How to remove atikmdag.sys

atikmdag.sys

The module atikmdag.sys has been detected as Trojan.Generic

atikmdag.sys
Remove atikmdag.sys

File Details

Product Name:

ATI Radeon Family
Company Name:

Advanced Micro Devices, Inc.
MD5: f701c5b11809d8930bfcda246023cafc
Size: 25 MB
First Published: 2024-09-16 23:07:24 (a year ago)
Latest Published: 2024-11-14 23:00:55 (a year ago)
Status: Trojan.Generic (on last analysis)
Analysis Date: 2024-11-14 23:00:55 (a year ago)

Common Places:

%sysdrive%\swsetup\sp79350\drivers\advanced micro devices\display\c7302645.inf_amd64_f6f8d780c3abe506
%sysdrive%\swsetup\sp79350\drivers\advanced micro devices\display\c0302645.inf_amd64_7c75f5e09460e4d3
%sysdrive%\swsetup\sp79350\drivers\advanced micro devices\display\c0302645.inf_amd64_7c75f5e09460e4d3
%sysdrive%\swsetup\sp79350\drivers\advanced micro devices\display\c7302645.inf_amd64_f6f8d780c3abe506

Geography:

50.0%
50.0%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Native
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000000010000
Entry Address: 0x00002120

PE Sections:

Name Size of data MD5
.text 2310656 ed0e85db8f4a31f97d4eaca23d6915d0
_wtext 512 9fa1eb6fcb2f50db0348f8fbf88e8935
.rdata 1534976 0fa4182a034fd437c326a34349739310
.data 7635968 db694c70a0f7aaad384ec5a91cb55d16
.pdata 370176 b6873717c6f6feb8b1d6b0e64d7cc8ba
.gfids 512 004a16016cde97d53cf863fe613eff93
PAGE_COM 515072 d1b6248a0db239582006fd15c9f6fa6c
PAGE 8192 7037911d9aea54178ce6e23d741d15ff
PAGE_CAI 308736 b4ba8b8a79c162c0aecd54cfbb6d8cfb
PAGE_DAL 2162176 f0ef208b1ec300e406211f40abbb5296
PAGE_ISR 33280 ed9ab23563efc16b86b4d91ff2cd6923
PAGEDC40 1024 6ce224013698b4745f2ebb4b11280216
PAGEDC41 1536 eff9f5dde95d4df3bc2410f0b85a2741
PAGEDC50 1024 453d0cdfec5129a40b66e937b724c49f
PAGEDC60 1536 0558140d53e482163a021da2335fe3f9
PAGEDC80 28672 346a47eb033e42ac275230ebc01c3e54
PAGEDC10 16384 6a09d2a0adad34f6c86081eff9e0cedf
PAGEDC11 47104 1e912bbf6886a6beff89087f10ae48e8
PAGEDC11 12288 997a543d8132d035ea3befe88c53b82e
PAGEDC12 16384 fcfc4262587f3a280951a43a69d59a1a
PAGE_PPL 866816 a7cb2c6e50e50380e58b655988d60065
PAGE_CPC 183808 c3dadc0d6346251f2d8a323360c21d97
PAGE_CAI 3342336 b82dccf716217780bcb87cda7681a7c8
PAGE 4318208 51b17ce46db279a3c1fba9c31475c041
PAGE_IEG 46592 466380aa3ad6ee8a137f94f5fc7c72b6
PAGE_ILN 24064 74f1526dba69c7c4962ccc4e8b21699c
PAGE_IBT 41984 c1f6d593fe1e31b227e4c6144bb3cadb
PAGE_INI 45056 06b89c4de713d95760584033099bc0dd
PAGE_ITN 32256 3f1cae4882e8376b7303b05b8670cd6c
PAGE_ISI 45568 b35cef1799098df733e21b7992396c4e
PAGE_ICI 51200 5bfa226648781be4edd5a812f3556f74
PAGE_IKV 47616 25d3cef81f30f79d7f64e9840e8a3b3d
PAGE_IIL 22016 62a8aeb8ec89f9fcd71f65b729d7a531
PAGE_IVI 55808 a1f6c16f980a2b68965ef10c5a8fef29
PAGE_ICZ 53248 89db38238c6c75d89698387ddbcb3221
PAGE_IGN 37888 bd992eb38acd49b9ee3d3eff9734c5e2
PAGE_IRV 1024 a0b5a6493aabb02c3168e7e0a8dfccdb
PAGE_RO 364032 d31b92c037f24edeb4e73651b79f1808
PAGE_ISR 16896 63795aa53701b15b361631ee2aac135d
PAGE_RW 1316864 73e8a1f95db973ba3155083c3a09d148
PAGE_ISR 1024 c4cb8fcf5950d495868fd0463ee6fdc3
PAGEDC11 512 2af5eb141af5c2b7013534959af7a241
PAGEDC40 512 23faba6c798f0e36b079d60ca3bac509
PAGEDC10 512 215bb1e25359041021e420bf71137d7a
PAGEDC41 512 20e2b259195127d715de724020f5a974
PAGEDC12 1024 8a2b15060c0fcb5754362062adfcbeb3
PAGEDC50 512 f3719eae7f4145170787a75eb0e91872
PAGEDC60 512 4e70a42a048d01579daadde814fed4a2
PAGEDC11 8704 7da716477c3ef67c56ef4319cf84bef7
PAGEDC80 2048 b73a35125ac60d0b49c6d11dab48b3ae
PAGEDC40 512 618aa5d833d2ba9f13fdcccfee8c9dcb
PAGEDC41 512 09a03280ed698b2d943505ae060df3c5
PAGEDC50 512 d9b2739308eda672dd7d82f49452b9ec
PAGEDC60 512 da042f966e056debb50504d84cd2f729
PAGEDC80 512 38ec39c44cfa77cf5d7c2ddd72d2cbac
PAGEDC10 512 59bf2611b25e1960a42fd59dd1b04386
PAGEDC11 512 8e6c836ca0d20e391c15a5c74a9c50a8
PAGEDC11 512 a7ece5edad49ee42fd2311c8b8a73d04
PAGEDC12 512 b621ecd8397371448b39aa75005278a7
PAGE_CPR 35328 65380ffa4edce459c61d0d35b8222250
INIT 7168 c1c467dedfa52a91c4dc393831efc3d7
.rsrc 9216 e6ffed0f14fe7f1df5e48dcc734c1f61
.reloc 351232 da5ec897ec60c30cbd92339aa8a81e6f

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for atikmdag.sys
copyright for information about atikmdag.sys