Anti-virus can have a huge impact on BizTalk Server performance and normally the best approach for BizTalk Server environment and anti-virus software is using a perimeter based approach, where you normally don’t run the anti-virus software on the machine itself but protect the boundaries. 

I like to use this approach but if not possible at least you should configure antivirus software to avoid real-time scanning of BizTalk Server executables and file drops. Antivirus software real-time scanning of BizTalk Server executable files and any folders or file shares monitored by BizTalk Server receive locations can negatively impact BizTalk Server performance. If antivirus software is installed on the BizTalk Server computer(s), disable real-time scanning of non-executable file types referenced by any BizTalk Server receive locations (usually .XML, but can also be .csv, .txt, etc.) and configure antivirus software to exclude scanning of BizTalk Server executable Files.

There is also a good blog post from MSFT about Anti-virus exclusions regarding BizTalk Server:

However, the first step is to find out if there is any Anti-virus running on your BizTalk Server.

I will not address all the possible existing Anti-virus in the market, instead, here I will focus only in Windows Defender for a simple reason: I have been creating several BizTalk Server DEV environments on Azure using Azure Virtual Machines and by default Windows Defender is configured.

So, I create this simple PowerShell script to use in all my environments just to check the basic environment assessment:

 

PowerShell
Edit|Remove
Try 
{ 
    $defenderOptions = Get-MpComputerStatus 
 
    if([string]::IsNullOrEmpty($defenderOptions)) 
    { 
        Write-host "Windows Defender was not found running on the Server:"$env:computername -foregroundcolor "Green" 
    } 
    else 
    { 
        Write-host "Windows Defender was found on the Server:"$env:computername -foregroundcolor "Cyan" 
        Write-host "   Is Windows Defender Enabled?"$defenderOptions.AntivirusEnabled 
        Write-host "   Is Windows Defender Service Enabled?"$defenderOptions.AMServiceEnabled 
        Write-host "   Is Windows Defender Antispyware Enabled?"$defenderOptions.AntispywareEnabled 
        Write-host "   Is Windows Defender OnAccessProtection Enabled?"$defenderOptions.OnAccessProtectionEnabled 
        Write-host "   Is Windows Defender RealTimeProtection Enabled?"$defenderOptions.RealTimeProtectionEnabled 
    } 
} 
Catch 
{ 
    Write-host "Windows Defender was not found running on the Server:"$env:computername -foregroundcolor "Green" 
}

 

THIS POWERSHELL IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND.

About Me

Sandro Pereira
DevScope | MVP & MCTS BizTalk Server 2010
http://sandroaspbiztalkblog.wordpress.com/ | @sandro_asp