Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

6.14.11.1173 0.11%
6.14.11.1169 2.63%
6.14.11.1165 0.11%
6.14.11.1164 1.48%
6.14.11.1164 1.03%
6.14.11.1161 0.11%
6.14.11.1159 1.60%
6.14.11.1159 1.60%
6.14.11.1159 0.34%
6.14.11.1159 0.11%
6.14.11.1154 0.11%
6.14.11.1143 0.34%
6.14.11.1143 0.57%
6.14.11.1143 0.11%
6.14.11.1143 3.42%
6.14.11.1143 0.11%
6.14.11.1143 0.11%
6.14.11.1143 0.34%
6.14.11.1143 0.11%
6.14.11.1143 0.34%
6.14.11.1143 0.11%
6.14.11.1143 0.11%
6.14.11.1143 0.11%
6.14.11.1143 0.11%
6.14.11.1143 0.11%
View more

Relationships

Parent process
Child process
Related files

PE structurePE file structure
Show functions
Import table
advapi32.dll
StartServiceCtrlDispatcherA, RegQueryValueExA, RegisterEventSourceA, ReportEventA, InitializeSecurityDescriptor, OpenProcessToken, CreateProcessAsUserA, CloseServiceHandle, CreateServiceA, OpenSCManagerA, DeleteService, OpenServiceA, SetServiceStatus, RegisterServiceCtrlHandlerExA, RegCloseKey, RegSetValueExA, RegCreateKeyExA, RegDeleteValueA, RegGetValueA, RegOpenKeyExA, RegDeleteKeyA, RegOpenCurrentUser, SetSecurityDescriptorDacl, RevertToSelf, ImpersonateLoggedOnUser, RegSetValueExW, RegGetValueW
kernel32.dll
CompareStringA, CompareStringW, SetEnvironmentVariableA, GetCommandLineA, GetLocaleInfoW, GetProcessHeap, SetEndOfFile, GetTimeZoneInformation, VirtualQuery, GetSystemInfo, VirtualProtect, RaiseException, LoadLibraryA, InterlockedExchange, FreeLibrary, SetConsoleCtrlHandler, WriteConsoleW, GetConsoleOutputCP, WriteConsoleA, SetStdHandle, GetModuleHandleW, InitializeCriticalSection, IsValidCodePage, IsValidLocale, EnumSystemLocalesA, lstrcmpiA, WaitForSingleObject, MapViewOfFile, CreateFileMappingA, OpenProcess, GetLastError, GetModuleFileNameA, WTSGetActiveConsoleSessionId, OutputDebugStringA, GetLocalTime, CloseHandle, Sleep, GetVersionExA, GetSystemDirectoryA, CreateProcessA, CreateMutexA, OpenMutexA, ReleaseMutex, CreateEventA, OpenEventA, WaitForMultipleObjects, SetEvent, ResetEvent, CreateThread, SetThreadPriority, CreateNamedPipeA, ConnectNamedPipe, DisconnectNamedPipe, ReadFile, WriteFile, FlushFileBuffers, CreateFileA, LocalFree, HeapAlloc, TerminateProcess, GetCurrentProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, HeapFree, GetCPInfo, InterlockedIncrement, InterlockedDecrement, GetACP, GetOEMCP, GetProcAddress, GetModuleHandleA, TlsGetValue, TlsAlloc, TlsSetValue, TlsFree, SetLastError, GetCurrentThreadId, GetCurrentThread, EnterCriticalSection, LeaveCriticalSection, RtlUnwind, WideCharToMultiByte, GetConsoleCP, GetConsoleMode, DeleteCriticalSection, FatalAppExitA, SetHandleCount, GetStdHandle, GetFileType, GetStartupInfoA, ExitProcess, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, GetEnvironmentStringsW, HeapDestroy, HeapCreate, VirtualFree, QueryPerformanceCounter, GetTickCount, GetCurrentProcessId, GetSystemTimeAsFileTime, VirtualAlloc, HeapReAlloc, SetFilePointer, LCMapStringA, MultiByteToWideChar, LCMapStringW, GetStringTypeA, GetStringTypeW, GetTimeFormatA, GetDateFormatA, GetUserDefaultLCID, GetLocaleInfoA, ReadConsoleW, HeapSize, LoadLibraryExA, InitializeCriticalSectionAndSpinCount, IsProcessorFeaturePresent, LoadLibraryExW
powrprof.dll
PowerGetActiveScheme, PowerSetActiveScheme, PowerWriteACValueIndex, PowerWriteDCValueIndex, PowerEnumerate, PowerSettingAccessCheck, PowerReadACValueIndex, PowerReadDCValueIndex
psapi.dll
GetModuleBaseNameA, EnumProcessModules
user32.dll
UnregisterDeviceNotification, PostMessageA, RegisterDeviceNotificationA, PostThreadMessageA, RegisterPowerSettingNotification, UnregisterPowerSettingNotification, SystemParametersInfoA
userenv.dll
LoadUserProfileA, UnloadUserProfile
wtsapi32.dll
WTSEnumerateProcessesA, WTSQueryUserToken, WTSQuerySessionInformationA, WTSFreeMemory

