Symantec Scan Engine doesn't receive EICAR test file as it is intercepted by Symantec End Point Protection
I have tried to summarize my question with the above picture. Our application requires anti-virus scanning of all uploaded files using Symantec Scan Engine. We are using the EICAR test virus file to validate this feature. We do get an error message "FILE_ACCESS_FAILED" on the UI. But we don't see any report of an infection/risk on the Symantec Scan Engine console. In fact, the file doesn't get dropped in the directory where the Scan Engine picks it up.
After some investigation, our guess is that the Symantec End Point Protection installed on our servers is probably throwing the error. However, when we check the Symantec End Point Protection Manager console, we don't see any risks/infections either. This is a little bewildering.
The uploaded files are being reported in the server logs with an appropriate POST/GET.
Can someone help us out in this investigation?