Technical Information
- [<HKLM>\System\CurrentControlSet\Services\RSBASTOR] 'ImagePath' = 'system32\DRIVERS\RtsBaStor.sys'
- [<HKLM>\System\CurrentControlSet\Services\IconMan_R] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\IconMan_R] 'ImagePath' = '"%ProgramFiles(x86)%\Realtek\Realtek PCIE Card Reader\RIconMan.exe"'
- %TEMP%\7zs45772fff\apbin\config.ini
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\dispb7b.rra
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\confb6c.rra
- <DRIVERS>\rtsbb5c.rra
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\rtsbb5c.rra
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\rtsba04.rra
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\rtsb9f5.rra
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\rtsb9e5.rra
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\revc9e5.rra
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\rscr9d5.rra
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\rico987.rra
- %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\_isr61c.rra
- %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\defa61c.rra
- %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\isrt60d.rra
- %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\stri60d.rra
- %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\isbe5fd.rra
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\rmbcb7b.rra
- %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\usetbba.rra
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\config.ini
- %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\layocd3.rra
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\rmb.log
- %WINDIR%\syswow64\sda\sdrt6275.rra
- <SYSTEM32>\catroot\{f750e6c3-38ee-11d1-85e5-00c04fc295ee}\oem2.cat
- %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\set3a6e.tmp
- %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\set3905.tmp
- %WINDIR%\temp\udd16f5.tmp
- %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\set1b7a.tmp
- %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\set16f5.tmp
- %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\setup.ini
- %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\setud9e.rra
- %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\setud8e.rra
- %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\issed6f.rra
- %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\_setd6f.rra
- %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\setud50.rra
- %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\datacd3.rra
- %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\dotn5fd.rra
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\sdrtbaa.rra
- %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\core5fd.rra
- %TEMP%\7zs45772fff\apbin\sdrtcprm.dll
- %TEMP%\7zs45772fff\usetup.iss
- %TEMP%\7zs45772fff\u2setup.iss
- %TEMP%\7zs45772fff\setup.iss
- %TEMP%\7zs45772fff\setup.inx
- %TEMP%\7zs45772fff\setup.ini
- %TEMP%\7zs45772fff\readme.txt
- %TEMP%\7zs45772fff\layout.bin
- %TEMP%\7zs45772fff\driverbin_64bit\rtsbastormsi.inf
- %TEMP%\7zs45772fff\driverbin_64bit\rtsbastor64.cat
- %TEMP%\7zs45772fff\driverbin_32bit\rtsbastormsi.inf
- %TEMP%\7zs45772fff\driverbin_32bit\rtsbastor32.cat
- %TEMP%\7zs45772fff\data2.cab
- %TEMP%\7zs45772fff\data1.hdr
- %TEMP%\7zs45772fff\data1.cab
- %TEMP%\7zs45772fff\apbin\displayicon.ico
- %TEMP%\7zs45772fff\apbin\rmbchange_pcie.exe
- %TEMP%\7zs45772fff\apbin_32bit\riconman.exe
- %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\setu5de.rra
- %TEMP%\7zs45772fff\apbin_32bit\rscrlib.dll
- %TEMP%\561.rra
- %TEMP%\{7c75a3f1-a07d-403d-a0f8-fdf4ea866b40}\setup.ini
- %TEMP%\{7c75a3f1-a07d-403d-a0f8-fdf4ea866b40}\_setup.dll
- %TEMP%\7zs45772fff\_setup.dll
- %TEMP%\7zs45772fff\setup.exe
- %TEMP%\7zs45772fff\issetup.dll
- %TEMP%\7zs45772fff\driverbin_64bit\rtsbastoricon.dll
- %TEMP%\7zs45772fff\driverbin_64bit\rtsbastor.sys
- %TEMP%\7zs45772fff\driverbin_64bit\revcon.exe
- %TEMP%\7zs45772fff\driverbin_32bit\sdrtcprm.dll
- %TEMP%\7zs45772fff\driverbin_32bit\rtsbastoricon.dll
- %TEMP%\7zs45772fff\driverbin_32bit\rtsbastor.sys
- %TEMP%\7zs45772fff\driverbin_32bit\revcon.exe
- %TEMP%\7zs45772fff\apbin_64bit\rscrlib.dll
- %TEMP%\7zs45772fff\apbin_64bit\riconman.exe
- %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\lice5ed.rra
- %ProgramFiles(x86)%\realtek\realtek pcie card reader\iconman.log
- <SYSTEM32>\catroot\{f750e6c3-38ee-11d1-85e5-00c04fc295ee}\oem2.cat
- %WINDIR%\temp\udd16f5.tmp
- %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\rtsbastor.sys
- %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\rtsbastor64.cat
- %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\rtsbastoricon.dll
- %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\rtsbastormsi.inf
- from %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\setu5de.rra to %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\setup.inx
- from %ProgramFiles(x86)%\realtek\realtek pcie card reader\rmbcb7b.rra to %ProgramFiles(x86)%\realtek\realtek pcie card reader\rmbchange_pcie.exe
- from %ProgramFiles(x86)%\realtek\realtek pcie card reader\sdrtbaa.rra to %ProgramFiles(x86)%\realtek\realtek pcie card reader\sdrtcprm.dll
- from %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\usetbba.rra to %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\usetup.iss
- from %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\layocd3.rra to %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\layout.bin
- from %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\datacd3.rra to %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\data1.hdr
- from %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\datacd3.rra to %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\data1.cab
- from %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\_setd6f.rra to %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\_setup.dll
- from %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\set3a6e.tmp to %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\rtsbastor64.cat
- from %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\issed6f.rra to %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\issetup.dll
- from %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\setud8e.rra to %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\setup.inx
- from %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\setud9e.rra to %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\setup.ini
- from %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\set16f5.tmp to %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\rtsbastormsi.inf
- from %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\set1b7a.tmp to %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\rtsbastoricon.dll
- from %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\set3905.tmp to %TEMP%\{245259ca-2e71-5b98-491f-4334e8a3f828}\rtsbastor.sys
- from %ProgramFiles(x86)%\realtek\realtek pcie card reader\dispb7b.rra to %ProgramFiles(x86)%\realtek\realtek pcie card reader\displayicon.ico
- from %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\setud50.rra to %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\setup.exe
- from %ProgramFiles(x86)%\realtek\realtek pcie card reader\confb6c.rra to %ProgramFiles(x86)%\realtek\realtek pcie card reader\config.ini
- from %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\defa61c.rra to %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\default.pal
- from %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\lice5ed.rra to %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\license.rtf
- from %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\core5fd.rra to %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\corecomp.ini
- from %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\dotn5fd.rra to %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\dotnetinstaller.exe
- from %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\isbe5fd.rra to %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\isbew64.exe
- from %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\stri60d.rra to %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\stringtable-0009-english.ips
- from %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\isrt60d.rra to %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\isrt.dll
- from %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\_isr61c.rra to %TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\_isres.dll
- from %ProgramFiles(x86)%\realtek\realtek pcie card reader\rtsbb5c.rra to %ProgramFiles(x86)%\realtek\realtek pcie card reader\rtsbastormsi.inf
- from %ProgramFiles(x86)%\realtek\realtek pcie card reader\rico987.rra to %ProgramFiles(x86)%\realtek\realtek pcie card reader\riconman.exe
- from %ProgramFiles(x86)%\realtek\realtek pcie card reader\rscr9d5.rra to %ProgramFiles(x86)%\realtek\realtek pcie card reader\rscrlib.dll
- from %ProgramFiles(x86)%\realtek\realtek pcie card reader\revc9e5.rra to %ProgramFiles(x86)%\realtek\realtek pcie card reader\revcon.exe
- from %ProgramFiles(x86)%\realtek\realtek pcie card reader\rtsb9e5.rra to %ProgramFiles(x86)%\realtek\realtek pcie card reader\rtsbastor.sys
- from %ProgramFiles(x86)%\realtek\realtek pcie card reader\rtsb9f5.rra to %ProgramFiles(x86)%\realtek\realtek pcie card reader\rtsbastor64.cat
- from %ProgramFiles(x86)%\realtek\realtek pcie card reader\rtsba04.rra to %ProgramFiles(x86)%\realtek\realtek pcie card reader\rtsbastoricon.dll
- from <DRIVERS>\rtsbb5c.rra to <DRIVERS>\rtsbastor.sys
- from %WINDIR%\syswow64\sda\sdrt6275.rra to %WINDIR%\syswow64\sda\sdrtcprm.dll
- %ProgramFiles(x86)%\installshield installation information\{0d61a55c-3adc-409f-bf5b-a1766d1f5944}\datacd3.rra
- '%TEMP%\7zs45772fff\setup.exe'
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\revcon.exe' RS_update RtsBaStorMSI.inf PCI\VEN_10EC&DEV_5286&CC_FF00
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\riconman.exe' /uninstall
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\rmbchange_pcie.exe' /install
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\revcon.exe' RS_remove PCI\VEN_10EC&DEV_5286&CC_FF00
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\riconman.exe' /install
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\riconman.exe'
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\revcon.exe' RS_update RtsBaStorMSI.inf PCI\VEN_10EC&DEV_5289&CC_FF00
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\revcon.exe' RS_dp_add RtsBaStorMSI.inf
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\revcon.exe' RS_remove PCI\VEN_10EC&DEV_5289&CC_FF00
- '%TEMP%\{25eb82db-2b77-41df-a6e7-d0a332adf9ed}\isbew64.exe' {EFB7539B-24F3-46B6-AF6E-3B021B51EFEF}:{24F792AB-C40F-4EB2-AD56-DA11EBD066D4}
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\rmbchange_pcie.exe' /install' (with hidden window)
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\riconman.exe' /uninstall' (with hidden window)
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\revcon.exe' RS_remove PCI\VEN_10EC&DEV_5289&CC_FF00' (with hidden window)
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\revcon.exe' RS_update RtsBaStorMSI.inf PCI\VEN_10EC&DEV_5289&CC_FF00' (with hidden window)
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\riconman.exe' /install' (with hidden window)
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\revcon.exe' RS_remove PCI\VEN_10EC&DEV_5286&CC_FF00' (with hidden window)
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\revcon.exe' RS_dp_add RtsBaStorMSI.inf' (with hidden window)
- '%ProgramFiles(x86)%\realtek\realtek pcie card reader\revcon.exe' RS_update RtsBaStorMSI.inf PCI\VEN_10EC&DEV_5286&CC_FF00' (with hidden window)