Microsoft has updated the recommendations for exclusions for virus scanners on Exchange Server:
Specifically, contrary to the original recommendation, these directories and processes should no longer be excluded from the virus scanner:
%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\Temporary ASP.NET Files
%SystemRoot%\System32\Inetsrv
%SystemRoot%\System32\WindowsPowerShell\v1.0\PowerShell.exe
%SystemRoot%\System32\inetsrv\w3wp.exe
Existing exclusions for virus scanners should therefore be adapted. The script from Paul Cunningham, which creates a list of all exclusions, is suitable for new Exchange installations:
Unfortunately, the script has now been archived so that no more pull requests can be submitted. I have therefore created a fork and updated Paul's scripts. The updated scripts from Paul can be found here:
Das Script „Get-Exchange2016AVExclusions.ps1“ eignet sich übrigens auch für Exchange 2019. Mit dem Script lassen sich die Ausschlüsse auch direkt in den Windows Defender übernehmen. Hier noch der Link zum Exchange Team Blog: