I bought a new Dell PC on Thursday and spent time over the weekend getting it set up. After the initial Windows setup the first steps for me were to A) Run all Windows updates, B) Install Malwarebytes (I have it on 2 other computers). Then on Saturday I installed Norton Antivirus. The initial installation of Norton went fine once I removed Mcafee that came on the computer. I install antivirus and anti malware on any new PC before loading anything else. I have run both Norton and Malwarebytes on my other 3 computers in the house for several years and for the most part they work ok together. The only exceptions is the fact that Norton logs Unauthorized Access to NortonSecurity.EXE by MBAMSERVICE.EXE as blocked, a Medium Severity event, several times per day. None of them are reporting the problem described below.
As soon as I ran the first update to Norton 360 I received the same Ransomware notification from MalwareBytes as described by Scubnubby above. The same files are identified and quarantined. At that point Norton will not run. I deleted the quarantined files and reran the Norton install from scratch 2 times. Each time it flags NortonSecurity.exe as ransomware as soon as I run LiveUpdate. Malwarebytes flags during the Process Update step. I do not get this problem on any of my other computers. All of my screen captures of this event would be identical to those above but dated Sept 21.
I have marked the Norton folder to be excluded from the install per directions above and now it seems to do Norton updates correctly. However, since this was several days past when the above thread implies the problem of a False Positive was fixed I am concerned. I don’t want to finish transitioning to this new computer until I can be sure it is clean. I am questioning whether I should have taken this approach to exclude the file.
Can you confirm this is still a false positive or do I need to take other actions? If false positive, when will it be fixed?