» TotalPrivacy.exe
Overview
Analysis
File Details

TotalPrivacy.exe

Total Privacy

Pointstone Software, LLC

The application TotalPrivacy.exe, “You know what you've been doing with your computer, but that doesn't mean that anyone else has to!” by Pointstone Software has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.

File name:

TotalPrivacy.exe

Publisher:

Pointstone Software, LLC (signed and verified)

Product:

Total Privacy

Description:

You know what you've been doing with your computer, but that doesn't mean that anyone else has to!

Version:

5.6.0.350

MD5:

e52dda5c720e45a47233bf2aceedcfb5

SHA-1:

1761511bff9063158d82f15bc347ed3cbcffe626

SHA-256:

21b84faaea8f51eeb8a203e31584d4f9c0c11a1d6d0de2bcd52ee0f9fb3e545c

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

4/23/2024 10:18:28 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Optional.PointstoneSoftware.M

14.2.22.18

File size:

1.4 MB (1,465,560 bytes)

Product version:

5.6.0.0

Trademarks:

Total Privacy and Pointstone are either trademarks or registered trademarks of Pointstone Software, LLC

Original file name:

TotalPrivacy.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\pointstone\total privacy 5\totalprivacy.exe

Digital Signature

Signed by:

Pointstone Software, LLC

Authority:

The USERTRUST Network

Valid from:

3/4/2008 4:00:00 PM

Valid to:

3/5/2010 3:59:59 PM

Subject:

CN="Pointstone Software, LLC", O="Pointstone Software, LLC", STREET=220 E. Delaware Avenue, L=Newark, S=Delaware, PostalCode=19711, C=US

Issuer:

CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:

0A38CECD27D24D5BABCE0D05DC3CDAF9

File PE Metadata

Compilation timestamp:

7/28/2008 9:56:40 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:cCdMWBNewE2ULulLBfaG37/QkFoaaVdw7g6oR/ZiXIyv0BBpwR6M:OCL5ULuPv/QKFaoE/Dpyc+

Entry address:

0x30E400

Entry point:

60, BE, 00, 20, 5B, 00, 8D, BE, 00, F0, E4, FF, C7, 87, BC, D7, 1B, 00, 9A, 0A, 26, 1A, 57, 83, CD, FF, EB, 0E, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46... 
[+]

Entropy:

7.8777

Packer / compiler:

UPX v0.89.6 - v1.02 / v1.05 -v1.22 (Delphi) stub

Code size:

1.4 MB (1,429,504 bytes)

Remove TotalPrivacy.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.