Recommended List for Defender Exclusions for Windows?


Sammy888

Well-known member
Member
VIP
Local time
9:44 AM
Posts
343
OS
Windows 11
I was reading elsewhere that some native and legitimate applications (processes) cause Windows Defender to use too much resources.

It was suggested to add them to the Windows Defended (process) exclusion list.

Does anyone have their own recommended list they would like to add to this thread?
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    Lenovo
    Graphics Card(s)
    NVIDA 1650 Ti
    Monitor(s) Displays
    Lenovo C32q-20
## Turn Off Windows Defender Real-time Protection
# Privacy & seecurity > Windows Security > Virus & thread protection > Virus & thread protection settings > Manage settings > Real-time protection
[Microsoft.Win32.Registry]::SetValue("HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Real-Time Protection", "DisableRealtimeMonitoring", 0x01)
 

My Computer

System One

  • OS
    Microsoft Windows 11 Home
    Computer type
    PC/Desktop
    Manufacturer/Model
    MSI MS-7D98
    CPU
    Intel Core i5-13490F
    Motherboard
    MSI B760 GAMING PLUS WIFI
    Memory
    2 x 16 Patriot Memory (PDP Systems) PSD516G560081
    Graphics Card(s)
    GIGABYTE GeForce RTX 4070 WINDFORCE OC 12G (GV-N4070WF3OC-12GD)
    Sound Card
    Bluetooth Аудио
    Monitor(s) Displays
    INNOCN 15K1F
    Screen Resolution
    1920 x 1080
    Hard Drives
    WD_BLACK SN770 250GB
    KINGSTON SNV2S1000G (ELFK0S.6)
    PSU
    Thermaltake Toughpower GF3 1000W
    Case
    CG560 - DeepCool
    Cooling
    ID-COOLING SE-224-XTS / 2 x 140Mm Fan - rear and top; 3 x 120Mm - front
    Keyboard
    Corsair K70 RGB TKL
    Mouse
    Corsair KATAR PRO XT
    Internet Speed
    100 Mbps
    Browser
    Firefox
    Antivirus
    Microsoft Defender Antivirus
    Other Info
    https://www.userbenchmark.com/UserRun/66553205
## Turn Off Windows Defender Real-time Protection
# Privacy & seecurity > Windows Security > Virus & thread protection > Virus & thread protection settings > Manage settings > Real-time protection
[Microsoft.Win32.Registry]::SetValue("HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Real-Time Protection", "DisableRealtimeMonitoring", 0x01)
That's not what I'm asking. It's nothing short of foolish, in my opinion in turning off Defender real-time protection.

Additionally, MsMpEng.exe is always running in the background even after disabling real-time protection unless you install and enable Defender Control which I don't recommend for many reasons.
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    Lenovo
    Graphics Card(s)
    NVIDA 1650 Ti
    Monitor(s) Displays
    Lenovo C32q-20
I wouldn't recommend white listing apps, even native (Windows supplied?) ones based on something you read which I have a feeling are the articles regarding Defender performance on some older architectures and particular situations.
Are you actually having issues where Defender is using too many resources on your system, causing unacceptable loss of performance?
While it is true that Defender seems to use more resources on Intel based systems as opposed to AMD based ones currently, I and many others here on these forums notice no measurable impact.
Defender and Windows 11 are still evolving, the issues affecting some people are known about and being worked on.
Is it worth possibly compromising your security, unless you are actually experiencing major issues, in which case maybe try a substitute anti-virus/ malware system instead.
There is a thread talking about this very subject on these forums if you are interested in some wider opinion, the above is just my point of view based on my experience.
 

My Computer

System One

  • OS
    Windows 11 Pro 22H2, build: 22621.521
    Computer type
    PC/Desktop
    Manufacturer/Model
    Scan 3XS Custom 1700
    CPU
    Intel i7-12700K 3.6GHz Base (5.0GHz Turbo)
    Motherboard
    Asus ProArt Creator B660 D4
    Memory
    64GB DDR 3600Mhz
    Graphics Card(s)
    Asus Tuff RTX 3080 10GB OC
    Sound Card
    Onboard Realtek
    Monitor(s) Displays
    Gigabyte G32QC 32inch 16:9 curved @2560 x 1440p 165Hz Freesync Premium Pro/ Dell SE2422H 24inch 16:9 1920 x 1080p 75Hz Freesync
    Screen Resolution
    2560 x 1440p & 1920 x 1080p
    Hard Drives
    WD SN570 1TB NVME (Boot), Samsung 870QVO 1TB (SSD), SanDisk 3D Ultra 500Gb (SSD) x2, Seagate 3Tb Expansion Desk (Ext HDD), 2x Toshiba 1Tb P300 (Ext HDD)
    PSU
    Corsair RM1000X Modular
    Case
    Corsair 4000D Airflow Desktop
    Cooling
    Corsair Hydro H150i RGB Pro XT 360mm Liquid Cooler, 3 x 120mm fans, 1x Exhaust
    Keyboard
    Microsoft Ergonomic
    Mouse
    Logitech G402
    Internet Speed
    800Mbs
    Browser
    Edge Chromium
    Antivirus
    Defender, Malwarebytes
Add-MpPreference -ExclusionPath $env:TEMP -Force
Add-MpPreference -ExclusionPath $env:LOCALAPPDATA"\NVIDIA\DXCache" -Force
Add-MpPreference -ExclusionPath $env:USERPROFILE"\AppData\LocalLow\Intel\ShaderCache" -Force
Add-MpPreference -ExclusionPath D:\Games -Force

Anything at all.
 

My Computer

System One

  • OS
    Microsoft Windows 11 Home
    Computer type
    PC/Desktop
    Manufacturer/Model
    MSI MS-7D98
    CPU
    Intel Core i5-13490F
    Motherboard
    MSI B760 GAMING PLUS WIFI
    Memory
    2 x 16 Patriot Memory (PDP Systems) PSD516G560081
    Graphics Card(s)
    GIGABYTE GeForce RTX 4070 WINDFORCE OC 12G (GV-N4070WF3OC-12GD)
    Sound Card
    Bluetooth Аудио
    Monitor(s) Displays
    INNOCN 15K1F
    Screen Resolution
    1920 x 1080
    Hard Drives
    WD_BLACK SN770 250GB
    KINGSTON SNV2S1000G (ELFK0S.6)
    PSU
    Thermaltake Toughpower GF3 1000W
    Case
    CG560 - DeepCool
    Cooling
    ID-COOLING SE-224-XTS / 2 x 140Mm Fan - rear and top; 3 x 120Mm - front
    Keyboard
    Corsair K70 RGB TKL
    Mouse
    Corsair KATAR PRO XT
    Internet Speed
    100 Mbps
    Browser
    Firefox
    Antivirus
    Microsoft Defender Antivirus
    Other Info
    https://www.userbenchmark.com/UserRun/66553205
I was reading elsewhere that some native and legitimate applications (processes) cause Windows Defender to use too much resources.

It was suggested to add them to the Windows Defended (process) exclusion list.

Does anyone have their own recommended list they would like to add to this thread?
I can't say especially on modern machines that WD was ever a resource hogger unlike some older 3rd party A/V solutions.

Unless you are a real Windows Internals guru and understand some of the really eseoteric processes of OS internals and kernels, the OS itself is far more likely to have a better solution than any amount of "Amateur Tinkering" no matter how good your coding or debugging skills may be.

Some might do OK but I'd suggest around 95% of people including loads here who are more computer literate than most should just leave well alone in this area. "If it Ain't Broke -- Don't fix it" worked years ago and is still true today.

If people do find proper solutions then that's great and those improvements will eventually make their way back into an OS update. People like Ms aren't stupid. They want their OS to be safe, resilient and efficient.

Cheers
jimbo
 

My Computer

System One

  • OS
    Windows XP,7,10,11 Linux Arch Linux
    Computer type
    PC/Desktop
    CPU
    2 X Intel i7

Latest Support Threads

Back
Top Bottom