Microsoft Intune Endpoint Protection
What is Microsoft Intune Endpoint Protection?
Microsoft Intune Endpoint Protection is software application developed by Microsoft Corporation. It is most commonly found on computers running Windows 7 with nearly 63.33% of installations running this operating system. Microsoft Intune Endpoint Protection's installer is typically 29.00 MB in size and installs around 31 files. The most common release is 4.8.204.0 with 36.67% of all installations currently using this version.
Microsoft Intune Endpoint Protection is most popular in the United States with 46.33% of installations residing in this country.
Microsoft Intune Endpoint Protection adds 3 scheduled tasks to the Windows Task Scheduler launching the program at randomly scheduled times. When using a computer that is connected to the internet, Microsoft Intune Endpoint Protection is known to create 1 firewall exception to allow inbound and outbound connectivity.
Software Behaviors
- Services:
-
- NisSrv.exe runs as a service named 'Microsoft Netwerkinspectie' (NisSrv) "Biedt bescherming tegen inbraakpogingen die gericht zijn op bekende en recentelijk gevonden zwakke plekken in netwerkprotocollen".
- MsMpEng.exe runs as a service named 'Microsoft Antimalware Service' (MsMpSvc) "Helps protect users from malware and other potentially unwanted software".
- Firewall:
-
- shellext.dll is added as a firewall exception for 'C:\Program Files2\HEWLET~1\PCCOE3~1\OVCMS~1\radexecd.exe'.
- Scheduled tasks:
-
- msseces.exe is scheduled as a task with the class '{6FA94EF8-7B88-4C31-9AF5-D831F612AF54}' (runs on registration).
- MpCmdRun.exe is scheduled as a task named 'Microsoft Security Essentials Scan' (runs daily at 11:00 PM).
- Setup.exe is scheduled as a task with the class '{8394A627-17ED-49B2-BAB7-EDEA22CED87E}' (runs on registration).
Startup Entries
- Startup tasks:
-
- msseces.exe is automatically launched at startup through a scheduled task named 5.
- MpCmdRun.exe is automatically launched at startup through a scheduled task named MS-AntiVir-Update.
- Registry entries:
-
- msseces.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'Microsoft Sequrity Essential' and executes as C:\Program Files\Microsoft Security Client\msseces.exe.
- Registry entries (User):
-
- msseces.exe is loaded once in the current user (HKCU) registry as a startup file name 'Application Restart #1' which loads as C:\Program Files\Microsoft Security Client\msseces.exe -Recover.
Software Details
- URL:
- https://go.microsoft.com/fwlink/?linkid=206391&mkt=en-us
- Support:
- https://go.microsoft.com/fwlink/?linkid=206391&mkt=it-it
- Installation path:
- C:\Program Files\Microsoft Security Client
- Uninstaller:
- "C:\Program Files\Microsoft Security Client\Setup.exe" /x
- Size:
- 29.00 MB
- Language:
- English
Microsoft Intune Endpoint Protection Executable Details
- Primary executable:
- sqmapi.dll
- Name:
- Microsoft Intune Endpoint Protection
- Path:
- C:\Program Files\Microsoft Security Client\sqmapi.dll
- MD5:
- 93812fdc01aa864195816cd814445f95
- SHA-1:
- –
- SHA-256:
- –
| File Type | Filename | MD5 |
|---|---|---|
|
EXE
|
9690f420a99364c1e5c439914b0de25c | |
|
DLL
|
4ed32c3115ac5207f63b2ddb9ef21a6a | |
|
EXE
|
d34512c8a1524223cf3df7acfc032bf4 | |
|
DLL
|
297f164df80d84d8b300cb7bb46f6bae | |
|
DLL
|
cce3b423254296e4e1c3c52ab504108f | |
|
DLL
|
a3c7927249f797f6999187658087b6e9 | |
|
EXE
|
a6aad37cdcae75cb62d039e3a4d8f5e3 | |
|
DLL
|
e88d3bfb862233fe1571ba64676d19ba | |
|
DLL
|
2fb1db2f58a7d3da394e505dc3157b93 | |
|
EXE
|
9444ec276653f432a59b1931e02f54a0 |