How to remove atikmdag.sys

» File
File Details
Overview
Analysis

atikmdag.sys

The module atikmdag.sys has been detected as Trojan.Generic

Remove atikmdag.sys

File Details

Main Info:

Product Name:	ATI Radeon Family
Company Name:	Advanced Micro Devices, Inc.
MD5:	f35cc07ef4ec22014cdec45b4451a22b
Size:	19 MB
First Published:	2023-07-02 23:04:39 (2 years ago)
Latest Published:	2023-10-13 23:02:42 (2 years ago)

Analysis:

Status:	Trojan.Generic (on last analysis)
Analysis Date:	2023-10-13 23:02:42 (2 years ago)

Common Places:

%sysdrive%\sm850\windows.old.000\windows\system32\driverstore\filerepository\c7183844.inf_amd64_neutral_83df91b9c4e896c5

%sysdrive%\windows.old.000\windows\system32\driverstore\filerepository\c7183844.inf_amd64_neutral_83df91b9c4e896c5

%sysdrive%\sm850\windows.old\windows\system32\driverstore\filerepository\c7183844.inf_amd64_neutral_83df91b9c4e896c5

%sysdrive%\windows.old.000\windows\system32

%system%\driverstore\filerepository\c7183844.inf_amd64_neutral_83df91b9c4e896c5

%sysdrive%\windows.old\windows\system32\driverstore\filerepository\c7183844.inf_amd64_neutral_83df91b9c4e896c5

%sysdrive%\sm850\windows.old.000\windows\system32

%sysdrive%\desktop\windows\system32\driverstore\filerepository\c7183844.inf_amd64_neutral_83df91b9c4e896c5

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000000010000
Entry Address:	0x00002070

PE Sections:

Name	Size of data	MD5
.text	4046848	07d6516fa6e37bd2f1fb82151909957d
_wtext	512	4a17a765c2138ca1e21da1c2a7e4cf50
.rdata	1647616	e8d7a2a9625cab8c3194156d33ae2521
.data	6358016	90ed3a1cf0fb4b03f372b2402c63ca23
.pdata	337920	527dd419efcea3221b9dfad65f3f49bb
.gfids	512	35d518de1d79f86844e630d6d1523f3d
PAGE_COM	487424	4e572f8ecd9b60add8adaaf201e3f049
PAGE	8192	00270293d76ccbb2903b0a4c7d6f4584
PAGE_CAI	274432	3ea55bb21b683f929fa7c8a5320e332f
PAGE_DAL	15872	633f2cbe3f1275894fa5ad63ef8edbc7
PAGE_ISR	17408	05bd2f3ab70f7e8fe64c6993cef33dd4
PAGEDC40	1024	7ae3255c6989d1297cf745722bb3d15f
PAGEDC50	1024	aa03086e1fcf12bd2a457ba7d97e1100
PAGEDC60	1536	f22d8f766d44fcfe3f12f4dd5b9cf022
PAGEDC80	22016	a7202368f7b7120450a4f824d5542920
PAGEDC10	10240	b1c8bd553c4296309ebca3624cd2def8
PAGEDC11	46592	84f44ccdc6357c6fdee49e606a5a48fd
PAGEDC11	25600	298dd61a1a82b75f537964b7d6fd0b90
PAGE_PPL	776704	286de0c3216518d96041bc9a08b387d1
PAGE_CPC	159744	95be5059e7d144fc5057cbbc5ba597a8
PAGE_CAI	1970176	32d65f1b53141bfa89c455aeea2c52de
PAGE	3306496	21f071463d6d8fb00aab633de3fbf91e
PAGE_IEG	34816	3e7a588db225750f809420cad0d246e9
PAGE_ILN	18432	17a460c1f0862a1c6343210a4e5cb204
PAGE_IBT	31744	2a86e558b22c9a54ef85e01eb3f08e72
PAGE_INI	34304	f25e0914097e52cdcac44339d06c8ffe
PAGE_ITN	24576	6d86b43e1c6dbd29f232434e42c014f5
PAGE_ISI	34304	0c822e73f50504d99fb06ddbf6ba10a2
PAGE_ICI	38400	512d361821b429079b072598f179dcba
PAGE_IKV	35840	96f6cd425f1694be4d2faa3f47f4607e
PAGE_IIL	16896	821c7b046e303118e94217afe5b277db
PAGE_IVI	41984	0b63b350295d0f818b63b0c00caa385b
PAGE_ICZ	40448	9c02761a46db5d23f0d4fea223b70374
PAGE_ISR	8192	92dd4fbe26970a3a23ede8b7df082068
PAGE_RO	8192	04d472a5f4fec969e7891268e6421b27
PAGE_ISR	512	293e1b191310cee3f31060ce0ee79014
PAGE_RW	680960	2a95c7c5c3a20288d17cc95e970d6c36
PAGEDC50	512	4dc68c7ed7f5ede0956a9cf0012949b8
PAGEDC60	512	bb8222a8fa11efc3f69ba75b5d74f679
PAGEDC11	8192	c0e7a818d35dc7b647f76e4f7be48f80
PAGEDC80	1536	eae5d83fcb372538c587eb700f3b457b
PAGEDC10	512	f4aea67688b698c1c7e76bd03cf79c81
PAGEDC11	1024	222611777ae92221712f46b66243d356
PAGEDC40	512	146f5be0709dc3eed343a52436030517
PAGEDC40	512	8ff763cf05ba4365d077723c056d66b0
PAGEDC50	512	13093414f8da7c21e14a4fe79b8b599c
PAGEDC60	512	690a24b7162f0033be67625051f24f5f
PAGEDC80	512	30f225d035e92559642f72689be434f9
PAGEDC10	512	46bc18cd96c556167a8211adf011cab3
PAGEDC11	512	856408247d6aa44356674a84ea672082
PAGEDC11	512	68a929bf12852d444c805d52e25f8e2c
PAGE_CPR	32768	981392e47a59c9b18e630c9fe4a1344a
INIT	6656	37b4eac56f16bc420598e870c68ce7cb
.rsrc	2560	0a218b9fdf8db165c76cc33fbec925c6
.reloc	303104	a044f9c4f5bc4e5e842eb092e446cb93

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for atikmdag.sys

copyright for information about atikmdag.sys