Looking at the disk activity on our server I can see a lot of MsMpEng.exe processes reading .ccc .cd & .cd.new files located the a X:\System Volume information\ Dedupe\ChunkStore location.Disk activity isn't huge but the MsMpEng.exe process is sat at 25% CPU fairly constantly.
Is there any documentation or advice regarding excluding these file types from Microsoft Forefront Endpoint Protection? I suspect it isn't doing us any favours at the moment