home

nusb3mon.exe

USB 3.0 Monitor

Renesas Electronics Corporation

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘NUSB3MON’.
Publisher:
Renesas Electronics Corporation  (signed and verified)

Product:
USB 3.0 Monitor

Version:
2.0.28.0

MD5:
04079f19772f184512506bc9e834c360

SHA-1:
c9b75f342560808fdabadaf895c7bf112d27ed57

SHA-256:
1cb36510c24e2a864ee918ae7ebc772fd398596688983c79379c1e27b5cc2442

Scanner detections:
26 / 68

Status:
Clean  (26 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/19/2024 12:25:25 PM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
Win32/Slugin
2015.04.08

Avira AntiVirus
W32/Slugin.A
3.6.1.96

avast!
Win32:Patched-HO [Trj]
2014.9-160201

AVG
Win32/Slugin.A
2017.0.2846

Baidu Antivirus
Virus.Win32.Patched.$dj
4.0.3.1621

Bkav FE
W32.OlayFara.PE
1.3.0.6379

Clam AntiVirus
Trojan.Spy-59563
0.98/21511

Comodo Security
TrojWare.Win32.Patched.P
21683

Dr.Web
Win32.Wplugin.1
9.0.1.032

ESET NOD32
Win32/Slugin
10.11438

Fortinet FortiGate
W32/Wplug.A
2/1/2016

F-Prot
W32/Slugin.B
v6.4.7.1.166

F-Secure
Gen:Variant.Buzy.298
11.2016-01-02_2

IKARUS anti.virus
Trojan.Win32.Patched
t3scan.1.8.9.0

K7 AntiVirus
Trojan
13.202.15516

McAfee
W32/Wplugin
5600.6502

Microsoft Security Essentials
Virus:Win32/Slugin.A
1.1.11502.0

Norman
Agent.VDAZ
11.20160201

Qihoo 360 Security
Win32/Virus.a04
1.0.0.1015

Rising Antivirus
PE:Win32.Agent.ey!1474842
23.00.65.16130

Sophos
W32/Slugin-A
4.98

Total Defense
Win32/Slugin.A
37.0.11536

Trend Micro House Call
PE_WPLUG.A
7.2.32

Trend Micro
PE_WPLUG.A
10.465.01

Vba32 AntiVirus
Trojan.Patched.dj
3.12.26.3

ViRobot
Win32.Patched.N[h]
2014.3.20.0

File size:
110.6 KB (113,288 bytes)

Product version:
2.0.28.0

Copyright:
(C) 2010 Renesas Electronics Corporation

Original file name:
nusb3mon.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe

Digital Signature
Signed by:
Renesas Electronics Corporation

Authority:
VeriSign, Inc.

Valid from:
4/21/2010 9:00:00 PM

Valid to:
4/22/2011 8:59:59 PM

Subject:
CN=Renesas Electronics Corporation, OU=Quality Assurancs Division, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Renesas Electronics Corporation, L=Kawasaki, S=Kanagawa, C=JP

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6DF38C00071DD66C20838DB081346A51

File PE Metadata
Compilation timestamp:
11/12/2010 8:19:59 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
1536:W9ne+XhuVj+yuom7i+6rzooTgMVybRAPyZYuBGgKbaDPC3:qe+aokXIMVymPa5Ke0

Entry address:
0x3154

Entry point:
E8, CA, 21, 00, 00, E9, 16, FE, FF, FF, 55, 8B, EC, 83, EC, 08, 89, 7D, FC, 89, 75, F8, 8B, 75, 0C, 8B, 7D, 08, 8B, 4D, 10, C1, E9, 07, EB, 06, 8D, 9B, 00, 00, 00, 00, 66, 0F, 6F, 06, 66, 0F, 6F, 4E, 10, 66, 0F, 6F, 56, 20, 66, 0F, 6F, 5E, 30, 66, 0F, 7F, 07, 66, 0F, 7F, 4F, 10, 66, 0F, 7F, 57, 20, 66, 0F, 7F, 5F, 30, 66, 0F, 6F, 66, 40, 66, 0F, 6F, 6E, 50, 66, 0F, 6F, 76, 60, 66, 0F, 6F, 7E, 70, 66, 0F, 7F, 67, 40, 66, 0F, 7F, 6F, 50, 66, 0F, 7F, 77, 60, 66, 0F, 7F, 7F, 70, 8D, B6, 80, 00, 00, 00, 8D, BF...
 
[+]

Code size:
44 KB (45,056 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
NUSB3MON

Command:
"C:\Program Files\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"


Scan nusb3mon.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.