Tedy.74930 removal guide

The Tedy.74930 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Tedy.74930 virus can do?

Sample contains Overlay data
Presents an Authenticode digital signature
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Tedy.74930?


File Info:
name: FC920E2BF52CFC7F7A97.mlw
path: /opt/CAPEv2/storage/binaries/59ce9e49fa74de78185bf70c4780549df5a0b5f4a4f8cbc7221d30067ce3edd8
crc32: FC88CE14
md5: fc920e2bf52cfc7f7a97d2850445a735
sha1: 2c9a00988b719ed01f9589e5a9e3188d0ea8dbcf
sha256: 59ce9e49fa74de78185bf70c4780549df5a0b5f4a4f8cbc7221d30067ce3edd8
sha512: 1a41b556e4aa03fc554edc8bc0e1121bb9306d3e97ce44dac28b2a773feba1b143a3fe55992e415034c3daba6537d2059af14561ca07e8812cbc9ba5fb47c409
ssdeep: 98304:tjp5nBnEQWoYIsaOyk3x84maQ3IV/74hX35nBnEQWoYIsaOyk3xb:pBTYSOyCfVQYVz4h1BTYSOyCB
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T142569D327785C47AD5332132891EA31E51B5FEB04A30891B76E87B1D6F316C2E53AF62
sha3_384: caec091faad8ee23ec5698c302157d0edc94f0f3dd23676c0b9b21d9cdacd10eb1e55abac7953e14ee64fccd32c386b7
ep_bytes: e863060000e978feffffcccccccccccc
timestamp: 2021-02-24 21:27:00

Version Info:
CompanyName: Adobe Systems Incorporated
FileDescription: AcroTextExtractor
FileVersion: 21.1.20142.424128
LegalCopyright: Copyright 1984-2021 Adobe Systems Incorporated and its licensors. All rights reserved.
OriginalFilename: AcroTextExtractor.exe
ProductName: Adobe Acrobat text extractor for non-PDF files
ProductVersion: 21.1.20142.424128
Translation: 0x0409 0x04b0

Tedy.74930 also known as:

Bkav	W32.AIDetectMalware
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Tedy.74930
FireEye	Gen:Variant.Tedy.74930
ALYac	Gen:Variant.Tedy.74930
VIPRE	Gen:Variant.Tedy.74930
Cyren	W32/Fugrafa.AB.gen!Eldorado
ClamAV	Win.Virus.Expiro-10005862-0
BitDefender	Gen:Variant.Tedy.74930
Emsisoft	Gen:Variant.Tedy.74930 (B)
McAfee-GW-Edition	BehavesLike.Win32.Trojan.th
Ikarus	Virus.MSIL.Agent
GData	Win32.Trojan.PSE.15RK9CU
Google	Detected
Arcabit	Trojan.Tedy.D124B2
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
Acronis	suspicious
McAfee	Artemis!FC920E2BF52C
MAX	malware (ai score=80)
VBA32	Worm.VB
TrendMicro-HouseCall	TROJ_GEN.R03BH09H723
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	W32/Fugrafa.A069!tr
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_60% (W)

How to remove Tedy.74930?

Tedy.74930 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X