Skip to content

Marioaaj/PowerShell-script-to-delete-ltmdm64.sys

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
README.md
README.md
 
 
itmdm64-Deletion.ps1
itmdm64-Deletion.ps1
 
 

Repository files navigation

This script was created in reponse to the article named "Patch Tuesday: Windows users hacked due to legacy fax modem driver" by Edward Targett He explains that there is a legacy file that appears on systems that can be used to hack stuff. This file is present on most windows computers.

This was created to delete a vulnerability at the location. C:\Windows\System32\DriverStore\FileRepository\mdmagm64.inf_amd64_596c8fd6d9bb0499\ltmdm64.sys This was designed to be used with an RMM. It creates a report that includes the computer name it checks if the file exists at the location and it lets you know if you deleted the file.

About

I made a powershell script that I used to get rid of a file at this location.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages