home

PCConfidential.exe

PC Confidential

Capital Intellect Inc

The application PCConfidential.exe by Capital Intellect Inc has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It runs as a scheduled task under the Windows Task Scheduler named PCConfidential triggered daily at a specified time. This file is typically installed with the program PC Confidential 2010 by Winferno.com.
Publisher:
Capital Intellect, Inc  (signed by Capital Intellect Inc)

Product:
PC Confidential

Version:
2010.07.0012

MD5:
47d0e5e588128c41b6680ec6ecffe589

SHA-1:
d75a0b21b68a203e9de04ec052c04c2f3be65a31

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
6/30/2025 12:59:00 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic.CapitalIntellect.Meta
15.12.17.16

File size:
57.2 MB (60,026,680 bytes)

Product version:
2010.07.0012

Copyright:
Copyright (c) 2000-2009 Capital Intellect Inc

Trademarks:
All Rights Reserved. Capital Intellect Inc

Original file name:
PCConfidential.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\winferno\pc confidential\pcconfidential.exe

Digital Signature
Signed by:
Capital Intellect Inc

Authority:
VeriSign, Inc.

Valid from:
5/21/2008 8:00:00 PM

Valid to:
7/21/2011 7:59:59 PM

Subject:
CN=Capital Intellect Inc, OU=Winferno Software, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Capital Intellect Inc, L=Boston, S=Massachusetts, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1AE07608760458D5BDAEFCBE9FD3B699

File PE Metadata
Compilation timestamp:
1/22/2010 12:45:30 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
196608:6dsKdgUU8+3yKz18SAPrN2LEEDA2D7En2:E+35JD9Dw2

Entry address:
0x183F8

Entry point:
68, 14, 91, 41, 00, E8, F0, FF, FF, FF, 00, 00, 48, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 4C, D7, D6, C9, D4, 71, 6E, 44, 86, 0E, 0D, 77, 24, 98, 5A, 76, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 48, 00, 28, 72, 48, 00, 50, 43, 43, 6F, 6E, 66, 69, 64, 65, 6E, 74, 69, 61, 6C, 00, 00, 00, 71, 48, 00, 06, 50, AA, 02, C0, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 41, 00, 00, 00, 49, E4, 87, 6A, 93, BE, 0A, 47, BD, 32, B2, DE, BB, F7, 7E, 52, 01, 00, 00, 00, A0, 00, 00, 00...
 
[+]

Entropy:
5.1635

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
1.5 MB (1,536,000 bytes)

Scheduled Task
Task name:
PCConfidential

Path:
C:\WINDOWS\Tasks\PCConfidential.job

Trigger:
Daily (Runs daily at 1:40 PM)


The file PCConfidential.exe has been discovered within the following program.

PC Confidential 2010  by Winferno.com
Publisher's description - “PC Confidential deep scans your PC to locate all traces of private data including website history, cache, cookies and more. Next PC Confidential compiles this data so that with one click you can thoroughly erase it all or select pieces to erase.”
www.winferno.com/products-pcc.aspx
49% remove it
 
Powered by Should I Remove It?

Remove PCConfidential.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.