Stopping Microsoft Defender Antivirus service and uninstalling other 3rd-party antivirus program can resolve this issue. For other alternative solutions, please contact Microsoft or 3rd-party antivirus program provider.
This issue may also exist when the ICAP or RPC mode is used.
ServerProtect For StorageAll
There has been a report that there was no virus detection log on the ServerProtect Management Console when performing the EICAR test. This is done by placing the EICAR file on the local server or in the NAS folder where SPFS with CAVA mode was configured as the antivirus software. In the mean time, there may be alerts about the infected EICAR file.
This issue may happen when the Microsoft Defender Antivirus Service (msmpeng.exe) or other 3rd party anti-virus program such as CrowdStrike is running on the SPFS server or on the server from where the EICAR test folder is accessed. Microsoft Defender or other 3rd-party antivirus program may take action on the EICAR file before SPFS can hook or take action on this file.
Stopping Microsoft Defender Antivirus service and uninstalling other 3rd-party antivirus program can resolve this issue. For other alternative solutions, please contact Microsoft or 3rd-party antivirus program provider.
This issue may also exist when the ICAP or RPC mode is used.
