Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

4.5.0216.0 6.54%
4.4.0304.0 3.92%
4.4.0304.0 0.65%
4.3.0219.0 5.88%
4.3.0219.0 3.66%
4.3.0216.0 1.96%
4.3.0216.0 1.44%
4.3.0215.0 3.01%
4.3.0215.0 1.18%
4.2.0223.0 18.17%
4.2.0223.0 13.99%
4.2.0216.0 0.26%
4.1.0522.0 16.86%
4.1.0522.0 14.77%
4.0.1526.0 1.70%
2.1.1116.0 1.83%
2.1.1116.0 2.35%
2.0.0657.0 0.65%
1.0.1611.0 1.18%

Relationships

Parent process
Related files

PE structurePE file structure
Show functions
Import table
advapi32.dll
OpenThreadToken, StartTraceW, ControlTraceW, EnableTrace, QueryAllTracesW, RegQueryValueExW, RegOpenKeyExW, GetTokenInformation, GetLengthSid, AllocateAndInitializeSid, FreeSid, CopySid, CheckTokenMembership, OpenProcessToken, LookupPrivilegeValueW, AdjustTokenPrivileges, TraceEvent, RegCloseKey, UnregisterTraceGuids, RegisterTraceGuidsW, GetTraceLoggerHandle, GetTraceEnableLevel, GetTraceEnableFlags, GetNamedSecurityInfoW, GetSecurityDescriptorControl, GetSecurityDescriptorLength, MakeSelfRelativeSD, GetSecurityDescriptorSacl, GetSecurityDescriptorDacl, GetSecurityDescriptorGroup, GetSecurityDescriptorOwner, GetAce, GetAclInformation, AddAce, InitializeAcl, EqualSid, IsValidSid, ConvertStringSecurityDescriptorToSecurityDescriptorW, GetSidSubAuthorityCount, DuplicateTokenEx, GetSidSubAuthority, OpenSCManagerW, ConvertStringSidToSidW, OpenServiceW, ChangeServiceConfigW, ControlService, QueryServiceStatus, PrivilegeCheck, InitiateSystemShutdownExW, CloseServiceHandle, LookupPrivilegeNameW, CreateProcessAsUserW, RegDeleteValueW, RegDeleteKeyW, RegSetValueExW, RegCreateKeyExW, SetNamedSecurityInfoW
comctl32.dll
ImageList_LoadImageW, ImageList_Destroy, ImageList_Create, ImageList_ReplaceIcon, InitCommonControlsEx, ImageList_GetIconSize
comdlg32.dll
CommDlgExtendedError, PrintDlgW
crypt32.dll
CertVerifyCertificateChainPolicy
gdi32.dll
SetViewportOrgEx, SetWindowOrgEx, SetGraphicsMode, RestoreDC, CreatePatternBrush, DPtoLP, ModifyWorldTransform, SaveDC, ExtTextOutW, CreateDIBSection, GetObjectW, SetLayout, SelectObject, CreateBitmap, GetDeviceCaps, CreateCompatibleDC, SetTextColor, SetBkMode, PatBlt, GetTextExtentPoint32W, GetStockObject, GetObjectA, CreateSolidBrush, GetLayout, GetPixel, SetBkColor, GetTextMetricsW, DeleteDC, DeleteObject, CreateFontIndirectW, BitBlt, EndDoc, AbortDoc, StartDocW, EndPage, StartPage, CreateCompatibleBitmap
gdiplus.dll
GdipDrawImageRect, GdipSetStringFormatHotkeyPrefix, GdipSetStringFormatLineAlign, GdipSetStringFormatAlign, GdipStringFormatGetGenericDefault, GdipCloneStringFormat, GdipDrawLine, GdipLoadImageFromStreamICM, GdipLoadImageFromStream, GdipDeleteStringFormat, GdipCreateStringFormat, GdipDrawLineI, GdipDrawPath, GdipFillPath, GdipDeletePath, GdipCreatePath, GdipDrawImageRectI, GdipDrawString, GdipCloneBitmapAreaI, GdipCreateFontFromLogfontA, GdipCreateFontFromDC, GdipMeasureString, GdipFillRectangle, GdipReleaseDC, GdipGetDC, GdipAddPathArcI, GdipAddPathLineI, GdipClosePathFigure, GdipCreateLineBrushFromRect, GdipCreateHICONFromBitmap, GdipCreateBitmapFromStreamICM, GdipCreateBitmapFromStream, GdipGetImagePixelFormat, GdipDeleteFont, GdipCloneBrush, GdipFillRectangleI, GdipDrawRectangleI, GdipCreateLineBrushFromRectI, GdiplusShutdown, GdipFree, GdipAlloc, GdipDeleteGraphics, GdipDisposeImage, GdipGetImageWidth, GdipGetImageHeight, GdipCreateBitmapFromHICON, GdiplusStartup, GdipCreateFromHDC, GdipSetSmoothingMode, GdipDrawImageRectRectI, GdipCloneImage, GdipDeleteBrush, GdipCreatePen1, GdipDeletePen, GdipCreateSolidFill, GdipSetTextRenderingHint, GdipImageRotateFlip
