home

PCConfidential.exe

PC Confidential

Capital Intellect Inc

The application PCConfidential.exe by Capital Intellect Inc has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program PC Confidential 2005 by Winferno.com.
Publisher:
Capital Intellect, Inc  (signed by Capital Intellect Inc)

Product:
PC Confidential

Version:
2005.02.0223

MD5:
a2b79377f2fe0c0e770780868c40574a

SHA-1:
96152cc859b4d1431a2eb7be94e9a23eb4a1e7b9

SHA-256:
8392c61a0939b96b6832df24c9c92cbc952b50a558aeb002f1d05ee36c45e62d

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/24/2024 9:39:08 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
16.6.29.21

File size:
1.4 MB (1,493,152 bytes)

Product version:
2005.02.0223

Copyright:
Copyright (c) 2000-2005 Capital Intellect Inc

Trademarks:
All Rights Reserved. Capital Intellect Inc

Original file name:
PCConfidential.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\winferno\pc confidential\pcconfidential.exe

Digital Signature
Signed by:
Capital Intellect Inc

Authority:
VeriSign, Inc.

Valid from:
6/9/2005 8:00:00 PM

Valid to:
6/10/2006 7:59:59 PM

Subject:
CN=Capital Intellect Inc, OU=Winferno Software, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Capital Intellect Inc, L=Boston, S=Massachusetts, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
73F02771770397365C7AA841E5C43539

File PE Metadata
Compilation timestamp:
1/23/2006 4:28:39 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
24576:fRMktvlEPVkmvVkm8+szDloHXxLsejtCSd6YL5IZCXAurA24TQ:fRMktv9rzDloHXxLsEYSd6YL5IZCprAa

Entry address:
0xE518

Entry point:
68, 1C, F0, 40, 00, E8, EE, FF, FF, FF, 00, 00, 48, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 86, 59, 15, 02, 52, 8A, AC, 4B, A7, CF, 65, FE, F2, 55, FA, AE, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 48, 00, 06, 50, B2, 02, 50, 43, 43, 6F, 6E, 66, 69, 64, 65, 6E, 74, 69, 61, 6C, 00, 01, 00, 00, 00, 00, D8, E0, 3B, 01, C8, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 54, 00, 00, 00, 7F, AC, 72, 88, 9A, 0C, 8B, 42, BE, D4, 2C, 8B, D2, F0, 71, CF, 01, 00, 00, 00, A8, 00, 00, 00...
 
[+]

Entropy:
6.6295

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
1.3 MB (1,400,832 bytes)

Internet Explorer Extension
Name:
{53F6FCCD-9E22-4d71-86EA-6E43136192AB}


The file PCConfidential.exe has been discovered within the following program.

PC Confidential 2005  by Winferno.com
Publisher's description - “PC Confidential deep scans your PC to locate all traces of private data including website history, cache, cookies and more. Next PC Confidential compiles this data so that with one click you can thoroughly erase it all or select pieces to erase.”
www.Winferno.com
49% remove it
 
Powered by Should I Remove It?

Remove PCConfidential.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.