Technical Information
- [<HKLM>\SYSTEM\ControlSet001\Services\RSUSBSTOR] 'ImagePath' = 'System32\Drivers\RtsUStor.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\RtsUIR] 'ImagePath' = 'system32\DRIVERS\Rts516xIR.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\USBCCID] 'ImagePath' = 'system32\DRIVERS\RtsUCcid.sys'
- %TEMP%\7zS87BCEEE1\DATA1.CAB
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\_REGISTRY_USER_.DEFAULT
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\_REGISTRY_USER_USRCLASS_S-1-5-21-2052111302-484763869-725345543-1003
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\_REGISTRY_USER_NTUSER_S-1-5-21-2052111302-484763869-725345543-1003
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\_REGISTRY_USER_USRCLASS_S-1-5-20
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\_REGISTRY_USER_NTUSER_S-1-5-20
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\_REGISTRY_USER_USRCLASS_S-1-5-19
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\_REGISTRY_USER_NTUSER_S-1-5-19
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\_REGISTRY_USER_NTUSER_S-1-5-18
- %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\Dispef5c.rra
- %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\SDRTef2d.rra
- %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUed78.rra
- %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUed58.rra
- %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUed39.rra
- %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUed0a.rra
- %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUeceb.rra
- %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\REVCeccc.rra
- %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\_IsRe634.rra
- %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\defae615.rra
- %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\isrte5c7.rra
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\_REGISTRY_MACHINE_SECURITY
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\_REGISTRY_MACHINE_SOFTWARE
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\_REGISTRY_MACHINE_SYSTEM
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\_REGISTRY_MACHINE_SAM
- <SYSTEM32>\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem3.CAT
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\Repository\FS\OBJECTS.MAP
- %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setup.ini
- %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setu797.rra
- %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setu768.rra
- %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\ISSe72a.rra
- %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\_Set6dc.rra
- %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setu69d.rra
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\Repository\FS\OBJECTS.DATA
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\Repository\FS\MAPPING1.MAP
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\Repository\FS\MAPPING2.MAP
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\Repository\FS\MAPPING.VER
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\Repository\FS\INDEX.MAP
- %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\data5a3.rra
- %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\data594.rra
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\Repository\FS\INDEX.BTR
- %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\layo574.rra
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\Repository\$WinMgmt.CFG
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\domain.txt
- C:\System Volume Information\_restore{E7F0F64C-F7E5-4319-8757-E9A20C1C4E14}\RP16\snapshot\ComDb.Dat
- %WINDIR%\inf\oem3.inf
- %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\Strie5a8.rra
- %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\DIFxe579.rra
- %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\Fonte55a.rra
- %TEMP%\7zS87BCEEE1\DRIVERBIN_32BIT\RTSUSTOR.SYS
- %TEMP%\7zS87BCEEE1\DRIVERBIN_32BIT\RTSUSTOR.DLL
- %TEMP%\7zS87BCEEE1\DRIVERBIN_32BIT\REVCON.EXE
- %TEMP%\7zS87BCEEE1\SETUP.ISS
- %TEMP%\7zS87BCEEE1\SETUP.INX
- %TEMP%\7zS87BCEEE1\SETUP.INI
- %TEMP%\7zS87BCEEE1\README.TXT
- %TEMP%\7zS87BCEEE1\LAYOUT.BIN
- %TEMP%\7zS87BCEEE1\DRIVERBIN_64BIT\VISTA\RTSUSTOR.INF
- %TEMP%\7zS87BCEEE1\DRIVERBIN_64BIT\VISTA\RTSUSTOR.CAT
- %TEMP%\7zS87BCEEE1\DRIVERBIN_64BIT\RTSUSTOR.INF
- %TEMP%\7zS87BCEEE1\DRIVERBIN_64BIT\RTSUSTOR.CAT
- %TEMP%\7zS87BCEEE1\DRIVERBIN_32BIT\VISTA\RTSUSTOR.INF
- %TEMP%\7zS87BCEEE1\DRIVERBIN_32BIT\VISTA\RTSUSTOR.CAT
- %TEMP%\7zS87BCEEE1\DRIVERBIN_32BIT\RTSUSTOR.INF
- %TEMP%\7zS87BCEEE1\DRIVERBIN_32BIT\RTSUSTOR.CAT
- %TEMP%\7zS87BCEEE1\DISPLAYICON.ICO
- %TEMP%\7zS87BCEEE1\DATA2.CAB
- %TEMP%\7zS87BCEEE1\DATA1.HDR
- %TEMP%\7zS87BCEEE1\DRIVERBIN_32BIT\RTSUSTORICON.DLL
- %TEMP%\7zS87BCEEE1\DRIVERBIN_32BIT\SDRTCPRM.DLL
- %TEMP%\7zS87BCEEE1\DRIVERBIN_32BIT\VISTA\RTSUSTOR.DLL
- %TEMP%\7zS87BCEEE1\DRIVERBIN_32BIT\VISTA\RTSUSTOR.SYS
- %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\coree50b.rra
- %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\licee4dd.rra
- %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setue49e.rra
- %TEMP%\e2ba.rra
- %TEMP%\{42580A0F-43FD-4C9A-9DDC-322D57B86696}\setup.ini
- %TEMP%\{42580A0F-43FD-4C9A-9DDC-322D57B86696}\_Setup.dll
- %TEMP%\7zS87BCEEE1\_SETUP.DLL
- %TEMP%\7zS87BCEEE1\SETUP.EXE
- %TEMP%\7zS87BCEEE1\SETEHCIKEY.EXE
- %TEMP%\7zS87BCEEE1\ISSETUP.DLL
- %TEMP%\7zS87BCEEE1\RMBCHANGE.EXE
- %TEMP%\7zS87BCEEE1\DRIVERBIN_64BIT\VISTA\RTSUSTORICON.DLL
- %TEMP%\7zS87BCEEE1\DRIVERBIN_64BIT\VISTA\RTSUSTOR.SYS
- %TEMP%\7zS87BCEEE1\DRIVERBIN_64BIT\VISTA\RTSUSTOR.DLL
- %TEMP%\7zS87BCEEE1\DRIVERBIN_64BIT\RTSUSTORICON.DLL
- %TEMP%\7zS87BCEEE1\DRIVERBIN_64BIT\RTSUSTOR.SYS
- %TEMP%\7zS87BCEEE1\DRIVERBIN_64BIT\RTSUSTOR.DLL
- %TEMP%\7zS87BCEEE1\DRIVERBIN_64BIT\REVCON.EXE
- %TEMP%\7zS87BCEEE1\DRIVERBIN_32BIT\VISTA\SDRTCPRM.DLL
- %TEMP%\7zS87BCEEE1\DRIVERBIN_32BIT\VISTA\RTSUSTORICON.DLL
- %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\dotne52b.rra
- %WINDIR%\inf\oem3.PNF
- <SYSTEM32>\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem3.CAT
- from %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setue49e.rra to %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setup.inx
- from %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\ISSe72a.rra to %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\ISSetup.dll
- from %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\_Set6dc.rra to %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\_Setup.dll
- from %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setu69d.rra to %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setup.exe
- from %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\data5a3.rra to %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\data1.cab
- from %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\data594.rra to %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\data1.hdr
- from %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\layo574.rra to %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\layout.bin
- from %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\Dispef5c.rra to %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\DisplayIcon.ico
- from %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\SDRTef2d.rra to %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\SDRTCPRM.DLL
- from %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUed78.rra to %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUSTORICON.DLL
- from %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUed58.rra to %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUSTOR.SYS
- from %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUed39.rra to %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUSTOR.INF
- from %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUed0a.rra to %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUSTOR.DLL
- from %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUeceb.rra to %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\RTSUSTOR.CAT
- from %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\REVCeccc.rra to %ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\REVCON.EXE
- from %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\_IsRe634.rra to %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\_IsRes.dll
- from %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\defae615.rra to %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\default.pal
- from %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\isrte5c7.rra to %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\isrt.dll
- from %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\Strie5a8.rra to %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\StringTable-0009-English.ips
- from %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\DIFxe579.rra to %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\DIFxData.ini
- from %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\Fonte55a.rra to %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\FontData.ini
- from %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\dotne52b.rra to %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\dotnetinstaller.exe
- from %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\coree50b.rra to %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\corecomp.ini
- from %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\licee4dd.rra to %TEMP%\{3B729A7A-7BAD-4FCD-B848-BECAEBAFA8DC}\{96AE7E41-E34E-47D0-AC07-1091A8127911}\license.rtf
- from %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setu768.rra to %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setup.inx
- from %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setu797.rra to %ProgramFiles%\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setup.ini
- '%TEMP%\7zS87BCEEE1\SETUP.EXE'
- '%ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\REVCON.EXE' RS_dp_add RTSUSTOR.inf
- '%ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\REVCON.EXE' RS_update RTSUSTOR.inf USB\VID_0BDA&PID_0103
- '%ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\REVCON.EXE' RS_update RTSUSTOR.inf USB\VID_0BDA&PID_0104
- '%ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\REVCON.EXE' RS_update RTSUSTOR.inf USB\VID_0BDA&PID_0105
- '%ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\REVCON.EXE' RS_update RTSUSTOR.inf USB\VID_0BDA&PID_0125
- '%ProgramFiles%\Realtek\Realtek USB 2.0 Card Reader\REVCON.EXE' RS_update RTSUSTOR.inf USB\VID_0BDA&PID_0106