kernel32.dll
HeapDestroy, HeapAlloc, HeapFree, HeapReAlloc, HeapSize, GetProcessHeap, LoadLibraryA, VirtualFree, VirtualAlloc, UnmapViewOfFile, GetSystemDefaultUILanguage, GetUserDefaultUILanguage, SearchPathW, WaitForMultipleObjects, InterlockedExchange, Sleep, InterlockedCompareExchange, OutputDebugStringA, RtlUnwind, SetUnhandledExceptionFilter, GetModuleHandleA, QueryPerformanceCounter, GetTickCount, GetCurrentThreadId, GetCurrentProcessId, GetSystemTimeAsFileTime, TerminateProcess, GetCurrentProcess, UnhandledExceptionFilter, GetVersion, RaiseException, CloseHandle, EnterCriticalSection, LeaveCriticalSection, InitializeCriticalSection, DeleteCriticalSection, SizeofResource, LockResource, LoadResource, FindResourceW, FindResourceExW, GetLastError, FlushInstructionCache, LocalFree, LocalAlloc, FreeLibrary, GetProcAddress, LoadLibraryW, SetEvent, CreateEventW, ResetEvent, CreateMutexW, SetLastError, InterlockedIncrement, InterlockedDecrement, GetVersionExW, FreeConsole, GetConsoleDisplayMode, AttachConsole, lstrcmpW, GetModuleHandleW, GetDateFormatW, GetModuleFileNameW, GetTimeFormatW, FileTimeToLocalFileTime, GetLocaleInfoW, GetLocalTime, FileTimeToSystemTime, CreateFileW, ReadFile, GetDriveTypeW, GetFileAttributesW, MulDiv, GetLogicalDriveStringsW, FindClose, FindFirstFileW, FindNextFileW, ExitProcess, CompareFileTime, GetExitCodeProcess, SwitchToThread, WaitForSingleObject, FormatMessageW, DeleteFileW, MoveFileW, GetTempPathW, LoadLibraryExW, GetSystemDefaultLangID, lstrlenW, TryEnterCriticalSection, GetFileSizeEx, GetSystemDefaultLCID, CreateProcessW, MoveFileExW, WriteFile, GetTempFileNameW, InitializeCriticalSectionAndSpinCount, CreateThread, LCMapStringW, CreateFileMappingW, MapViewOfFile, ExpandEnvironmentStringsW, GetCurrentThread, SystemTimeToFileTime, WideCharToMultiByte, MultiByteToWideChar, SetErrorMode, GetVersionExA, GetCommandLineW, VerifyVersionInfoW, GetFileSize, GetLongPathNameW, GetExitCodeThread, GetPrivateProfileStringW, FreeResource, WritePrivateProfileStringW, ProcessIdToSessionId, GlobalFindAtomW, HeapSetInformation, RemoveDirectoryW, Process32NextW, Process32FirstW, CreateToolhelp32Snapshot, GetDiskFreeSpaceExW, GetWindowsDirectoryW, IsWow64Process, ReleaseMutex, CopyFileW, GlobalFree, GlobalAlloc, GetPrivateProfileIntW, InterlockedPopEntrySList, IsProcessorFeaturePresent, InterlockedPushEntrySList, OpenProcess, GetSystemDirectoryW, CreateDirectoryW, GetNativeSystemInfo
mpclient.dll
MpConfigRegisterForNotifications, MpThreatQuery, MpSampleQuery, MpSampleSubmit, MpThreatEnumerate, MpThreatOpen, MpElevateCleanHandle, MpElevationHandleAcquire, MpCleanOpen, MpCleanStart, MpUpdateStartEx, MpScanStart, MpOfflineScanStatusQuery, MpManagerStatusQueryEx, MpNotificationRegister, MpUpdateControl, MpManagerVersionQuery, MpConfigIteratorEnum, MpConfigIteratorOpen, MpTelemetryUpdateUserConsent, MpConfigUnregisterNotifications, MpConfigIteratorClose, MpConfigGetValueAlloc, MpProductGenuineCheck, MpManagerEnable, MpFreeMemory, MpCreateComInstance, MpConfigClose, MpConfigGetValue, MpConfigOpen, MpHandleClose, MpForcedReboot, MpTelemetryIncrementDWORD, MpTelemetrySetDWORD, MpClientUtilExportFunctions, MpErrorMessageFormat, MpManagerOpen, MpUtilsExportFunctions, MpAllocMemory, MpTelemetryIsOptIn, MpConfigUninitialize, MpConfigInitialize, MpTelemetryUninitialize, MpTelemetryUpload, MpTelemetryInitialize
msvcrt.dll
DllMain
ole32.dll
CoInitializeEx, CoCreateGuid, StringFromGUID2, CoCreateInstance, CoUninitialize
psapi.dll
GetModuleFileNameExW
shell32.dll
ShellExecuteExW, SHGetFileInfoW, Shell_NotifyIconW, SHGetFolderPathW, SHGetSpecialFolderLocation, SHGetPathFromIDListW, CommandLineToArgvW
shlwapi.dll
PathFileExistsW, StrCmpNIW, StrStrIW, PathAppendW, PathRemoveFileSpecW, StrCmpNW, StrCmpW, PathIsDirectoryW, PathCombineW, PathIsRelativeW, PathFindFileNameW, StrCmpIW, PathMatchSpecW, PathIsRootW
user32.dll
GetMessageW, LoadAcceleratorsW, GetDesktopWindow, FindWindowExW, AllowSetForegroundWindow, MessageBoxW, EnableWindow, SetWindowTextW, LoadImageW, GetLastActivePopup, ShowCursor, SetCursor, GetWindowTextW, GetWindowTextLengthW, PostQuitMessage, SetFocus, GetFocus, GetWindowLongW, IsWindowEnabled, GetNextDlgTabItem, IsDialogMessageW, GetClassNameW, GetKeyState, CallWindowProcW, MoveWindow, SetWindowPos, GetWindowRect, GetClientRect, GetWindowPlacement, ScreenToClient, BeginPaint, EndPaint, GetDC, ReleaseDC, InvalidateRect, ShowWindow, IsWindowVisible, LockWindowUpdate, SetTimer, KillTimer, MapWindowPoints, SystemParametersInfoW, GetWindow, GetParent, IsRectEmpty, GetSysColor, PeekMessageW, FindWindowW, WindowFromPoint, GetSystemMetrics, GetWindowThreadProcessId, GetForegroundWindow, DefWindowProcW, DestroyMenu, FlashWindowEx, TrackMouseEvent, TranslateAcceleratorW, RegisterWindowMessageW, TrackPopupMenu, GetCursorPos, EnableMenuItem, AppendMenuW, CreatePopupMenu, ReplyMessage, MessageBeep, GetDoubleClickTime, GetAncestor, DrawFocusRect, FillRect, InflateRect, EndDialog, GetDlgItem, DrawTextW, GetDlgCtrlID, GetSubMenu, LoadMenuW, DeleteMenu, RedrawWindow, MessageBoxIndirectW, GetActiveWindow, GetSysColorBrush, GetSystemMenu, GetMenuState, PtInRect, EqualRect, LoadIconW, SetMenuItemInfoW, SetMenuInfo, IsMenu, OffsetRect, ShowCaret, HideCaret, GetWindowDC, SetDlgItemTextW, SetRectEmpty, SetCapture, ReleaseCapture, DrawEdge, GetMessagePos, GetCapture, UpdateWindow, GetScrollPos, ScrollWindow, ScrollWindowEx, SetScrollPos, GetScrollInfo, SetScrollInfo, GetWindowInfo, CreateDialogIndirectParamW, SetActiveWindow, TranslateMessage, DispatchMessageW, SendMessageW, PostMessageW, CreateWindowExW, RegisterClassExW, DestroyIcon, DestroyWindow, LoadCursorW, GetClassInfoExW, IsWindow, SetWindowLongW, DialogBoxIndirectParamW, UnregisterClassA, ClientToScreen, ExitWindowsEx, SetForegroundWindow, GetIconInfo, DrawIconEx, CreateIconIndirect, ModifyMenuW, GetMenuStringW, GetMenuItemID, GetMenuItemInfoW, GetMenuItemCount, CheckDlgButton, AdjustWindowRect, PostThreadMessageW, LoadStringW, CreateDialogParamW, IsDlgButtonChecked
userenv.dll
UnloadUserProfile, DestroyEnvironmentBlock, CreateEnvironmentBlock
version.dll
GetFileVersionInfoSizeW, GetFileVersionInfoW, VerQueryValueW
wininet.dll
InternetGetConnectedState
wintrust.dll
WinVerifyTrust, WTHelperProvDataFromStateData, WTHelperGetProvSignerFromChain, CryptCATAdminCalcHashFromFileHandle, CryptCATAdminAcquireContext, CryptCATAdminEnumCatalogFromHash, CryptCATCatalogInfoFromContext, CryptCATAdminReleaseCatalogContext, CryptCATAdminReleaseContext
wtsapi32.dll
WTSQuerySessionInformationW, WTSEnumerateSessionsW, WTSFreeMemory, WTSQueryUserToken

