Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

6.14.11.1173 0.11%
6.14.11.1169 2.63%
6.14.11.1165 0.11%
6.14.11.1164 1.48%
6.14.11.1164 1.03%
6.14.11.1161 0.11%
6.14.11.1159 1.60%
6.14.11.1159 1.60%
6.14.11.1159 0.34%
6.14.11.1159 0.11%
6.14.11.1154 0.11%
6.14.11.1143 0.34%
6.14.11.1143 0.57%
6.14.11.1143 0.11%
6.14.11.1143 3.42%
6.14.11.1143 0.11%
6.14.11.1143 0.11%
6.14.11.1143 0.34%
6.14.11.1143 0.11%
6.14.11.1143 0.34%
6.14.11.1143 0.11%
6.14.11.1143 0.11%
6.14.11.1143 0.11%
6.14.11.1143 0.11%
6.14.11.1143 0.11%
View more

Relationships

Child process
Related files

PE structurePE file structure
Show functions
Import table
advapi32.dll
StartServiceCtrlDispatcherA, RegQueryValueExA, RegisterEventSourceA, ReportEventA, InitializeSecurityDescriptor, OpenProcessToken, CreateProcessAsUserA, CloseServiceHandle, CreateServiceA, OpenSCManagerA, DeleteService, OpenServiceA, SetServiceStatus, RegisterServiceCtrlHandlerExA, RegCloseKey, RegSetValueExA, RegCreateKeyExA, RegDeleteValueA, RegGetValueA, RegOpenKeyExA, RegDeleteKeyA, RegOpenCurrentUser, SetSecurityDescriptorDacl, RevertToSelf, ImpersonateLoggedOnUser, RegSetValueExW, RegGetValueW
kernel32.dll
CompareStringA, CompareStringW, SetEnvironmentVariableA, GetCommandLineA, GetLocaleInfoW, GetProcessHeap, SetEndOfFile, GetTimeZoneInformation, VirtualQuery, GetSystemInfo, VirtualProtect, RaiseException, LoadLibraryA, InterlockedExchange, FreeLibrary, SetConsoleCtrlHandler, WriteConsoleW, GetConsoleOutputCP, WriteConsoleA, SetStdHandle, GetModuleHandleW, InitializeCriticalSection, IsValidCodePage, IsValidLocale, EnumSystemLocalesA, lstrcmpiA, WaitForSingleObject, MapViewOfFile, CreateFileMappingA, OpenProcess, GetLastError, GetModuleFileNameA, WTSGetActiveConsoleSessionId, OutputDebugStringA, GetLocalTime, CloseHandle, Sleep, GetVersionExA, GetSystemDirectoryA, CreateProcessA, CreateMutexA, OpenMutexA, ReleaseMutex, CreateEventA, OpenEventA, WaitForMultipleObjects, SetEvent, ResetEvent, CreateThread, SetThreadPriority, CreateNamedPipeA, ConnectNamedPipe, DisconnectNamedPipe, ReadFile, WriteFile, FlushFileBuffers, CreateFileA, LocalFree, HeapAlloc, TerminateProcess, GetCurrentProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, HeapFree, GetCPInfo, InterlockedIncrement, InterlockedDecrement, GetACP, GetOEMCP, GetProcAddress, GetModuleHandleA, TlsGetValue, TlsAlloc, TlsSetValue, TlsFree, SetLastError, GetCurrentThreadId, GetCurrentThread, EnterCriticalSection, LeaveCriticalSection, RtlUnwind, WideCharToMultiByte, GetConsoleCP, GetConsoleMode, DeleteCriticalSection, FatalAppExitA, SetHandleCount, GetStdHandle, GetFileType, GetStartupInfoA, ExitProcess, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, GetEnvironmentStringsW, HeapDestroy, HeapCreate, VirtualFree, QueryPerformanceCounter, GetTickCount, GetCurrentProcessId, GetSystemTimeAsFileTime, VirtualAlloc, HeapReAlloc, SetFilePointer, LCMapStringA, MultiByteToWideChar, LCMapStringW, GetStringTypeA, GetStringTypeW, GetTimeFormatA, GetDateFormatA, GetUserDefaultLCID, GetLocaleInfoA, ReadConsoleW, HeapSize, LoadLibraryExA, InitializeCriticalSectionAndSpinCount, IsProcessorFeaturePresent, LoadLibraryExW
powrprof.dll
PowerGetActiveScheme, PowerSetActiveScheme, PowerWriteACValueIndex, PowerWriteDCValueIndex, PowerEnumerate, PowerSettingAccessCheck, PowerReadACValueIndex, PowerReadDCValueIndex
psapi.dll
GetModuleBaseNameA, EnumProcessModules
user32.dll
UnregisterDeviceNotification, PostMessageA, RegisterDeviceNotificationA, PostThreadMessageA, RegisterPowerSettingNotification, UnregisterPowerSettingNotification, SystemParametersInfoA
userenv.dll
LoadUserProfileA, UnloadUserProfile
wtsapi32.dll
WTSEnumerateProcessesA, WTSQueryUserToken, WTSQuerySessionInformationA, WTSFreeMemory

