home

usbhistoryview.exe

IntelliAdmin, LLC

This is a setup program which is used to install the application. The file has been seen being downloaded from www.intelliadmin.com.
Publisher:
IntelliAdmin, LLC  (signed and verified)

Version:
2006.0.0.0

MD5:
b8145f9cb22e44551277043c5cc37543

SHA-1:
75b166f20d8a6aa5e7089fe9e84b99bd5e067931

SHA-256:
80b877df98823e4e501577a2c9adaccb8a8a7b5871b9334a3320d2ddf3fe69e9

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 4:00:09 AM UTC  (today)

File size:
1.7 MB (1,833,776 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\usbhistoryview.exe

Digital Signature
Signed by:
IntelliAdmin, LLC

Authority:
VeriSign, Inc.

Valid from:
11/29/2013 1:00:00 AM

Valid to:
2/28/2017 12:59:59 AM

Subject:
CN="IntelliAdmin, LLC", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="IntelliAdmin, LLC", L=Rochester Hills, S=Michigan, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3122AE0E4D96A033FAC542BB8A07C958

File PE Metadata
Compilation timestamp:
7/7/2011 10:53:16 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:xTqjhSgmHZhxzwCkWp4jXEvF7WufK9yI6+hB:xeXtk50hB

Entry address:
0x141834

Entry point:
55, 8B, EC, 83, C4, F0, B8, 54, 9A, 53, 00, E8, 14, 8F, EC, FF, A1, 78, 5C, 54, 00, 8B, 00, E8, AC, 7F, F8, FF, 8B, 0D, 84, 59, 54, 00, A1, 78, 5C, 54, 00, 8B, 00, 8B, 15, 38, 78, 53, 00, E8, AC, 7F, F8, FF, 8B, 0D, 80, 5C, 54, 00, A1, 78, 5C, 54, 00, 8B, 00, 8B, 15, A8, 6B, 53, 00, E8, 94, 7F, F8, FF, A1, 78, 5C, 54, 00, 8B, 00, E8, D8, 80, F8, FF, E8, C3, 4E, EC, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1.2 MB (1,310,208 bytes)

The file usbhistoryview.exe has been seen being distributed by the following URL.

http://www.intelliadmin.com/.../Download.php?filename=usbhistoryview.exe&access=MTQwMTA4Mjg4Ng==

Scan usbhistoryview.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.