System Center 2012 Endpoint Protection
What is System Center 2012 Endpoint Protection?
System Center 2012 Endpoint Protection is software application developed by Microsoft Corporation. It is most commonly found on computers running Windows 7 with nearly 81.12% of installations running this operating system. System Center 2012 Endpoint Protection's installer is typically 21.00 MB in size and installs around 40 files. The most common release is 2.2.903.0 with 54.13% of all installations currently using this version.
System Center 2012 Endpoint Protection is most popular in the United States with 55.29% of installations residing in this country.
System Center 2012 Endpoint Protection adds 4 scheduled tasks to the Windows Task Scheduler launching the program at randomly scheduled times. When using a computer that is connected to the internet, System Center 2012 Endpoint Protection is known to create 2 firewall exceptions to allow inbound and outbound connectivity.
Software Behaviors
- Services:
-
- NisSrv.exe runs as a service named '@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243' (NisSrv) "Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols".
- MsMpEng.exe runs as a service named 'MsMpSvc' (MsMpSvc).
- Firewall:
-
- msseces.exe is added as a firewall exception for 'C:\Program Files\Microsoft Security Client\msseces.exe'.
- shellext.dll is added as a firewall exception for 'C:\users\user\appdata\Local\Temp\22977886_system.exe'.
- Scheduled tasks:
-
- msseces.exe is scheduled as a task with the class '{70A48729-EDA2-4C43-BD2A-622C1FE1B158}' (runs on registration).
- MpCmdRun.exe is scheduled as a task named 'MSE Update' (runs daily at 17:00).
- Setup.exe is scheduled as a task with the class '{8394A627-17ED-49B2-BAB7-EDEA22CED87E}' (runs on registration).
- MsMpEng.exe is scheduled as a task with the class '{F35C5A8E-B694-4B4E-A4F0-A5D4F2D3A841}' (runs on registration).
Startup Entries
- Startup tasks:
-
- msseces.exe is automatically launched at startup through a scheduled task named MSC.
- Registry entries:
-
- msseces.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'msseces.exe' and executes as C:\Program Files\Microsoft Security Client\msseces.exe.
- Registry entries (User):
-
- msseces.exe is loaded once in the current user (HKCU) registry as a startup file name 'Microsoft Security Client' which loads as C:\Program Files\Microsoft Security Client\msseces.exe /UpdateAndQuickScan /OpenWebPageOnClose.
Software Details
- URL:
- https://go.microsoft.com/fwlink/?linkid=225780&mkt=es-es
- Support:
- https://go.microsoft.com/fwlink/?linkid=225780&mkt=en-us
- Installation path:
- C:\Program Files\Microsoft Security Client
- Uninstaller:
- C:\Program Files\Microsoft Security Client\Setup.exe /x
- Size:
- 21.00 MB
- Language:
- English
System Center 2012 Endpoint Protection Executable Details
- Primary executable:
- msseces.exe
- Name:
- System Center 2012 Endpoint Protection
- Path:
- C:\Program Files\Microsoft Security Client\msseces.exe
- MD5:
- –
- SHA-1:
- –
- SHA-256:
- –
File Type | Filename | MD5 |
---|---|---|
DLL
|
93812fdc01aa864195816cd814445f95 | |
DLL
|
a5e4b3ff51cf5b7926d9651908feb666 | |
EXE
|
dac1c2f43e416f9edfae4afa284b9221 | |
DLL
|
72b806dc0773547470293b46951643c8 | |
DLL
|
1dca361a88cfc4f693ed484eb0470330 | |
DLL
|
1648f5e2cd37d0e8f27d25d4ac59a196 | |
DLL
|
a26e0a6a7ebb45815a3583e170c27031 | |
EXE
|
cc8e4f72f21340a4d3a3d4db50313ef5 | |
DLL
|
92770fd9f2f2748eba6594df947b4d2f | |
DLL
|
1b0e36a4214d593ecff50f1dfc00d9cb |