NortonSecurity.exe creates Virus-File during QuickScan

Norton Internet Security behaviour just started in December Tracking with processmonitor If it’s a regular file from norton then why is Norton (and also other scanners) detecting the file as Trojan virus ? Also Norton has its own temp folder to do what is necessary. It’s not ok to write files in some app folder. This would also never cause the app to react especially if the file is only there for A microsecond. If I try to open the file Norton deletes it right away because it’s a virus (so it says !). Also the content of the file shows that it’s Not a regular file. Also Norton could have said so. Also all the other strange things that I mentioned above. PS: after more than 10years I do know how My norton works. Otherwise I could not have found all these Irregularities. Over the years it protected us well from every threat I know. That makes it so hard to see that this problem is handled so poorly from customer service. Even my community access seems to be blocked (I told customer service I was going public) I have no explanation for all that. So far no useful help from customer service since one month

I already said that it’s Norton Internet Security (Not 360) But that would not matter since the engine is updated. The folder name is blanked because its a custom app and a custom folder. The name has nothing to do with the problem. It also happened in some other folders so the name does not matter. Norton detects the file as Trojan Virus and calls it a threat otherwise I would have never found it. So did other scanners like Virustotal. It’s also in the norton history every time. The picture is a screenshot from the processmonitor which will of course not show or tell that the file is a virus because the processmonitor Is not a virus scanner but just a monitoring tool. PS: It was almost sure that the file had to be created by nis even before the actual proof with the processmonitor because if you know how nis works then you know that nis monitors all disk read / write operations. So it’s not possible to open a virus file As user because nis will prevent that (it did that here too). Also it would detect the file as soon at it Had been written on the disk. That happens for example when you download a file that contains malware - it’s deleted right away. But That never happened with this particular file because the file was never created .... not until the quick scan has been started. So it could only be the nis itself. No other program could have written the file on the disk without nis (or me) to see and detect it. The only question is why is norton doing this and how do I stop it. Customer service seems not aware of the problem or is just hiding the cause of this strange “procedure”

Yes this app and the others are custom apps that we created and That only we use. So to norton these apps are used only by very few users. However our apps do not create the Virus files or any files like that at all. As usual norton does not offer any real information about any threat that it detected. You can only see the file name and type of threat which in this case was Trojan.

Norton Customer Service is a big machine so I know that the person in the chat will not solve it, but the problem was forwarded to other Personal like technicians and so one could expect that after 1 month there is any form of valid answer, but there isn’t.

Also they provide info about any infected file within 48h but still I got no answer. So it seems they are hiding something. It’s just too obvious. Why do people still say it’s not like it looks ...? The proof is speaking for itself, you can not manipulate the process monitor. I too do not want to believe it but I have to.

Norton creates .tmp files all the time but usually it does that where it is supposed to be > in the temp folder. And they only are a virus if norton says so, which in my case is happening (other software tells so too). So nobody needs to be scared about all .tmp files. They are harmless until any antivirus software tells you otherwise, or until they appear where they’re not supposed to be (like in my case).

I did not know (because norton told me to check status there)

I made a new submission today details see here:

Submission ID:

fa5aa30e-cb27-4847-86c9-f8f3de765fe7

https://submit.norton.com/?type=CHECK&submission_id=fa5aa30e-cb27-4847-86c9-f8f3de765fe7

I can only guess that norton was doing monkey business here.
- Using our Computers
And
- Using our Time
to try out anything or find out anything or see how we react or I don't know.
However this caused us a lot of trouble and sleepless nights too.
Thats not how a computer should work. My Trust in Norton is badly damaged.

Also we were putting more than 100 working hours into that Problem (only until we found out its made by norton).

So now somebody (who has obviously caused the problem) has to pay for the damage.

What answer could that be ? The file is harmless now ? I just told you that it’s not harmless ! ! ! So you should have a better answer, one that also explains why norton created the file so many times on our Computers ! This not only fooled us it also cost us more than 100working hours so you better have a good idea how to compensate this (after you answered all the questions).