Forum Discussion
SenseNdr.exe is slowly eating the memory
Hello, For a few days now, we have some Windows Server 2019 physical machines where almot all the memory is commited to sensendr.exe. If you terminate sensendr.exe, the process comes back after...
We were having same issue too and opened a ticket with Microsoft and Microsoft recommended we migrate by
a. Disable the capability that was enabled in the oct updates
b. introduce the GroupID called "NDROFF" for customers to use on impacted devices. This will cause delivery of configuration that turns off the SenseNDR component that is causing the impact, thus resolving the issue without offboarding the entire machine.
Run PowerShell to add
reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows Advanced Threat Protection" /v Grouplds /d NDROFF /f
without SenseNDR, then ATP works ? is there any other mechanism to keep monitor that node.
Wondering if this actually works and what you added for the exclusion? I tried adding the process called SenseNdr.exe but didnt see any change in this. thanks for your post!
