Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

7.0.302.0 9.09%
7.0.302.0 1.70%
6.0.316.0 5.68%
6.0.316.0 7.39%
6.0.314.0 0.57%
6.0.308.0 5.11%
6.0.308.0 6.82%
6.0.306.0 5.11%
6.0.306.0 1.70%
6.0.115.0 RC 0.57%
6.0.115.0 RC 1.70%
5.2.7.0 11.93%
5.2.7.0 3.98%
5.2.7.0 0.57%
5.2.15.0 2.84%
5.2.15.0 1.70%
5.0.94.0 2.84%
5.0.94.0 0.57%
5.0.94.0 0.57%
5.0.93.7 1.70%
5.0.93.0 0.57%
5.0.93.0 1.70%
4.2.71.2 0.57%
4.2.71.2 1.70%
4.2.71.2 1.70%
View more

Relationships

Parent process
Related files

PE structurePE file structure
Show functions
Import table
advapi32.dll
RegOpenKeyA, GetSecurityDescriptorDacl, InitializeSecurityDescriptor, SetSecurityDescriptorDacl, RegQueryInfoKeyW, RegDeleteValueW, RegEnumValueW, RegEnumKeyExW, FreeSid, EqualSid, AllocateAndInitializeSid, GetTokenInformation, OpenThreadToken, RegEnumKeyW, RegDeleteKeyW, AdjustTokenPrivileges, LookupPrivilegeValueW, OpenProcessToken, RegQueryValueExA, RegCreateKeyExW, RegSetValueExW, RegOpenKeyExW, RegQueryValueExW, RegDeleteKeyA, RegCloseKey, GetSidSubAuthorityCount, GetSidSubAuthority, SetThreadToken, DuplicateToken, RevertToSelf, CreateWellKnownSid, CheckTokenMembership
comctl32.dll
ImageList_GetIcon, ImageList_Remove, ImageList_Draw, ImageList_SetBkColor, ImageList_Replace, ImageList_GetImageInfo, ImageList_Add, ImageList_GetImageCount, ImageList_DrawEx, ImageList_ReplaceIcon, ImageList_AddMasked
gdi32.dll
Arc, Pie, GetTextColor, CreateDIBitmap, GetPixel, CreateSolidBrush, GetTextExtentExPointW, CreateICW, GetBitmapBits, SetBitmapBits, StretchBlt, CreatePen, EnumFontFamiliesW, SetTextColor, SetBkColor, SetDIBits, GetDIBits, GetBkColor, CreateDCW, Rectangle, GetRgnBox, DeleteDC, Polyline, GetWindowExtEx, ExtCreatePen, GetCurrentObject, CombineRgn, SetMapMode, SelectObject, RectInRegion, RoundRect, DPtoLP, GetMapMode, LPtoDP, CreateRectRgn, CreateCompatibleBitmap, CreateDIBSection, GetDeviceCaps, DeleteObject, GetTextMetricsW, BitBlt, CreateCompatibleDC, ExtTextOutW, GetTextExtentPoint32W, Ellipse, GetStockObject, CreateFontIndirectW, GetViewportExtEx, Polygon, SelectClipRgn, GetObjectW, CreateBrushIndirect, PtVisible, TextOutW, Escape, CreateBitmap, RectVisible
kernel32.dll
FindCloseChangeNotification, FindNextChangeNotification, UnmapViewOfFile, MapViewOfFile, VirtualAlloc, ReleaseMutex, OpenFileMappingW, DuplicateHandle, OpenMutexW, QueryDosDeviceW, GetEnvironmentVariableW, lstrcmpA, GetModuleHandleA, GetSystemTimeAsFileTime, SetThreadPriority, GetPrivateProfileIntW, GetPrivateProfileStringW, LoadLibraryExW, GetModuleFileNameA, VirtualProtect, GetSystemInfo, FindFirstChangeNotificationW, SetFilePointer, FlushFileBuffers, GetFileTime, GetFileInformationByHandle, VirtualFree, TryEnterCriticalSection, CreateSemaphoreW, ReleaseSemaphore, CopyFileExW, GetSystemDirectoryW, CompareFileTime, GetVersionExA, GetThreadLocale, GetLocaleInfoA, GetACP, UnhandledExceptionFilter, TerminateProcess, QueryPerformanceCounter, SetUnhandledExceptionFilter, GetStartupInfoW, InterlockedCompareExchange, InterlockedExchange, ExpandEnvironmentStringsW, Sleep, SetFileAttributesW, LocalFree, MoveFileW, CopyFileW, FindResourceExW, lstrcpyW, GetTimeFormatW, GetCurrentDirectoryW, SetCurrentDirectoryW, GetLocaleInfoW, TerminateThread, ResetEvent, WaitForMultipleObjects, GetVersionExW, GlobalAlloc, lstrlenA, lstrcpynW, lstrlenW, GetFullPathNameW, GetFileAttributesW, GetLocalTime, MultiByteToWideChar, WideCharToMultiByte, GetCurrentThread, VirtualFreeEx, ReadProcessMemory, VirtualAllocEx, OpenProcess, DeleteFileW, LocalAlloc, MulDiv, GetDateFormatW, FileTimeToSystemTime, FileTimeToLocalFileTime