Information about ehdrv.sys

ehdrv.sys

File Details

Product Name:

ESET Security
Company Name:

ESET
MD5: 560edc0912bdb68290930e2542823a24
Size: 132 KB
First Published: 2017-05-21 04:02:48 (8 years ago)
Latest Published: 2025-04-22 23:01:37 (7 months ago)
Status: Undefined (on last analysis)
Analysis Date: 2025-04-22 23:01:37 (7 months ago)

Overview

Signed By: ESET, spol. s r.o.
Status: Valid

Common Places:

%localappdata%\temp
%temp%\1
%sysdrive%\docume~1\admini~1\locals~1\temp
%sysdrive%\temp
%sysdrive%\docume~1\7b5c~1\locals~1\temp
%sysdrive%\docume~1\acer\locals~1\temp
%sysdrive%\docume~1\admin\locals~1\temp
%sysdrive%\docume~1\86c2~1\locals~1\temp
%windir%\temp
%sysdrive%\docume~1\admini~1\defini~1\temp

Geography:

12.0%
9.3%
7.7%
6.7%
5.6%
5.2%
3.9%
3.3%
3.3%
2.9%
2.7%
2.2%
2.2%
2.1%
2.0%
1.8%
1.5%
1.4%
1.4%
1.4%
1.3%
1.2%
1.2%
1.2%
1.0%
1.0%
0.9%
0.9%
0.8%
0.7%
0.7%
0.6%
0.6%
0.5%
0.5%
0.4%
0.4%
0.4%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 7 33.6%
Windows 10 31.8%
Windows 8.1 30.0%
Windows 8 1.7%
Windows XP 1.3%
Windows Server 2008 R2 0.5%
Windows Server 2012 R2 0.5%
Windows Vista 0.2%
Windows Server 2003 0.1%
Windows Server 2012 0.1%

Analysis

Subsystem: Native
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000204ac

PE Sections:

Name Size of data MD5
.text 101376 41a10f259430bc387ca90098d88a037d
.rdata 13312 caf9806235b6391e4bc2e93b15fe622f
.data 512 8e655d0de0500764330d31d0a65865ef
PAGE 1536 f571d4f95a5a41fc43016dc50ed42a81
INIT 4096 757130db41ff1c0e1fdaae78463e41f0
.rsrc 1536 4562b447f04b75f513a375e116a91940
.reloc 3584 829f91ee6009808e65c9f762b4d69b69

More information:

Search on Virustotal
copyright for information about ehdrv.sys