Tedy.120597 removal instruction

The Tedy.120597 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Tedy.120597 virus can do?

CAPE extracted potentially suspicious content
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Tedy.120597?


File Info:
name: AB80F58DD166CD4F196C.mlw
path: /opt/CAPEv2/storage/binaries/e527276384d145defb319a3c2adeb52e7825e5a7f8f7459ebc368c31a4018f03
crc32: A125F8DD
md5: ab80f58dd166cd4f196cf3b62ee67a79
sha1: 80935c3e16b27fa4155cf3350e5b474780ce2157
sha256: e527276384d145defb319a3c2adeb52e7825e5a7f8f7459ebc368c31a4018f03
sha512: b9f72c372b6a17056731ba2a10a7b650d197dcdb248c607b0e5381258be35f418f5c14e17a9cf871297a0076220a3c34a1845ea069c8ec092d8827c8e65ecd63
ssdeep: 12288:DtwTf4WsfpMOXFmr9MdSo4lhwC1+0PfebD4oJ5Smp/TeGm2qtpRG6YOle:DuTf4WqMOX0r9MUwvafdIfb6
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15A15AE01DBED873BE19B2774ACB70E01677AFA92A655A70F1624F4BC0C62351DD8231B
sha3_384: c2846e54a0c2b63ad851a568713acb12c1a5f6a44238360fcc48b46449a8689dc4093cf5ca030d484f64e49eeec17c24
ep_bytes: ff2500204000000000
timestamp: 2020-04-07 18:21:47

Version Info:
Translation: 0x0000 0x04b0
CompanyName: Microsoft
FileDescription: DiagnosticsHub.Runtime
FileVersion: 16.6.30007.001
InternalName: Microsoft.DiagnosticsHub.Runtime.dll
LegalCopyright: Copyright © Microsoft 2019
OriginalFilename: Microsoft.DiagnosticsHub.Runtime.dll
ProductName: DiagnosticsHub.Runtime
ProductVersion: DiagHub_master_caa7112941ff2d97630d1792b58bade575cb2c12
Assembly Version: 16.0.0.0

Tedy.120597 also known as:

Bkav	W32.AIDetectNet.01
MicroWorld-eScan	Gen:Variant.Tedy.120597
FireEye	Generic.mg.ab80f58dd166cd4f
ALYac	Gen:Variant.Tedy.120597
VIPRE	Gen:Variant.Tedy.120597
CrowdStrike	win/malicious_confidence_70% (W)
Cyren	W32/MSIL_Agent.DGD.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
Kaspersky	HEUR:Backdoor.MSIL.NanoBot.gen
BitDefender	Gen:Variant.Tedy.120597
Avast	FileRepMalware [Misc]
Ad-Aware	Gen:Variant.Tedy.120597
Emsisoft	Gen:Variant.Tedy.120597 (B)
McAfee-GW-Edition	Artemis
GData	Gen:Variant.Tedy.120597
Google	Detected
Arcabit	Trojan.Tedy.D1D715
ZoneAlarm	HEUR:Backdoor.MSIL.NanoBot.gen
Microsoft	Trojan:Win32/Sabsik.TE.B!ml
Cynet	Malicious (score: 100)
McAfee	Artemis!AB80F58DD166
MAX	malware (ai score=87)
Malwarebytes	Trojan.Injector
TrendMicro-HouseCall	TROJ_GEN.R014H09I322
Rising	Backdoor.NanoBot!8.28C (CLOUD)
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	PossibleThreat
AVG	FileRepMalware [Misc]

How to remove Tedy.120597?

Tedy.120597 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X