question

kumarkaushal-1277 avatar image
0 Votes"
kumarkaushal-1277 asked LimitlessTechnology-2700 published

Windows defender MsMpEng.exe and mssense.exe were high memory consumption on the server

The machine is a 2019 DC server .


 We do see that MsMpEng.exe and mssense.exe were high memory consumption on the server .
 Currently MsMpEng.exe and mssense.exe has been added to the exclusion list and also been said ScanAvgCPULoadFactor to 30 .

The question that i have :
I have made the process name listed in Exclusion list . How is process name then path exclusion list ? Is that i have to make the path for MsMpEng as the exclusion list ?

How can we troubleshoot as to why MsMpEng and Mssense is consuming high memory and CPU ?

windows-server
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

LimitlessTechnology-2700 avatar image
0 Votes"
LimitlessTechnology-2700 answered LimitlessTechnology-2700 published

Hello, @kumarkaushal-1277,

It is quite normal for the Antimalware Service Executable to utilize high CPU usage. But as a background task, the Service is not supposed to utilize fore than 50% of the CPU resources. Since msmpeng.exe is the default program in Windows Defender or MSE, you cannot remove it. What you can do to resolve msmpeng high disk usage or high memory is to make adjustments to Windows defender or MSE.

Not quite sure of how you managed the Windows Defender exclusion from Scanning MsMpEng Files, but this is one of the occasions when Windows Defender process MsMpEng.exe will not eat up 100% CPU on Windows 10 anymore.

Other solution would be to reschedule Windows Defender Scan by changing the settings in the New Trigger window,for example the start time for scanning. Try to open the task manager and then check whether or not Windows Defender process msmpeng.exe still occupies much CPU

Disable Windows Defender in Group Policy:

Local Group Policy > Computer Configuration > Administrative Templates > Windows Components > Windows Defender Antivirus.
Under Windows Defender Antivirus locate and double click Turn off Windows Defender Antivirus to configure it. Then In Turn off Windows Defender Antivirus, set it as Enabled and then hit Apply and OK to disable Windows Defender

Of course you can always go for disabling the Microsoft Security Essentials

I hope this opinion will help you further,
Regards

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.