ATIESRXX.exe

AMD External Events by AMD

Remove ATIESRXX.exe
Version:   6.14.11.1143
MD5:   57d0ca4a830864cde7d915fcd2631e21
SHA1:   32525429729dbd1770e9f02fd74f195a23ff873e

What is ATIESRXX.exe?

The files atiesrxx.exe and atieclxx.exe are both associated with the AMD External Events Service Module, which is part of the ATI display driver package. The function of atieclxx.exe is to give ATI Graphic card better performance so it just plays a subsidiary role.

Overview

atiesrxx.exe runs as a service under the name AMD External Events Utility (SYSTEM\CurrentControlSet\Services\AMD External Events Utility) with extensive SYSTEM privileges (full administrator access).

DetailsDetails

File name:atiesrxx.exe
Publisher:AMD
Product name:AMD External Events
Description:AMD External Events Service Module
Typical file path:C:\Windows\System32\atiesrxx.exe
File version:6.14.11.1143
Size:235.5 KB (241,152 bytes)
Build date:3/19/2013 12:01 PM
Digital DNA
Entropy:6.353569
File packed:No
.NET CLR:No
More details

BehaviorsBehaviors

Service
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
  • 'AMD External Events Utility'

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00000545%
0.028634%
Kernel CPU:0.00000420%
0.013761%
User CPU:0.00000125%
0.014873%
Kernel CPU time:23 ms/min
100,923,805ms/min
CPU cycles:248/sec
17,470,203/sec
Memory
Private memory:786 KB
21.59 MB
Private (maximum):3.07 MB
Private (minimum):1.61 MB
Non-paged memory:786 KB
21.59 MB
Virtual memory:22.97 MB
140.96 MB
Virtual memory (peak):23.98 MB
169.69 MB
Working set:1.63 MB
18.61 MB
Working set (peak):3.13 MB
37.95 MB
Page faults:876/min
2,039/min
I/O
I/O other transfer:0 Bytes/sec
448.09 KB/min
I/O other operations:1/sec
1,671/min
Resource allocations
Threads:5
12
Handles:99
600

BehaviorsProcess properties

Integrety level:System
Platform:64-bit
Command line:C:\Windows\System32\atiesrxx.exe
Owner:SYSTEM
Windows Service
Service name:SYSTEM\CurrentControlSet\Services\AMD External Events Utility
Display name:AMD External Events Utility
Type:Win32OwnProcess
Parent process:services.exe (by Microsoft)

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Home Premium 41.00%
Windows 8.1 16.50%
Windows 7 Ultimate 15.00%
Windows 7 Professional 7.00%
Windows 8 6.50%
Windows 8.1 Pro 6.00%
Windows 8.1 Enterprise 2.00%
Windows 8 Single Language 1.50%
Windows Seven Black Edition 1.00%
Windows 7 Starter 1.00%
Windows 7 Home Basic 1.00%
Windows 8.1 Pro with Media Center 0.50%
Windows 8 Pro 0.50%
Windows Vista Home Premium 0.50%

Distribution by countryDistribution by country

United States installs about 47.50% of AMD External Events.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Hewlett-Packard 27.47%
Acer 19.31%
Dell 15.45%
Toshiba 13.73%
ASUS 8.58%
Lenovo 5.15%
Samsung 3.86%
GIGABYTE 2.15%
Medion 1.72%
Gateway 1.72%
MSI 0.86%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE