"MsMpEng.exe" Process on Windows 8

Q

What is the "MsMpEng.exe" process on Windows 8? Is the "MsMpEng.exe" process a virus? Can I terminate the "MsMpEng.exe" process?

✍: FYIcenter.com

A

"MsMpEng.exe - Antimalware Service Executable" process is a service that helps protect users from malware and other potentially unwanted software.

On the Processes tab of "Task Manager", "MsMpEng.exe" process may be listed as:

Image Name   PID  User Name   Memory    Description

MsMpEng.exe  928  SYSTEM     07%  70,608 K  Antimalware Service Executable

Additional information about "MsMpEng.exe" process:

Command line:
   c:\Program Files\Microsoft Security Client\MsMpEng.exe
   
Started by: service.exe

Files used:
   C:\Program Files\Microsoft Office 15\root\office15
   C:\Program Files\Microsoft Security Client\...
   C:\ProgramData\Microsoft\Microsoft Antimalware\...
   C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft
     \SystemCertificates\My
   C:\Windows\System32\drivers\MpFilter.sys
   C:\Windows\System32\drivers\NisDrvWFP.sys
   C:\Windows\System32\en-US\KernelBase.dll.mui
   C:\Windows\System32\en-US\WinSATAPI.dll.mui
   C:\Windows\System32\en-US\winhttp.dll.mui
   C:\Windows\System32\ntdll.dll
   C:\Windows\System32\ntkrnlpa.exe
   C:\Windows\Temp\TMP0000027AAE84E1DFC9C3A61E

Registry keys:
Key	HKCR\PROTOCOLS\Filter\text/xml
Key	HKCU\Software\Classes
Key	HKLM\SOFTWARE
Key	HKLM\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\...
Key	HKLM\SOFTWARE\Microsoft\EnterpriseCertificates\...
Key	HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN
Key	HKLM\SOFTWARE\Microsoft\Microsoft Antimalware
Key	HKLM\SOFTWARE\Microsoft\Security Center
Key	HKLM\SOFTWARE\Microsoft\SystemCertificates\...
Key	HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\...
Key	HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion
Key	HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\...
Key	HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings
Key	HKLM\SOFTWARE\MozillaPlugins
Key	HKLM\SOFTWARE\Policies
Key	HKLM\SYSTEM\ControlSet001\Control\Nls\Sorting\Versions
Key	HKLM\SYSTEM\ControlSet001\Control\Session Manager
Key	HKLM\SYSTEM\ControlSet001\Control\Session Manager\Environment
Key	HKLM\SYSTEM\ControlSet001\services\WinSock2\Parameters\NameSpace_Catalog5
Key	HKLM\SYSTEM\ControlSet001\services\WinSock2\Parameters\Protocol_Catalog9
Key	HKLM\SYSTEM\ControlSet001\services\crypt32
Key	HKU\.DEFAULT\Control Panel\International
Key	HKU\.DEFAULT\Software\Microsoft\SystemCertificates\...
Key	HKU\.DEFAULT\Software\Microsoft\Windows NT\CurrentVersion
Key	HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings
Key	HKU\.DEFAULT\Software\Policies
Key	HKU\.DEFAULT\Software\Policies\Microsoft\SystemCertificates

"MsMpEng.exe" process is not a virus. You can terminate "MsMpEng.exe" process, or disable the "Microsoft Antimalware Service". if it consumes too much CPU resources. And you enable and start "Microsoft Antimalware Service" later if you want it back.

Â

â‡’ "unsecapp.exe" Process on Windows 8

â‡ "ibmpmsvc.exe" Process on Windows 8

â‡‘ System Service Processes on Windows 8

â‡‘â‡‘ Windows 8 Processes Tutorials

2016-12-30, 1102👍, 0💬

Windows 8 Processes Tutorials
Where to find information about what processes are running on Windows 8 and how to manage them? I want to know everything about Windows 8 processes. Here is a collection of tutorials about Windows 8 processes compiled by FYIcenter.com team. Topics include understanding processes; CPU and memory usag... 2016-12-28, 87473👍, 0💬

"Lenovo Communications Utility - TPKNRRES.exe" Startup Program on Windows 7
What is the startup program "Lenovo Communications Utility - TPKNRRES.exe" on my Windows 7 computer? "Lenovo Communications Utility - TPKNRRES.exe" is installed as part of the computer system. You will see the "TPKNRRES.exe" listed on the Startup tab of msconfig.exe screen as: Startup item: Lenovo C... 2017-06-15, 5648👍, 2💬

💬 2017-06-15 FYIcenter.com: @PaulQ, TPKNRRES.exe is not the Bluetooth program and not related to wired headset. It is just a quick way to access settings fo...

💬 2017-06-14 PaulQ: Is this simply a Bluetooth program and not needed with a wired headset?

"McTray.exe" Process on Windows 7
What is the "McTray.exe" process on windows 7? Is the "McTray.exe" process a virus? Can I terminate the "McTray.exe" process? "McTray.exe" process represents "McTray Application" program. "McTray.exe" process is created by the startup program: "McAfee Agent". "McTray.exe" process is normally running... 2016-12-19, 3851👍, 0💬

"UdaterUI.exe" Process on Windows 7
What is the "UdaterUI.exe" process on windows 7? Is the "UdaterUI.exe" process a virus? Can I terminate the "UdaterUI.exe" process? "UdaterUI.exe" process represents "Common User Interface" program. "UdaterUI.exe" process is created by the startup program: "McAfee Agent". "UdaterUI.exe" process is n... 2017-02-25, 3441👍, 0💬

View Scheduled Tasks with Task Scheduler on Windows 7
What is a scheduled task on my Windows 7 computer? If you want to view all scheduled tasks on Windows 7 system, you can use the Task Scheduler as shown in this tutorial: 1. Go to "Control Panel\System and Security\Administrative Tools" 2. Click "Task Scheduler" to run it. You see the Task Scheduler ... 2016-12-28, 2735👍, 0💬

What Is Scheduled Task on Windows 7
What is a scheduled task on my Windows 7 computer? A scheduled task on Windows 7 is a program that has been scheduled to run repeatedly on a given schedule. When you install new software applications, many of them will be automatically setup scheduled tasks to run some background processes without i... 2016-12-28, 2625👍, 0💬

"McUICnt.exe" Process on Windows 7
What is the "McUICnt.exe" process on windows 7? Is the "McUICnt.exe" process a virus? Can I terminate the "McUICnt.exe" process? "McUICnt.exe" process represents "McAfee" program. "McUICnt.exe" process is normally running under the parent process "Boot" as shown in the process tree below: Boot McUIC... 2016-12-19, 2597👍, 0💬

"mcupdate.exe" Process on Windows 7
What is the "mcupdate.exe" process on windows 7? Is the "mcupdate.exe" process a virus? Can I terminate the "mcupdate.exe" process? "mcupdate.exe" process represents "McAfee Update Launcher" program. "mcupdate.exe" process is normally running under the parent process "McSvHost" as shown in the proce... 2016-12-24, 2231👍, 0💬

View and Disable Scheduled Tasks on Windows 7
Where to find tutorials and answers on viewing or disabling scheduled tasks on Windows 7? I want to learn how to review and disable scheduled tasks to keep my computer secure and fast. Here is a collection frequently asked questions and answers on viewing and disabling scheduled tasks on Windows 7 c... 2016-12-28, 2129👍, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.