeefc13c6dad906052e37c755e
- is-BMG85.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  117KiB (119455 bytes)
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  89994b9e25dd7a7ddec78a5510c8586f
  
  SHA1
  
  806923aa3024461e9e6700ba2678635324a80c70
  
  SHA256
  
  33e65ad7a6c74b45b3a9eb3364ac488869f814d65d803b7d28fed82637acec1b
- is-FTIO1.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  208KiB (212874 bytes)
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  e1e315b9eba758b2b5f8b4c1e94570f7
  
  SHA1
  
  3130d4407ef78868b97a24fcd86e63e447acd04e
  
  SHA256
  
  877c7313afceeea52219fe05d4cd3848035d6e776b795764ee1b1451c1db870f
- is-M3VFU.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  155KiB (158614 bytes)
  
  Type
  text
  
  Description
  XML 1.0 document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  cd151f567ed0b20fcc81f4cdbd08f979
  
  SHA1
  
  9fb65aaa5738f2a318cfeab374d49b5ba967ee84
  
  SHA256
  
  f0441835884bba59e73edd9d326530c1a70ed41b6fc7643edd7181eb02970af4
- is-OODVK.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  208KiB (212873 bytes)
  
  Type
  text
  
  Description
  XML 1.0 document, ASCII text, with CRLF line terminators
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  b63a971db98a86a2ad01f7d29c060473
  
  SHA1
  
  46a03f3f3cdd8992ac4252d9ee38070f37241a66
  
  SHA256
  
  5bc0f2e89967098c1c65ebdbb5b32da350712c3304c9e7e4f2103dce01ffaf70
- is-PTAHT.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  191KiB (196019 bytes)
  
  Type
  text
  
  Description
  XML 1.0 document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  c36714900875b55f68463b29c353e5f7
  
  SHA1
  
  9477734a336062aa5c602376b211b8bfdafe32dd
  
  SHA256
  
  f52a2a373ade444ff33457936e67657b047a10ab4f287dc1c3cfbd5ab610d5f3
- is-Q8BBR.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  208KiB (212876 bytes)
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  7bf7f0deb9340d9f2f13e346220bfa86
  
  SHA1
  
  489a14f269f70886d269b12a41e70710b0e1b159
  
  SHA256
  
  4bc84f23079b0ae1a8e488005cfbf5a8c9a2bf4284edada242c920d16f18c4b2
- is-SFD4L.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  100KiB (102235 bytes)
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  4858ddf8937ef54c62afbfcdf227736d
  
  SHA1
  
  8aab3e5d5bbebab5ba1867f066767ae94cd5c040
  
  SHA256
  
  9680bb8631aa6f5cad6861265d294bd8e14a1835b7f21c5f18c06bb891545c3c
- is-VH78A.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  124KiB (127203 bytes)
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  fc950b2a30de62fa445b8382f8bc8e4e
  
  SHA1
  
  381e2ec18b85c66aefb174468012d16c1854c40f
  
  SHA256
  
  0b5ed4a0a68a04adbf28011504a7265faf5fa0759aa1efebe96a54c817d09b49
- is-8C1UQ.tmp
  
  Download Disabled Hash Seen Before
  
  Size
  41KiB (41969 bytes)
  
  Type
  text
  
  Description
  Non-ISO extended-ASCII text, with CRLF line terminators
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  a14dfbec8d64baf0d036f321cbd80b59
  
  SHA1
  
  4e9476d3627f8d0c9af71b67a63ad1d5d1f64f04
  
  SHA256
  
  a1be6481291e57759cd1c21884cc5e8edc6d2b92c575bef8a2eeec31c247b456
- Avro Keyboard on the Web.lnk
  
  Download Disabled Hash Seen Before
  
  Size
  928B (928 bytes)
  
  Type
  lnk
  
  Description
  MS Windows shortcut, Item id list present, Has Description string, Has Relative path, Has Working directory, ctime=Mon Jan 1 00:00:00 1601, mtime=Mon Jan 1 00:00:00 1601, atime=Mon Jan 1 00:00:00 1601, length=0, window=hide
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  b748c8ee5b27d2f8e32e8169e95758bf
  
  SHA1
  
  6cb58e741f01a16cee0c3bc3727b908599d8b7fe
  
  SHA256
  
  584f5cb50607fd43adb5d01563974bbb995d7e1556a560a7969035fdf8a4eb6f
- Configuring your system.lnk
  
  Download Disabled Hash Seen Before
  
  Size
  1.1KiB (1110 bytes)
  
  Type
  lnk
  
  Description
  MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Mon Sep 2 17:55:23 2019, mtime=Mon Sep 2 17:55:23 2019, atime=Fri Sep 24 15:25:48 2010, length=3785, window=hide
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  0239e9cc9e8b43009e6adf99e756b73a
  
  SHA1
  
  514c8473641478b60b1ff1c7d20d19bfd42b9830
  
  SHA256
  
  a2bfabe55006f4d8db9bdc837cb371d3711fef02456f384c2f2c3fffd982b12c
- Layout Editor.lnk
  
  Download Disabled Hash Seen Before
  
  Size
  1.1KiB (1143 bytes)
  
  Type
  lnk
  
  Description
  MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has Working directory, Archive, ctime=Mon Sep 2 17:55:22 2019, mtime=Mon Sep 2 17:55:22 2019, atime=Mon Aug 26 20:40:50 2019, length=1519728, window=hide
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  ed716eba48b7ff8eee8d2ac0a590de26
  
  SHA1
  
  0fdbee3ff1c3c552ebee3b0620f529429f05b89f
  
  SHA256
  
  57a957158312508965eeb68911528dfe96327f79b27187437326207bf26fb193
- Skin Designer.lnk
  
  Download Disabled Hash Seen Before
  
  Size
  1.1KiB (1155 bytes)
  
  Type
  lnk
  
  Description
  MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has Working directory, Archive, ctime=Mon Sep 2 17:55:22 2019, mtime=Mon Sep 2 17:55:22 2019, atime=Mon Aug 26 20:40:52 2019, length=1382000, window=hide
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  c76bf4efde26aa72ccf44e6c7a7a3390
  
  SHA1
  
  447b64025ffd0fd478b8d53de08151249784e8d6
  
  SHA256
  
  7af9bb9a567d00d9c899c90188f80a7042d6fa6e9096ed10fe939c866838b148
- Avro Keyboard.lnk
  
  Download Disabled Hash Seen Before
  
  Size
  1.2KiB (1181 bytes)
  
  Type
  lnk
  
  Description
  MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has Working directory, Archive, ctime=Mon Sep 2 17:55:22 2019, mtime=Mon Sep 2 17:55:22 2019, atime=Mon Aug 26 20:40:46 2019, length=4627568, window=hide
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  ef49b688e52cd5f7e606943835c0ed00
  
  SHA1
  
  b487aaf6825ed5cde59486f1b7d47cd0fcad38e3
  
  SHA256
  
  d91f42424bb4f8e13b96307f4484f61e987cd7dbe28d5c80c67b12b9b7b36093
- Avro Spell Checker.lnk
  
  Download Disabled Hash Seen Before
  
  Size
  1.2KiB (1206 bytes)
  
  Type
  lnk
  
  Description
  MS Windows shortcut, Item id list present, Points to a file or directory, Has Description string, Has Relative path, Has Working directory, Archive, ctime=Mon Sep 2 17:55:22 2019, mtime=Mon Sep 2 17:55:22 2019, atime=Mon Aug 26 20:40:44 2019, length=1065072, window=hide
  
  Runtime Process
  Avro Keyboard 5.6.0 - Lava.tmp (PID: 1972)
  
  MD5
  
  8e1bd2cb3d0260bcf51a76ba5a84eecc
  
  SHA1
  
  b7c60ded4a92dc523f55b879080f1a754ab21665
  
  SHA256
  
  a6b1f0e54af0373db3ec3bd679c88cd6ab6e9dc09e93133e08ea4ad344b88bc1

Notifications

Runtime

Network whitenoise filtering (Process) was applied

Not all IP/URL string resources were checked online

Not all sources for indicator ID "api-11" are available in the report

Not all sources for indicator ID "api-25" are available in the report

Not all sources for indicator ID "api-55" are available in the report

Not all sources for indicator ID "binary-0" are available in the report

Not all sources for indicator ID "hooks-8" are available in the report

Not all sources for indicator ID "registry-72" are available in the report

Not all sources for indicator ID "static-6" are available in the report

Not all strings are visible in the report, because the maximum number of strings was reached (5000)

Some low-level data is hidden, as this is only a slim report

Community

There are no community comments.

You must be logged in to submit a comment.

Avro Keyboard 5.6.0 Silent - Lava.exe

Incident Response

Risk Assessment

MITRE ATT&CK™ Techniques Detection

Additional Context

Related Sandbox Artifacts

Indicators

Malicious Indicators 5

Suspicious Indicators 29

Informative 27

File Details

Avro Keyboard 5.6.0 Silent - Lava.exe

Resources

Visualization

Version Info

Classification (TrID)

File Sections

File Resources

File Imports

Screenshots

System Resource Monitor

Hybrid Analysis

Network Analysis

DNS Requests

Contacted Hosts

HTTP Traffic

Extracted Strings

Extracted Files

Informative Selection 1

Avro Keyboard 5.6.0 - Lava.exe

Informative 23

is-5A2PQ.tmp

is-FKSVD.tmp

is-H1J09.tmp

is-JV9FP.tmp

Notifications

Runtime

Community

Latest News

Vetting required

Request Report Deletion

Link