We have some AV process in Windows 2008 R2/Win2012 which could chew up to 320MB of RAM &
the principal told us this is expected/normal esp when Realtime (ie On-Access) scan is enabled & it
includes folders containing many files, or files with high compressions.
On rare occasions, we'll see hard page fault of around 5-15.
Our tenants are not happy with this reply & wanted folders that contain huge number of files as
well as folders with compressed files to be excluded from the Realtime scan.
Excluding those folder from realtime scan means there's a risk those folders are infected & no
realtime protection. Would implementing the above measure of restricting RAM has any impact
on the realtime scan's performance such as slower performance of the AV.
How can we test