Microsoft Defender operates numerous background tasks, such as daily quick scans and real-time monitoring of files accessed by the user or applications. These processes can lead to a noticeable impact on your PC’s performance. If you’re experiencing high CPU usage from Microsoft Defender, consider implementing the strategies outlined below to optimize its resource consumption.
Optimizing CPU Usage for Microsoft Defender Scans
By default, Microsoft Defender scans run at normal priority, allowing the application to utilize up to 50% of the CPU when necessary. This can cause competition with foreground applications, leading to a sluggish experience. To prioritize your active applications during scans, adjust Defender’s priority and resource limits using PowerShell.
To begin, search for powershell in Windows Search, right-click on Windows PowerShell, and choose Run as administrator. Then, execute the following commands:
Set-MpPreference -EnableLowCpuPriority $true
This command sets the scan priority to low.
Set-MpPreference -ScanAvgCPULoadFactor 30
This command restricts CPU usage to 30%.While you can lower the limit further, we advise against setting it below 15%, as it can severely hinder scan performance.
To revert these settings, you can input the following commands:
Set-MpPreference -EnableLowCpuPriority $falseSet-MpPreference -ScanAvgCPULoadFactor 50
Utilizing a Dev Drive for Enhanced Performance
A Dev Drive, formatted with ReFS, is designed for demanding workloads that prioritize stability and speed. Microsoft Defender accommodates Dev Drives by deferring scans on files until they are accessed, thereby minimizing latency. However, this may introduce a slight reduction in security since scans occur only after files are opened.
To optimize performance, consider relocating frequently accessed data to a Dev Drive, preventing Microsoft Defender from hindering efficiency.
Configuring Archive Scans for Efficiency
When scanning archives, Microsoft Defender must first decompress them, a process that can be resource-intensive. While you can disable archive scanning, this is not advised due to the risk of encountering hidden malware. Instead, modify Defender’s settings to scan only archives exceeding a specific size, as most malware tends to reside in smaller packages.
This adjustment can be made through a Registry edit. Please exercise caution, as incorrect changes to the Windows Registry can lead to system issues. Always back up the Registry prior to edits.
To begin, navigate to:
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender
Create a new key by right-clicking on Windows Defender and selecting New → Key, naming it Scan.
With the new Scan key highlighted, right-click on the right panel, select New → DWORD (32-bit) Value, and name it ArchiveMaxSize. Double-click this value, choose Decimal under Base, and set the maximum size in KB. For instance, to limit scans to archives under 1GB, enter 1048576 (1GB in KB).To undo this change, simply delete the DWORD.
Adjusting Scan Scheduling to Optimize Performance
To minimize the CPU load caused by Microsoft Defender scans, consider rescheduling when and how often these scans occur. While daily scans are standard, switching to a weekly schedule can reduce interruptions without compromising security, especially as real-time protection remains active.
To adjust the scanning schedule, access the Task Scheduler. Navigate to Task Scheduler Library → Microsoft → Windows → Windows Defender. Double-click on Windows Defender Scheduled Scan and then click on New within the Triggers tab.
Set your preferred scan time, frequency, and day of the week that aligns best with your workflow, and select OK to confirm. Your scans will now occur weekly at your designated times.
Rethinking Advanced Security Features
Microsoft Defender includes many advanced features that are typically disabled by default, as they may not be essential for all users and can add to resource consumption. Unless absolutely needed for your particular security requirements, consider avoiding the use of these advanced functions like Application Guard, Controlled Folder Access, and Memory Integrity.
These adjustments will ensure that Microsoft Defender continues to provide robust protection without detracting from your everyday computing experience. Such optimizations are especially beneficial for gaming setups, where even minor interruptions can disrupt the experience.
Leave a Reply