How to remove tessafe.sys
- File Details
- Overview
- Analysis
tessafe.sys
The module tessafe.sys has been detected as PUP.Tencent
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
276adec641dafd0140b4c0d715e5b2e9 |
| Size: |
1 MB |
| First Published: |
2018-02-03 04:06:29 (7 years ago) |
| Latest Published: |
2024-07-28 23:01:09 (10 months ago) |
| Status: |
PUP.Tencent (on last analysis) |
|
| Analysis Date: |
2024-07-28 23:01:09 (10 months ago) |
Overview
| %system% |
| %sysdrive% |
| %sysdrive%\game\roe |
| %sysdrive%\garena\games |
| %sysdrive%\games |
| %sysdrive%\roy |
| %sysdrive%\hon |
| %sysdrive%\game |
| %sysdrive%\games\garenahonth_4030400 |
| %programfiles%\garena plus\games |
| Thailand |
35.1% |
|
| Russia |
11.5% |
|
| Taiwan |
10.7% |
|
| Vietnam |
7.8% |
|
| China |
6.4% |
|
| Indonesia |
4.1% |
|
| Ukraine |
4.1% |
|
| Brazil |
2.0% |
|
| Hong Kong |
1.9% |
|
| Turkey |
1.5% |
|
| Philippines |
1.1% |
|
| United States |
0.9% |
|
| Poland |
0.8% |
|
| France |
0.8% |
|
| Hungary |
0.8% |
|
| Romania |
0.7% |
|
| Kazakhstan |
0.7% |
|
| South Korea |
0.7% |
|
| Spain |
0.7% |
|
| Malaysia |
0.5% |
|
| Germany |
0.5% |
|
| Bosnia and Herzegovina |
0.4% |
|
| Canada |
0.4% |
|
| Portugal |
0.4% |
|
| Israel |
0.4% |
|
| Belarus |
0.4% |
|
| Australia |
0.4% |
|
| Morocco |
0.4% |
|
| Tunisia |
0.2% |
|
| Japan |
0.2% |
|
| Georgia |
0.2% |
|
| Lithuania |
0.2% |
|
| New Zealand |
0.2% |
|
| Saudi Arabia |
0.2% |
|
| Azerbaijan |
0.2% |
|
| United Kingdom |
0.2% |
|
| Colombia |
0.2% |
|
| Armenia |
0.1% |
|
| Moldova |
0.1% |
|
| Bolivia |
0.1% |
|
| Algeria |
0.1% |
|
| Latvia |
0.1% |
|
| Argentina |
0.1% |
|
| Bulgaria |
0.1% |
|
| Finland |
0.1% |
|
| Pakistan |
0.1% |
|
| Austria |
0.1% |
|
| Sweden |
0.1% |
|
| India |
0.1% |
|
| Iran |
0.1% |
|
| Sri Lanka |
0.1% |
|
| Chile |
0.1% |
|
| Czech Republic |
0.1% |
|
| Italy |
0.1% |
|
| Belgium |
0.1% |
|
| Windows 10 |
99.8% |
|
| Windows 7 |
0.1% |
|
| Windows 8.1 |
0.1% |
|
| Windows 8 |
0.1% |
|
Analysis
| Subsystem: |
Native |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000000010000 |
| Entry Address: |
0x0020ffc1 |
| Name |
Size of data |
MD5 |
| .text |
0 |
00000000000000000000000000000000 |
| .rdata |
0 |
00000000000000000000000000000000 |
| .data |
0 |
00000000000000000000000000000000 |
| .pdata |
0 |
00000000000000000000000000000000 |
| INIT |
0 |
00000000000000000000000000000000 |
| .rsrc |
1536 |
a6f70452059bf9075b5ddc038a33ba8d |
| .vmp0 |
0 |
00000000000000000000000000000000 |
| .vmp1 |
0 |
00000000000000000000000000000000 |
| .vmp2 |
1098240 |
fa81f919f1af9c5ab7be2bc61999c124 |
| .reloc |
512 |
ded07b401c65ed6e2bf125f819e6b9cc |
