For some deployments, Windows Defender can cause slowdowns of data writing for PathInsight due to aggressive scanning during record writing.  This problem may exhibit on larger networks that run on slower disk systems.


PathInsight exists entirely within the File system of the Windows System.   Windows Defender is the Default File system anti-virus and anti malware application installed by default on the Windows OS (Server and Desktop).  Windows Defender or other applications scanning and locking PathInsight files can greatly effect performance of the Application Performance.   


Take into consideration your companies security policies and apply the exclusions appropriately.


Below are the PowerShell Commands to Exclude PathInsight Directories, Applications and files


PowerShell must be run with Elevated Privilege to run the commands correctly (Right Click->Run as Administrator)


Folder to Exclude from Scanning

Add-MpPreference -ExclusionPath "C:\Program Files (x86)\IR\Path Insight"

Add-MpPreference -ExclusionPath "C:\Program Files (x86)\IR\Path Insight\Data"


Applications to Exclude from Scanning

 PathInsight Application (Service)

Add-MpPreference -ExclusionProcess "C:\Program Files (x86)\IR\Path Insight\MonitorSvc.exe"

 PathInsight  Config Tool

Add-MpPreference -ExclusionProcess "C:\Program Files (x86)\IR\Path Insight\MonitorConfig.exe"

 PathInsight  Quick Config Wizard

Add-MpPreference -ExclusionProcess "C:\Program Files (x86)\IR\Path Insight\MonitorWizard.exe"

PathInsight  NetFlow Analysis Tool

Add-MpPreference -ExclusionProcess "C:\Program Files (x86)\IR\Path Insight\NetflowAnalysisTool.exe"

 PathInsight  Device Configuration Wizard

Add-MpPreference -ExclusionProcess "C:\Program Files (x86)\IR\Path Insight\DeviceConfigWizard.exe"


Files to Exclude from Scanning in the \Data folder

SQLite Database Files

Add-MpPreference -ExclusionExtension ".db"

Add-MpPreference -ExclusionExtension ".db-wal"

Add-MpPreference -ExclusionExtension ".db-shm"

Add-MpPreference -ExclusionExtension ".dat"


Replace the File Path with the correct file path if PathInsight  is installed in another directory


If you are using tools other than Defender (I.E. CrowdStrike, Cortex, Sentinel One, etc..)  please make similar exceptions