, GetNumberFormatW, GetLogicalDriveStringsW, GetCurrentProcessId, GetCommandLineW, WaitForSingleObject, GetModuleFileNameW, CreateMutexW, GetModuleHandleW, GetLastError, SetLastError, FindClose, FindNextFileW, FindFirstFileW, GetVersion, GetCurrentThreadId, DeleteCriticalSection, InitializeCriticalSection, WriteFile, LeaveCriticalSection, EnterCriticalSection, ReadFile, GetFileSize, SystemTimeToFileTime, GetSystemTime, GlobalHandle, GetProcAddress, LoadLibraryW, FreeLibrary, SetEvent, SizeofResource, LockResource, LoadResource, FindResourceW, GetTickCount, GetCurrentProcess, InterlockedDecrement, InterlockedIncrement, GlobalUnlock, GlobalLock, SetEndOfFile, CreateEventW, CreateFileW, CloseHandle, FreeResource, CreateThread, lstrcpynA, AreFileApisANSI, GetFullPathNameA, GetFileAttributesA, CreateFileA, DeviceIoControl, CreateFileMappingW, CreateFileMappingA, GetComputerNameW, GlobalFree, RaiseException, CreateDirectoryW, ExpandEnvironmentStringsA, LoadLibraryExA, IsProcessorFeaturePresent, GetTempFileNameW, GetTempPathW, GetExitCodeProcess, GetTimeZoneInformation
mfc110u.dll
DllMain
mfc80u.dll
DllMain
msvcp110.dll
DllMain
msvcp80.dll
DllMain
msvcr110.dll
DllMain
msvcr80.dll
DllMain
ole32.dll
CoTaskMemFree, CoCreateInstance
shell32.dll
Shell_NotifyIconW, SHGetSpecialFolderLocation, SHGetMalloc, ShellExecuteW, ShellExecuteExW, SHGetDesktopFolder, SHGetPathFromIDListA, SHGetFileInfoW, SHBrowseForFolderW, SHGetPathFromIDListW
shlwapi.dll
ColorRGBToHLS, ColorHLSToRGB, PathAppendW, PathAddExtensionW
user32.dll
DestroyIcon, AdjustWindowRectEx, SetTimer, GetSystemMenu, KillTimer, GetActiveWindow, ModifyMenuW, SetMenuDefaultItem, GetSubMenu, GetMenuItemCount, RegisterWindowMessageW, GetMenuState, GetClassInfoW, GetMenuItemID, FindWindowW, IsIconic, RegisterClassW, SetActiveWindow, MessageBoxW, InsertMenuW, GetMenu, RemoveMenu, IsZoomed, SetMenu, DrawIconEx, CopyRect, SetRect, InflateRect, ReleaseDC, GetDC, InvalidateRect, LoadIconW, GetWindowLongW, GetWindowDC, SetRectEmpty, SetWindowsHookExW, UnhookWindowsHookEx, CallNextHookEx, WindowFromPoint, GetParent, SetWindowPos, ShowWindow, FillRect, LoadStringW, UpdateWindow, GetUpdateRgn, ValidateRect, SetWindowRgn, IntersectRect, GetMenuDefaultItem, SetWindowLongW, CreateWindowExW, DrawTextW, IsRectEmpty, LoadImageW, DestroyAcceleratorTable, ClientToScreen, CreateAcceleratorTableW, GetWindowRgn, EqualRect, TranslateAcceleratorW, wsprintfW, DestroyWindow, FrameRect, GetWindowTextW, DestroyCursor, CreatePopupMenu, AppendMenuW, FindWindowExW, GetWindowThreadProcessId, RedrawWindow, CallWindowProcW, DrawFrameControl, EnumChildWindows, GetClassNameW, PeekMessageW, TranslateMessage, DispatchMessageW, MsgWaitForMultipleObjects, SetMenuItemInfoW, GetMenuItemInfoW, GetKeyState, GetScrollPos, LoadBitmapW, GetForegroundWindow, CreateIconFromResourceEx, GetDlgCtrlID, CheckMenuItem, LoadCursorW, PostMessageW, MessageBeep, GetDesktopWindow, SetFocus, IsWindow, IsWindowVisible, EnableWindow, PtInRect, GetAsyncKeyState, GetWindowRect, GetSystemMetrics, OffsetRect, GetClientRect, GetSysColor, EnableMenuItem, SendMessageW, LoadMenuW, SetForegroundWindow, GetFocus, SystemParametersInfoW, SetCapture, SetCursor, ScreenToClient, GetCursorPos, GetNextDlgTabItem, GetWindow, DrawFocusRect, ReleaseCapture, GetWindowInfo, SetMenuInfo, GetMenuInfo, MonitorFromRect, GetMonitorInfoW, DeleteMenu, OpenClipboard, EmptyClipboard, SetClipboardData, CloseClipboard, GetSysColorBrush, GetDialogBaseUnits, DefWindowProcW, TabbedTextOutW, DrawTextExW, GrayStringW, InSendMessage, PostQuitMessage, NotifyWinEvent, ExitWindowsEx

egui.exe

ESET Smart Security by ESET (Signed)

Remove egui.exe
Version:   6.0.316.0
MD5:   466b9a9914db2b01a20b1207c3e65c0f
SHA1:   2714c9ae8f69280424cc2b291927e49b00ccfdd7
SHA256:   b54b5de4f29e97dbeba23b491929d9ff35b71bd9cab2631de295c6d34ff8d6e9

What is egui.exe?

ESET NOD32 Antivirus, commonly known as NOD32, is an antivirus software package from ESET. ESET's use of assembly language in its products contributes to their low system requirements and disk space utilization. ESET calls its scanning engine ThreatSense, and makes extensive use of generic signatures and heuristics.

About egui.exe (from ESET)

Protect your family with ESET’s complete Internet security suite, built on the award-winning ThreatSense antivirus and antispyware engine. Our proactive heuristic technology intercepts and eliminates

DetailsDetails

File name:egui.exe
Publisher:ESET
Product name:ESET Smart Security
Description:ESET GUI
Typical file path:C:\Program Files\eset\eset nod32 antivirus\egui.exe
File version:6.0.316.0
Size:6.04 MB (6,330,568 bytes)
Build date:3/21/2013 2:06 PM
Certificate
Issued to:ESET
Authority (CA):VeriSign
Expiration date:Wednesday, June 12, 2013
Digital DNA
PE subsystem:Windows GUI
File packed:No
Code language:Microsoft Visual C++ 8.0
.NET CLR:No
More details