ATIESRXX.exe

AMD External Events by AMD

Remove ATIESRXX.exe
Version:   6.14.11.1120
MD5:   c9a5a02cb76b35a78404f6d4101163f9
SHA1:   17ef14b7c4e5ef5458338e895b513742b08c7db4
SHA256:   184c68fcdab76862d39fd5d09fa0d53f600a657de55dbecbe7b1eba0dcaa496f

What is ATIESRXX.exe?

The files atiesrxx.exe and atieclxx.exe are both associated with the AMD External Events Service Module, which is part of the ATI display driver package. The function of atieclxx.exe is to give ATI Graphic card better performance so it just plays a subsidiary role.

Overview

atiesrxx.exe runs as a service under the name AMD External Events Utility (SYSTEM\CurrentControlSet\Services\AMD External Events Utility) with extensive SYSTEM privileges (full administrator access).

DetailsDetails

File name:atiesrxx.exe
Publisher:AMD
Product name:AMD External Events
Description:AMD External Events Service Module
Typical file path:C:\Windows\System32\atiesrxx.exe
File version:6.14.11.1120
Size:231.5 KB (237,056 bytes)
Digital DNA
Entropy:6.353569
File packed:No
.NET CLR:No
More details

BehaviorsBehaviors

Service
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
  • 'AMD External Events Utility'

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00000203%
0.028634%
Kernel CPU:0.00000190%
0.013761%
User CPU:0.00000013%
0.014873%
Kernel CPU time:20 ms/min
100,923,805ms/min
CPU cycles:766/sec
17,470,203/sec
Memory
Private memory:2.18 MB
21.59 MB
Private (maximum):4.93 MB
Private (minimum):2.48 MB
Non-paged memory:2.18 MB
21.59 MB
Virtual memory:32.78 MB
140.96 MB
Virtual memory (peak):34.78 MB
169.69 MB
Working set:2.58 MB
18.61 MB
Working set (peak):4.94 MB
37.95 MB
Page faults:3,000/min
2,039/min
I/O
I/O other transfer:2 Bytes/sec
448.09 KB/min
I/O other operations:1/sec
1,671/min
Resource allocations
Threads:6
12
Handles:131
600

BehaviorsProcess properties

Integrety level:System
Platform:64-bit
Command line:C:\Windows\System32\atiesrxx.exe
Owner:SYSTEM
Windows Service
Service name:SYSTEM\CurrentControlSet\Services\AMD External Events Utility
Display name:AMD External Events Utility
Type:Win32OwnProcess
Parent process:services.exe (Services and Controller app by Microsoft)

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Home Premium 41.00%
Windows 8.1 16.50%
Windows 7 Ultimate 15.00%
Windows 7 Professional 7.00%
Windows 8 6.50%
Windows 8.1 Pro 6.00%
Windows 8.1 Enterprise 2.00%
Windows 8 Single Language 1.50%
Windows Seven Black Edition 1.00%
Windows 7 Starter 1.00%
Windows 7 Home Basic 1.00%
Windows 8.1 Pro with Media Center 0.50%
Windows 8 Pro 0.50%
Windows Vista Home Premium 0.50%

Distribution by countryDistribution by country

United States installs about 47.50% of AMD External Events.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Hewlett-Packard 27.47%
Acer 19.31%
Dell 15.45%
Toshiba 13.73%
ASUS 8.58%
Lenovo 5.15%
Samsung 3.86%
GIGABYTE 2.15%
Medion 1.72%
Gateway 1.72%
MSI 0.86%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE