How to remove tessafe.sys

tessafe.sys

The module tessafe.sys has been detected as PUP.Tencent

tessafe.sys
Remove tessafe.sys

File Details

Product Name:

Loader64
Company Name:

TENCENT
MD5: 276adec641dafd0140b4c0d715e5b2e9
Size: 1 MB
First Published: 2018-02-03 04:06:29 (6 years ago)
Latest Published: 2024-07-28 23:01:09 (4 months ago)
Status: PUP.Tencent (on last analysis)
Analysis Date: 2024-07-28 23:01:09 (4 months ago)

Overview

Signed By: Tencent Technology(Shenzhen) Company Limited
Status: Valid

Common Places:

%system%
%sysdrive%
%sysdrive%\game\roe
%sysdrive%\garena\games
%sysdrive%\games
%sysdrive%\roy
%sysdrive%\hon
%sysdrive%\game
%sysdrive%\games\garenahonth_4030400
%programfiles%\garena plus\games

File Names:

TesSafe.sys
tessafe.sys

Geography:

35.1%
11.5%
10.7%
7.8%
6.4%
4.1%
4.1%
2.0%
1.9%
1.5%
1.1%
0.9%
0.8%
0.8%
0.8%
0.7%
0.7%
0.7%
0.7%
0.5%
0.5%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 10 99.8%
Windows 7 0.1%
Windows 8.1 0.1%
Windows 8 0.1%

Analysis

Subsystem: Native
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000000010000
Entry Address: 0x0020ffc1

PE Sections:

Name Size of data MD5
.text 0 00000000000000000000000000000000
.rdata 0 00000000000000000000000000000000
.data 0 00000000000000000000000000000000
.pdata 0 00000000000000000000000000000000
INIT 0 00000000000000000000000000000000
.rsrc 1536 a6f70452059bf9075b5ddc038a33ba8d
.vmp0 0 00000000000000000000000000000000
.vmp1 0 00000000000000000000000000000000
.vmp2 1098240 fa81f919f1af9c5ab7be2bc61999c124
.reloc 512 ded07b401c65ed6e2bf125f819e6b9cc

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for tessafe.sys
copyright for information about tessafe.sys