Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: Rootkit problems

30 Sep 2010   #1
Dick Jagger

Windows 7 Ultimate
Rootkit problems

I got what I believe is a rootkit virus, RtkBtMnt.exe, that has installed itself in my temp folder and is associated with a running process Realtek HD Audio Data Rerouter. I don't think Realtek would design their program to run from the temp folder which is routinely cleaned.

I ran a full scan with MSE, which did not find it.
I ran Malwarebytes and used the Fileassassin tool to delete it but it doesn't stay deleted - reappears after rebooting.

There is also this txt file in the temp folder which also cannot be deleted: FXSAPIDebugLogFile.txt.

Any good trouble shooters here that can offer some suggestions?


My System SpecsSystem Spec
30 Sep 2010   #2

Windows 8 Pro

I really don't think it's anything to worry about.

rtkbtmnt.exe - Realtek HD Audio Data Rerouter

Supposedly the process is responsible for routing your audio through bluetooth.
My System SpecsSystem Spec
30 Sep 2010   #3
Dick Jagger

Windows 7 Ultimate

Thanks for your reply... but should it be running from the User/Temp folder and be completely un-deletable? I found this guy had a real problem with it:
Since it appears in the temp file, it starts creating labuage.bin files, useless foulders and rubbish that fill up your disk at great speed. If you try to delete it, you can't. Unlocker is useless against it. If you restart your pc in safe mode, file is unavailable, nor can it be found.
So far, the only I was able to do, was to open the task manager whenever I start my pc, and stop its process. That seems to stop its creating new rubbish.
I don't know why people that seem to know a lot, keep on stating it;s a normal process. No Realtek file is so protected, or installed in a temp folder. Please, post your solution if you happen to find it.
Also, in process explorer, it had a slightly different name than the HD Audio Control Panel process of which it is listed as a child (Realtek Semiconductor vs. Realtek Semiconductor Corp.)
My System SpecsSystem Spec

10 Oct 2014   #4

Windows xp Vista and 7

I had that a few months ago. I ended up having to delete the sound driver. Have not seen the process or item in my temp folder since. Not t worry the driver re-installs itself on reboot
My System SpecsSystem Spec
10 Oct 2014   #5
Borg 386

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1, Win 10

D/L & run TDSSKiller & see what it finds.

TDSSKiller Download

NOTE: When running TDSSKiller, launch the program, click on the blue text "Change Parameters" & check the box marked "Detect TDLFS File system." Click OK & then run the scan.
My System SpecsSystem Spec

 Rootkit problems

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Similar help and support threads
Thread Forum
I think I have a rootkit
I am almost positive that I have a rootkit. I know this because it has happened before. I tried both gmer and avast for rootkit removal and they both got so far and then froze up and had to force a shutdown of the programs. What should I do? I am in the middle of a semester right now and have a...
System Security
ZA Reg Rootkit???
cannot access the internet using any browser, need some help, see capture below: Diagnostic Report (1.9.0027.0): ----------------------------------------- Windows Validation Data--> Validation Code: 0 Cached Online Validation Code: N/A, hr = 0x8007043c Windows Product Key:...
System Security
Hi Guys, Multiple Problems Due to Rootkit!
Hi... I recently scanned my PC with AVG to find several Rootkits so had them all removed and Rebooted the PC, when the PC comes back on, My theme is stuck on Windows classic and i am unable to change it, Also, my task bar says my my sound is disabled.. but it works? :S I was trying to solve...
Performance & Maintenance
Require (Rootkit.TDSS.TDL4) Rootkit Removal & Cleanup walkthrough
I would really appreciate some help from someone with experience with this matter. Introduction: Origin: False sense of security by AVG (updated), Windows kept updated, Browser settings, firewall, and self system maintainence. Presentation: Installed a 2nd HDD (Exclusively for daily...
System Security
i heard rootkits cant install themselves on 64 bit OS'S, is this true?
System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 02:18.

Twitter Facebook Google+

Windows 7 Forums

Seven Forums Android App Seven Forums IOS App