ResourcesPrograms

The following programs will install this file
ESET Smart Security
 ESET spol. s r.o.
6% remove
ESET Smart Security is an all-in-one Internet Security solution with new Anti-theft feature that locates your missing laptop and gives you tools to help recover it. Personal Firewall and Anti-Phishing keep your data safe from identity theft and other scams. Delivering top protection right from the start, the solution lets you address security issues directly from the main screen. Quickly find the settings you need and fine-tune your sec...
ESET NOD32 Antivirus
 ESET spol. s r.o.
8% remove
ESET NOD32 Antivirus, commonly known as NOD32, is an antivirus software package made by the Slovak company ESET.

BehaviorsBehaviors

Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'egui' → "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
Scheduled tasks
  • Entry path '\{AD794476-80F7-4EF2-AB8A-392BF5AC85C1}'

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00040896%
0.028634%
Kernel CPU:0.00020275%
0.013761%
User CPU:0.00020620%
0.014873%
Kernel CPU time:9,850,924 ms/min
100,923,805ms/min
CPU cycles:523,067/sec
17,470,203/sec
Context switches:10/sec
284/sec
Memory
Private memory:7.95 MB
21.59 MB
Private (maximum):19.86 MB
Private (minimum):14.03 MB
Non-paged memory:7.95 MB
21.59 MB
Virtual memory:122.19 MB
140.96 MB
Virtual memory (peak):131.31 MB
169.69 MB
Working set:16.45 MB
18.61 MB
Working set (peak):20.52 MB
37.95 MB
Page faults:15,026/min
2,039/min
I/O
I/O read transfer:2.09 KB/sec
1.02 MB/min
I/O read operations:1/sec
343/min
I/O other transfer:276 Bytes/sec
448.09 KB/min
I/O other operations:22/sec
1,671/min
Resource allocations
Threads:8
12
Handles:172
600
GUI GDI count:238
103
GUI GDI peak:256
142
GUI USER count:62
49
GUI USER peak:80
71

BehaviorsProcess properties

Integrety level:Undefined
Platform:64-bit
Command lines:
  • "C:\Program Files\eset\eset smart security\egui.exe" /hide /waitservice
  • "C:\Program Files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
Owner:User
Parent process:explorer.exe (Windows Explorer by Microsoft Corporation)

ResourcesThreads

Averages
 
MSVCR80.dll
Total CPU:0.16250450%
0.272967%
Kernel CPU:0.04229569%
0.107585%
User CPU:0.12020881%
0.165382%
CPU cycles:3,717,056/sec
5,741,424/sec
Memory:804 KB
1.16 MB
egui.exe (main module)
Total CPU:0.00161087%
Kernel CPU:0.00068096%
User CPU:0.00092991%
CPU cycles:514,486/sec
Context switches:8/sec
Memory:6.05 MB

Common loaded modules

These are modules that are typiclaly loaded within the context of this process.

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Ultimate 43.18%
Microsoft Windows XP 22.16%
Windows 7 Home Premium 11.36%
Windows 8 Pro 7.39%
Windows 7 Professional 4.55%
Windows 7 Ultimate N 2.84%
Windows 7 Home Basic 1.70%
Windows 8.1 N 1.14%
Windows 8.1 Single Language 1.14%
Windows 8.1 1.14%
Windows Vista Home Premium 1.14%
Windows 8 Enterprise 0.57%
Windows 8 0.57%
Windows 8 Consumer Preview 0.57%
Windows 8 Pro with Media Center 0.57%

Distribution by countryDistribution by country

Ireland installs about 14.20% of ESET Smart Security.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
ASUS 17.30%
Hewlett-Packard 15.14%
Dell 15.14%
Intel 11.89%
Lenovo 9.73%
Sony 8.65%
Acer 7.03%
Toshiba 6.49%
GIGABYTE 5.95%
Samsung 1.08%
American Megatrends 1.08%
Sahara 0.54%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE