I pasted the EICAR string onto a text file and the very instant I save, the text file disappears, and I'm flooded with SEP notification dialogs. I was unable to close it as the notification just keep popping up.
I noticed that many version of tmp files are created in C:\ProgramData\Symantec\SRTSP\Quarantine. On the status bar, it is showing notifications count in tens of thousands. I had to manually delete the tmp files in the Quarantine folder before it stops.
Now on the SEPM home page, I noticed that under the Action Summary by Detection Count, the Blocked Viruses count is increase on every interval. From 100 to 200... now at 700+ not sure when it will stop.
Downloaded and update the latest rapid release on both my client & SEPM machine and running a full scan just to make sure everything is fine.
Do I need to be concerned about the ever increasing Blocked count? What could I have possibly done wrong here with the test virus file.
I tested on a client running Windows 7. My SEPM is installed on Windows 2008 server. SEP version is 11.0.7