Nov 16 2022 07:00 AM
Hi,
Recently we are experiencing that this process is causing high CPU. On several portals I read that this is quite normal and even worse some suggestions goes to disable Defender. However, we use Defender for Endpoint as antivirus solution and disabling it is not an option. Any ideas and maybe possible solutions for this?
Thank you.
Nov 16 2022 07:10 AM
Nov 16 2022 11:03 AM - edited Nov 16 2022 11:07 AM
@davordmitric, as henryjs mentioned, it depends on when the high cpu usage occurs. If it's during a 'scheduled scan' (quick or full scan), then it would be expected. If it's not during a 'scheduled scan' or 'on-demand' scan, then there might be either an app compatibility where the app/script is doing something that MDE's AV (msmpeng.exe, Antimalware Service Executable, Microsoft Defender Antivirus Service, WInDefend) is observing. The Perf Analyzer for MDAV is the easiest way to figure out what's causing the high cpu usage. And where you could find what process/patch/extension you can add to provide relief.
The MDAV Perf Analyzer info is located here:
Announcing performance analyzer for Microsoft Defender Antivirus
https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/announcing-performance-analyz...
Performance analyzer for Microsoft Defender Antivirus
https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/tune-performance-defender...
Thanks,
Yong - MSFT
Nov 17 2022 05:02 AM