In parallel with Norton 360, the MalwareBytes 4.4.3 program is also installed on my Windows 10. This program has now detected the file C:\Program Files\Norton Security\Engine\22.21.6.51\NCrypt.exe as a threat RiskWare.BitCoinMiner.
Does anyone have any idea if this is a false positive or if a threat has actually nested under Norton?
So far I have not detected any significant increase in computer performance due to possible mining
(on: Windows 10 Home; Intel Core i7-10700 CPU @ 2.90GHz; 32GB Memory)
Is your Malwarebytes Premium (real-time) set up to Automatic Quarantine? > YES, it is
Is your Malwarebytes Premium (real-time) registered to Windows Security Center? > YES, as far as I understand it (see attachment)
I was just curious ... how you run Norton 360 + Malwarebytes Premium.
So you need to report this Malwarebytes detection as a false positive to Malwarebytes. > YES, I will do so.
An appreciation:
First and foremost, I would like to thank everyone involved (special to you "bjm_"), whether actively or indirectly, for their commitment!
Unusual, therefore special: I felt really taken seriously!
To your questions:
Is your Malwarebytes Premium (real-time) set up to Automatic Quarantine? > YES, it is
Is your Malwarebytes Premium (real-time) registered to Windows Security Center? > YES, as far as I understand it (see attachment)
To your suggestion:
So you need to report this Malwarebytes detection as a false positive to Malwarebytes. > YES, I will do so.
Last question:
Do I need to close this thread again? Or when is it considered solved?
(sorry, but it is my first contact via such a community)
This detection is for the new Norton Crypto feature in the latest version of 360 that is explained in this product announcement. https://community.norton.com/en/blogs/product-service-announcements/norton-security-2221651-windows-now-available
It is not surprising that Malwarebytes or any other malware scanner might flag this file to protect users from unwanted apps from stealing your CPU cycles for crypto mining. So you need to report this Malwarebytes detection as a false positive to Malwarebytes.
The reason Malwarebytes cannot remove this detected file is the Norton Product Tamper Protection feature protecting the valid Norton file.
In parallel with Norton 360, the MalwareBytes 4.4.3 program is also installed on my Windows 10. This program has now detected the file C:\Program Files\Norton Security\Engine\22.21.6.51\NCrypt.exe as a threat RiskWare.BitCoinMiner.
Is your Malwarebytes Premium (real-time) set up to Automatic Quarantine?
Is your Malwarebytes Premium (real-time) registered to Windows Security Center?
Actually obvious, but I have not considered it. So thanks so far for 'side kick' on the exclusion topic:
"Malwarebytes for Windows antivirus exclusions list".
Thank you for the quick response!
Malwarebytes runs in real time, no exclusions.
Good idea to contact Malwarebytes as well. I'll go to Norton first, since this file can be found in an/the Norton folder.
My File Insight responses with an error (see attachment)
Um, did Malwarebytes act on it's detection? 
