Should I block it?

No, this file is 100% safe to run.

Relationships

Parent process
Related files

PE structurePE file structure
Show functions
Import table
advapi32.dll
RegDeleteKeyW, RegEnumKeyW, RegOpenKeyExA, RegOpenKeyExW, RegQueryValueW, RegCloseKey, RegQueryValueExW, RegSetValueExW, RegCreateKeyExW, RegDeleteValueW, RegNotifyChangeKeyValue, InitializeSecurityDescriptor, SetSecurityDescriptorDacl, OpenSCManagerW, OpenServiceW, CloseServiceHandle, StartServiceW, RegEnumKeyExW, RegOpenKeyW, RegSetValueExA, RegQueryValueExA
comctl32.dll
InitCommonControlsEx, _TrackMouseEvent
comdlg32.dll
GetFileTitleW
dwmapi.dll
DwmExtendFrameIntoClientArea
gdi32.dll
CreateFontW, GetOutlineTextMetricsA, Ellipse, Escape, PatBlt, TextOutW, RectVisible, PtVisible, SetPixel, GetPixel, GetBkMode, GetDeviceCaps, CreatePen, GetCurrentObject, ExtTextOutW, GetTextExtentPoint32W, CreateFontIndirectW, CreateSolidBrush, SetDIBColorTable, GetMapMode, GetRandomRgn, SwapBuffers, CreateCompatibleBitmap, ExtCreateRegion, CreateDIBSection, GetObjectW, CombineRgn, CreateRectRgn, SetTextColor, SetBkMode, SetPixelFormat, GetDIBits, DeleteObject, CreateCompatibleDC, ChoosePixelFormat, DescribePixelFormat, DPtoLP, SelectObject, DeleteDC, GetStockObject, BitBlt, GetTextMetricsA, CreatePolygonRgn, RectInRegion, GetRgnBox, EqualRgn, SetRectRgn, OffsetRgn, GetRegionData, CreateBitmap, GetClipBox, SetBkColor, SaveDC, CreateFontIndirectA, RestoreDC, SetMapMode, LineTo, MoveToEx, SetTextAlign, SetViewportOrgEx, OffsetViewportOrgEx, SetViewportExtEx, ScaleViewportExtEx, SetWindowOrgEx, SetWindowExtEx, ScaleWindowExtEx, GetTextExtentPoint32A
gdiplus.dll
GdipDrawImage, GdipDeleteBrush, GdipDrawString, GdipSetTextRenderingHint, GdipDeleteStringFormat, GdipCreateFontFromDC, GdipSetStringFormatAlign, GdipDeleteFont, GdipCreateStringFormat, GdipCreateFontFromLogfontW, GdipCloneBrush, GdiplusStartup, GdiplusShutdown, GdipCreateHBITMAPFromBitmap, GdipGetImageWidth, GdipGetImageHeight, GdipAlloc, GdipGetImageGraphicsContext, GdipFree, GdipDrawImageRectI, GdipCreateBitmapFromScan0, GdipDeleteGraphics, GdipDisposeImage, GdipCloneImage, GdipCreateBitmapFromStream, GdipCreateBitmapFromHBITMAP, GdipCreateFromHDC, GdipSetInterpolationMode, GdipDrawImageI, GdipBitmapUnlockBits, GdipBitmapLockBits, GdipGetImagePalette, GdipGetImagePaletteSize, GdipGetImagePixelFormat, GdipDrawImageRectRectI, GdipCreateImageAttributes, GdipDisposeImageAttributes, GdipSetImageAttributesColorMatrix, GdipImageRotateFlip, GdipDrawImageRectRect, GdipCreateMatrix2, GdipDeleteMatrix, GdipRotateMatrix, GdipTransformMatrixPointsI, GdipDrawImagePointsI, GdipCreateBitmapFromHICON, GdipCreateSolidFill, GdipSetStringFormatFlags, GdipSetStringFormatLineAlign
imm32.dll
ImmDisableIME
kernel32.dll
DllMain
msimg32.dll
AlphaBlend
ole32.dll
CoInitializeEx, CoCreateInstance, CoUninitialize, CreateStreamOnHGlobal, PropVariantClear, CLSIDFromString, CoTaskMemFree, StringFromGUID2, CoInitialize, CoFreeUnusedLibrariesEx, FreePropVariantArray, PropVariantCopy
opengl32.dll
glVertex2d, glTexImage2D, glTexEnvf, glGetFloatv, glScaled, glEnable, wglGetCurrentContext, wglDeleteContext, wglGetProcAddress, wglCreateContext, glLoadIdentity, glEnableClientState, wglMakeCurrent, glBlendFunc, glFlush, glGetString, glOrtho, glMatrixMode, glViewport, glDrawArrays, glVertexPointer, glBindTexture, glTexCoord2f, glTranslated, glVertex3d, glClearColor, glVertex2s, glPushMatrix, glScissor, glLogicOp, glStencilFunc, glTexCoord2d, glDeleteTextures, glColor3ub, glPointSize, glLineStipple, glColor4f, glTranslatef, glCopyTexSubImage2D, glTexParameteri, glGenTextures, glEnd, glCopyTexImage2D, glPolygonMode, glStencilOp, glPopMatrix, glClearStencil, glColor3f, glPopAttrib, glColor4ub, glDisable, glVertex2f, glPushAttrib, glIsTexture, glClear, glLineWidth, glBegin
setupapi.dll
SetupDiDestroyDeviceInfoList, SetupDiGetDeviceInterfaceDetailW, SetupDiEnumDeviceInterfaces, SetupDiGetDeviceInstanceIdW, SetupDiGetClassDevsW, SetupDiEnumDeviceInfo
shell32.dll
Shell_NotifyIconW, ShellExecuteExW, SHGetFolderPathW, SHGetFolderPathA
shlwapi.dll
PathFindFileNameW, PathStripToRootW, PathIsUNCW, SHStrDupW, PathFindExtensionW
user32.dll
DllMain
version.dll
GetFileVersionInfoW, GetFileVersionInfoSizeW, VerQueryValueW
winmm.dll
mmioRead, mmioCreateChunk, mmioGetInfo, mmioSeek, mmioSetInfo, mmioWrite, mmioAscend, mmioDescend, mmioAdvance, mmioClose, mmioOpenW
winspool.drv
DocumentPropertiesW, OpenPrinterW, ClosePrinter
Export table
RMAddOrReplaceResource
RMAddResource
RMAttachResContainer
RMCloseResContainer
RMContainerOpenCount
RMCopyResourceToMemObj
RMDeleteResource
RMDetachResContainer
RMDispose
RMDoesNativeResourceExist
RMFileOpenCount
RMGetAResource
RMGetNativeContainer
RMGetNativeResource
RMGetPath
RMGetPathToActualFile
RMGetResContainer
RMGetResData
RMGetResIDList
RMGetResInfo
RMGetResSize
RMGetResTypeList
RMInit
RMIsResContainer
RMIsResourceLoaded
RMOpenResContainer
RMReleaseNativeResource
RMReleaseResource
RMUpdateResource
RMWriteResContainer
RMWriteResource
XML_GetCurrentLineNumber
XML_GetErrorCode
XML_Parse

