Hello,
Request you to create a case with Symantec.
Don't worry- that is not a new infection, but an alert that is triggered in certian circumstances upon files already quarantined. Please upgrade to the latest available release of SEP, where improvements in the code minimize the occurance of those alerts.
tmp file (DWH*****.tmp) detected as Trojan.Gen or Trojan.Gen.2 by Corp products
http://www.symantec.com/business/support/index?page=content&id=TECH102953
The Actual cause was with SEP 11 where the files were created by the Symantec Endpoint Protection or Symantec AntiVirus Quarantine scan. This scan is normally initiated by a virus definition update.
The quarantine scan on virus definition update can be disabled: edit Antivirus and Antispyware policy > Windows Settings > Quarantine > General, under "When New Virus Definitions Arrive" choose "Do nothing".
There are also several known methods to work around the issue:
- The quarantine scan on virus definition update can be disabled in the Symantec Endpoint Protection Manager (SEPM): edit Antivirus and Antispyware policy > Windows Settings > Quarantine > General, under "When New Virus Definitions Arrive" choose "Do nothing".
- Items in quarantine can be deleted.
- If the indexing service is enabled it could be triggering the issue when the dwh***.tmp files are indexed.
- Investigate other applications that are scanning the temp file for changes.
Regards,