msseces.exe

Microsoft Security Essentials by Microsoft Corporation (Signed)

Remove msseces.exe
Version:   4.1.0522.0
MD5:   0dc6669bc2b552c0ecc905b6b761f508
SHA1:   cb2b2551a37bdc7ac8d2384e04f954dfc2ea2958
SHA256:   3b0dc78fdfdfa17b8307c8263260bbaf574fa3b5fa52393b28902c70e577ec71

What is msseces.exe?

Msseces.exe is the front-end GUI of MSE(Microsoft Security Essentials). If you have installed the latest antivirus from Microsoft, then this process keeps the program’s graphical interface running. Even if you end this process, MSE(Microsoft Security Essentials) will keep running in Windows background and will not actually shutdown. The downside would be that it will not be able to alert you of any new threat. If you are running MSE, then you should not worry about this process since it is not s

About msseces.exe (from Microsoft Corporation)

Microsoft Security Essentials provides real-time protection for your home or small business PC that guards against viruses, spyware, and other malicious software. Microsoft Security Essentials is a fr

DetailsDetails

File name:msseces.exe
Publisher:Microsoft Corporation
Product name:Microsoft Security Essentials
Description:Microsoft Security Essentials User Interface
Typical file path:C:\Program Files\microsoft security essentials\msseces.exe
File version:4.1.0522.0
Size:1.23 MB (1,289,704 bytes)
Certificate
Issued to:Microsoft Corporation
Authority (CA):Microsoft Corporation
Effective date:Monday, July 13, 2009
Expiration date:Wednesday, October 13, 2010
Digital DNA
PE subsystem:Windows GUI
Entropy:6.242037
File packed:No
Code language:Microsoft Visual C++
.NET CLR:No
More details

ResourcesPrograms

The following programs will install this file
Microsoft Security Essentials
 Microsoft Corporation
8% remove
Microsoft Security Essentials is an antivirus software product that provides protection against different types of malware such as computer viruses, spyware, rootkits and Trojan horses. It runs on Windows XP, Windows Vista and Windows 7, but not on Windows 8, which has a built-in AV component. Built upon the same virus definitions and scanning engine as other Microsoft antivirus products, MSE provides real-time protection, constantly mo...
Microsoft Security Client
 Microsoft Corporation
4% remove
Microsoft Security Client for Microsoft Security Essentials is an antivirus software product that provides protection against different types of malware such as computer viruses, spyware, rootkits and Trojan horses. Built upon the same virus definitions and scanning engine as other Microsoft antivirus products, MSE provides real-time protection, constantly monitoring activities on the computer and scanning new files as they are download...
System Center 2012 Endpoint Protection
 Microsoft Corporation
5% remove
Security and management have traditionally existed as two separate disciplines, yet both play a central role in keeping your users safe and productive. Microsoft System Center 2012 Endpoint Protection (previously known as Forefront Endpoint Protection) allows you to consolidate desktop security and management in a single solution. Built on System Center 2012 Configuration Manager, System Center 2012 Endpoint Protection provides a sin...
Microsoft Forefront Endpoint Protection
 Microsoft Corporation
1% remove
Microsoft Forefront is a family of line-of-business security software that are designed to help protect computer networks, network servers (such as Microsoft Exchange Server and Microsoft SharePoint Server) and individual devices.
Microsoft Security Essentials Prerelease
 Microsoft Corporation
1% remove
The Microsoft Security Essentials Prerelease program allows users to run the latest & greatest versions of Security Essentials before they are publicy available.

BehaviorsBehaviors

Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'MSC' → "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
  • 'MSSE' → "C:\Program Files\Microsoft Security Essentials\msseces.exe" -hide
Scheduled tasks
  • The task '{71D4AACB-C18B-4045-A10C-354B97DBD55B}' runs on registration in the path '\{71D4AACB-C18B-4045-A10C-354B97DBD55B}'

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00266197%
0.028634%
Kernel CPU:0.00076998%
0.013761%
User CPU:0.00189199%
0.014873%
Kernel CPU time:1,145,188 ms/min
100,923,805ms/min
CPU cycles:372,063/sec
17,470,203/sec
Context switches:25/sec
284/sec
Memory
Private memory:7.6 MB
21.59 MB
Private (maximum):14.42 MB
Private (minimum):8.05 MB
Non-paged memory:7.6 MB
21.59 MB
Virtual memory:114.86 MB
140.96 MB
Virtual memory (peak):121.59 MB
169.69 MB
Working set:10.12 MB
18.61 MB
Working set (peak):17.72 MB
37.95 MB
Page faults:49,221/min
2,039/min
I/O
I/O read transfer:67 Bytes/sec
1.02 MB/min
I/O read operations:1/sec
343/min
I/O write transfer:0 Bytes/sec
274.99 KB/min
I/O write operations:1/sec
227/min
I/O other transfer:84 Bytes/sec
448.09 KB/min
I/O other operations:5/sec
1,671/min
Resource allocations
Threads:5
12
Handles:274
600
GUI GDI count:167
103
GUI GDI peak:178
142
GUI USER count:86
49
GUI USER peak:91
71

BehaviorsProcess properties

Integrety level:Medium
Platform:64-bit
Command lines:
  • "C:\Program Files\microsoft security client\msseces.exe" -hide -runkey
  • /hide
  • "C:\Program Files\microsoft security client\msseces.exe" -recover
  • "C:\Program Files\microsoft security client\msseces.exe"
Owner:User
Parent process:explorer.exe (Windows Explorer by Microsoft Corporation)

ResourcesThreads

Averages
 
msseces.exe (main module)
Total CPU:0.00792873%
0.272967%
Kernel CPU:0.00228522%
0.107585%
User CPU:0.00564351%
0.165382%
CPU cycles:331,972/sec
5,741,424/sec
Context switches:4/sec
79/sec
Memory:1.23 MB
1.16 MB
ntdll.dll
Total CPU:0.00017566%
Kernel CPU:0.00015375%
User CPU:0.00002191%
CPU cycles:4,316/sec
Memory:1.66 MB
gdiplus.dll
Total CPU:0.00007901%
Kernel CPU:0.00007791%
User CPU:0.00000110%
CPU cycles:355/sec
Memory:2.09 MB

Common loaded modules

These are modules that are typiclaly loaded within the context of this process.

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Home Premium 60.50%
Windows 7 Ultimate 15.00%
Windows 7 Professional 10.00%
Microsoft Windows XP 7.50%
Windows Vista Home Premium 5.00%
Windows Vista Business 1.00%
Windows Vista Ultimate 1.00%

Distribution by countryDistribution by country

United States installs about 54.55% of Microsoft Security Essentials.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Dell 30.94%
Hewlett-Packard 15.85%
Acer 10.19%
ASUS 9.81%
Toshiba 6.04%
Sony 6.04%
Lenovo 5.28%
Intel 4.53%
Compaq 3.02%
GIGABYTE 2.26%
Gateway 1.51%
MSI 1.51%
NEC 1.51%
Samsung 0.75%
Sahara 0.75%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE