Intel(R) Software Products - 0% Detection Rate *

Did you just find a file that is digitally signed by Intel(R) Software Products? If that's the case, please read on.

You will probably see Intel(R) Software Products when running the file. The publisher name shows up as the "Verified publisher" in the UAC dialog as the screenshot shows:

Screenshot where Intel(R) Software Products appears as the verified publisher in the UAC dialog

You can view the additional details from the Intel(R) Software Products digital signature with the following procedure:

  1. Open up Windows Explorer and locate the Intel(R) Software Products file
  2. Right-click on the file and select Properties
  3. Click the Digital Signatures tab
  4. Click the View Certificate button

Here's a screenshot of a file that has been signed by Intel(R) Software Products:

Screenshot of the Intel(R) Software Products certificate

As you can see in the screengrab above, Windows reports that "This digital signature is OK". This means that the file has been published by Intel(R) Software Products and that the file has not been tampered with.

If you click the View Certificate button shown in the screengrab above, you can see all the details of the certificate, such as when it was issued, who issued the certificate, how long it is valid, etc. You can also examine the address for Intel(R) Software Products, such as the street name, city and country.

Intel External Basic Issuing CA 3A and Intel External Basic Issuing CA 3B has issued the Intel(R) Software Products certificates. You can also examine the details of the issuer by clicking the View Certificate button shown in the screenshot above.

Intel(R) Software Products Files

The following are the Intel(R) Software Products files I've collected, thanks to the FreeFixer users.

Detection RatioFile Name
0/47VCPerfService.exe
0/47smpd.exe
0/48tbbmalloc.dll
0/54intelocl.dll
0/46tbb.dll
0/40cpu_device.dll
0/50gpamonitor.exe
0/55SBTService.exe
0/55task_executor.dll
0/50task_executor.dll

* How the Detection Percentage is Calculated

The detection percentage is based on the fact that I have collected 765 scan reports for the Intel(R) Software Products files. 0 of these scan results came up with some sort of detection. If you like, you can view the full details of the scan results by examining the files listed above.

Analysis Details

The analysis is based on certificates with the following serial numbers:

Comments

No comments posted yet.

Leave a reply