We have a request to develop a file sharing component of a .net application to allow a client to upload files and have others download those files. The files will be saved to SQL as blob within the database, so we're not concerned with our infrastructure, but am concerned if a user uploads an infected file and it gets propagated. We then become the mechanism that spread their infection. We plan on getting a release of liability but I want to explore options to scan the file before SQL gets it. We use AVG Corporate, but I don't think there are any web scanning options there.
Any recommendations on a web server side component that would allow for scanning prior to handing off to SQL?