1. Forum
  2. Fidonet
  3. ALT.COMP.OS.WINDOWS-10

  • Re: Memory query

    From J. P. Gilliver@3:633/10 to All on Mon Nov 24 17:59:45 2025
    On 2025/11/24 17:0:44, Jim the Geordie wrote:
    Using Process Explorer, I see that MsMpEng.exe is almost always the
    biggest memory user. I believe that that is M$ Defender.
    Does it need to be running all the time?

    Probably not when you're offline.

    --
    J. P. Gilliver. UMRA: 1960/<1985 MB++G()ALIS-Ch++(p)Ar++T+H+Sh0!:`)DNAf

    By the very definition of "news," we hear very little about the dominant threats to our lives, and the most about the rarest, including terror. "LibertyMcG" alias Brian P. McGlinchey, 2013-7-23

    --- PyGate Linux v1.5.1
    * Origin: Dragon's Lair, PyGate NNTP<>Fido Gate (3:633/10)
  • From ...w¡ñ?±?ñ@3:633/10 to All on Mon Nov 24 12:42:55 2025
    Jim the Geordie wrote on 11/24/2025 10:00 AM:
    Using Process Explorer, I see that MsMpEng.exe is almost always the
    biggest memory user. I believe that that is M$ Defender.
    Does it need to be running all the time?

    On Win10/11 it's Windows Security which Normally, yes and common to anti-malware programs that run resident in the background to protect the entire system(Windows, downloading, internet surfing, installing
    programs, etc.)
    - i.e. protects a Windows device from malware(virus, spyware,
    ransomeware, phishing), hackers, etc. using real-time virus and threat protection, a firewall, and app and browser controls.

    For reference purposes(when viewing in Services and also in Process Explorer)on this device, the service and its related exe and components
    use ~180-300 MB of memory when running resident. The latter(higher memory
    use) when also running Windows Security 'Quick Scan' feature.

    --
    ...w­¤?ñ?¤

    --- PyGate Linux v1.5.1
    * Origin: Dragon's Lair, PyGate NNTP<>Fido Gate (3:633/10)
  • From Paul@3:633/10 to All on Mon Nov 24 20:46:21 2025
    On Mon, 11/24/2025 12:00 PM, Jim the Geordie wrote:
    Using Process Explorer, I see that MsMpEng.exe is almost always the biggest memory user. I believe that that is M$ Defender.
    Does it need to be running all the time?

    That's a real-time scanner. That's what it does. In real time.

    It basically shadows your activities and watches how
    things are going. It is quite possible, at least half of the
    RAM space it uses, holds a compressed copy of all the signatures.

    And just for the record, some of the real-time scanners,
    they do have limits. One I was playing with, the Firefox tarball
    was too big for it, and it actually choked on that while
    scanning -- the scanner actually exited and wasn't running.
    That was a "commercial" scanner, and it couldn't even handle
    a very large tarball. I had to move all my tarballs to
    a separate disk, so the stupid thing would not step in pooh
    when scanning C: :-) I'm not aware of MsMpEng having a flaw
    like that.

    When the computer boots, it scans the "hot spots", the
    most likely areas for a threat to be in. Such as scanning
    System32, and your Program Files perhaps.

    Paul


    --- PyGate Linux v1.5.1
    * Origin: Dragon's Lair, PyGate NNTP<>Fido Gate (3:633/10)