RtkNGui.exe

Gerenciador de áudio HD Realtek by Realtek Semiconductor Corp (Signed)

Remove RtkNGui.exe
Version:   0.0.0.24
MD5:   540ebdd103e243f5e2eaa89c88c1eb52
SHA1:   d5d8ad0780f50d864044b2770b36702fd5df4c44
SHA256:   2f26db7b9e36ac744803e1d076dbae4c041d1a37aa7089dd2005748f2c6e9029

Overview

rtkngui.exe executes as a process with the local user's privileges usually within the context of Windows Explorer. It is set to be start when the PC boots and any user logs into Windows (added to the Run registry key for the all users under the local machine). This is typically installed with the program Realtek High Definition Audio Driver published by Realtek Semiconductor Corp.. The file is digitally signed by Realtek Semiconductor Corp which was issued by the VeriSign certificate authority (CA). This particular version is usually found on Windows 7 Home Basic (6.1.7601.65536).

DetailsDetails

File name:rtkngui.exe
Publisher:Realtek Semiconductor
Product name:Gerenciador de áudio HD Realtek
Typical file path:C:\Program Files\realtek\audio\hda\rtkngui.exe
File version:0.0.0.24
Size:4.87 MB (5,110,304 bytes)
Certificate
Issued to:Realtek Semiconductor Corp
Authority (CA):VeriSign
Expiration date:Saturday, November 6, 2010
Digital DNA
PE subsystem:Windows GUI
File packed:No
.NET CLR:No
More details

ResourcesPrograms

The following program will install this file
Realtek High Definition Audio Driver
 Realtek Semiconductor Corp.
9% remove
Realtek's High Definition Audio Driver provide high quality DTS, Dolby, Surround Sound to your PC via the audio card. The software comes with a number of features and functionality such as a six channel Digital to Analog Converter (DAC) that fully supports the 16/20/24-bit Pulse Code Modulation format for 5.1 channel audio. It supports legacy analog input to analog output mixer as well as 44.1k/48k/96kHz Sony/Philips Digital Interconnec...

BehaviorsBehaviors

Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'RTHDVCPL' → C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe -s

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00104303%
0.028634%
Kernel CPU:0.00064873%
0.013761%
User CPU:0.00039430%
0.014873%
Kernel CPU time:4,368,028 ms/min
100,923,805ms/min
Memory
Private memory:7.55 MB
21.59 MB
Private (maximum):6.98 MB
Private (minimum):236 KB
Non-paged memory:7.55 MB
21.59 MB
Virtual memory:80.86 MB
140.96 MB
Virtual memory (peak):84.86 MB
169.69 MB
Working set:672 KB
18.61 MB
Working set (peak):7.7 MB
37.95 MB
Resource allocations
Threads:11
12
Handles:235
600
GUI GDI count:20
103
GUI GDI peak:23
142
GUI USER count:26
49
GUI USER peak:26
71

BehaviorsProcess properties

Integrety level:Medium
Platform:32-bit
Command line:"C:\Program Files\realtek\audio\hda\rtkngui.exe" -s
Owner:User
Parent process:explorer.exe (Windows Explorer by Microsoft Corporation)

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Home Basic 100.00%

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Hewlett-Packard 100.00%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE