The key on the left of the “ALT” button.
The usage might be spiked due to a malware attack, scan your computer with an antivirus and make sure it hasn’t been infected.
Thanks for this help. I’m fix it using method three. But, after I’m turned off from regeditor, now another problem is come. I’m already using AdwCleaner, and run it, scan, repair and restart, then this “Microsoft software protection service”, sometimes make my memory going to “High” and sometimes it’s gone. Any answer for this?
thaks! i using Using the Local Group Policy Editor and it works
Method 4 worked for me, I was only seeing the slowdown when running Thunderbird Email. So I added the folder containing Thunderbird profiles (C:UsersJohnAppDataRoamingThunderbirdProfiles) to the Defender Exclusion list and that fixed it.
I have Windows 10, and completed method 2. I changed the schedules for all Defender operations, not just the scheduled scan. I am trying to use method 4, as I am still getting the same problem. In item 3, it says " Hold the Windows Key and Press I," What is the Windows Key? It seems to either pen a document or go into Microsoft Edge.
Thanks!
Thank you for your detailed guide.
i had similar problem. i had read that it easy for the windows antivirus to get infected. after i have seen such solution as here to add the antimalware itself into its own exclusions, i have come to idea that it is infected itself. so, then i have reinstalled windows.
warning: you will need to reinstall all programs if you reinstall windows!
warning: if you connect your hdd to other computer not with usb cable, but directly, i am afraid you may boot from it and infect the healthy hdd, so you sould carefully choose boot device. also you should be afraid of running programs from the infected hdd manually or by some autostart mechanism, though as far as i know that autostart was in windows xp, but it is not very actual with more new versions of windows, since it is disabled by default.
warning: you may lose your windows’ activation! i think my windows key was saved in efi partition, you may need to find and write your windows product key to a paper.
for that (reinstalling windows), i have connected its hdd via external case with usb cable to a linux, and deleted windows and program files (except some configuraion files of programs in appdata), (also i deleted users directory and others, moving my files to another folder before that), (just deleting whole c: partition, moving your files to other place before that, may be faster, if you have files of little total size), and deleted some partitions, except EFI boot partition, though that was dangerous, i hoped it (the EFI partition) was not infected. then, i created new windows 10 iso and dvd and reinstalled windows using it.
about not deleting efi partition: i thought my windows key was saved in it. i think i could get windows product key using some command or program from inside the old infected windows, i am not sure whether i could get windows key from that partition by other method. i think i could, if i had windows key, alternatively change gpt partition scheme to mbr and delete it (the EFI). i had seen that windows did not install due to GPT if i put laptop to non-EFI mode. or, if i was sure i can get windows key from the efi later, i could remove boot flag from it instead of deleting it.
alternatively, instead of reinstalling windows, you can try to check your windows hdd with other antivirus, installing it to same system, or, better, to other machine, and connecting this infected hdd to it, and booting from the healthy hdd.
why i did not just run windows installer from inside the old infected windows installation? because it was recommended to me to format all hdd and to boot from the installer dvd in order to not infect fresh installation. i believe in this principle, and, as i said, i just delete some files instead of deleting/formatting all partitions, because formatting would require a new hdd to move files to it.
alternatively, you can try to get old state of your system from some backup system… (there are also windows’ built-in system or systems, and you may have one from laptop manufacturer and you may have made backups manually or get them automatically). (this may delete your latest changes to your files, so you may need to save such files somewhere).
alternatively, you can reinstall windows from laptop manufacturers’ special partition. i have not used this way, because windows 8 was there, and i wanted to try to install a “vanilla” windows, ie without the additional preinstalled soft.
adding next day, august 25:
warnings:
deleting efi partition is dangerous. my laptop has a legacy bios system support, but if yours does not has bios, i am afraid it cannot boot without efi partition, but i am not sure.
when you delete unneeded folders of windows hdd from linux, show hidden files, because that is files with beginning dots, and, for example, you may delete virtualbox configuration directory, which start with a dot, if you do not show hiden files in linux.
several years ago there were news about that usb devices may be infected and it is not possible to cure them. so, if that method is used, you may not be able so easily get rid of a virus, generally. but this case is probably not such.
about windows backup systems:
one is system restore, coming nearly from windows xp or earlier, it saved only some files, like registry files and system files and documents, and in windows 7 there were additional backup system, which saved all files, probably they both are in windows 10.
Thank you for the tip.
Wow, as soon as I hit the accept policy button, bam, its was like night and day difference. Thank You
I haven’t seen MB conflict with Defender but it does conflict with aVast, AVG etc (i.e antivirus softwares).
Thanks for the article. Can you clarify? I have Malwarebytes Premium with all its options sett to run- would that mean I can disable Windows Defender -or- should I just leave Windows Defender running once a week as a sort of ‘second check’?
Method 2 will only change the schedule.
is method 2 supposed to completely disbable “AntiMalware Service Executable” until its next scheduled scan? because “AntiMalware Service Executable” still takes up like 1% cpu although it doesnt hog like it used to
Holy cow, I am glad I got my computer back! The first option fixes it!
This error is due to the msmpeng.exe process.