Large numbers of .tmp files are being created in the xfer_tmp or 7.5\xfer folder and are being detected as threats

Problem

After Symantec Endpoint Protection detects an infection, the xfer_tmp folder generates a large number of temporary (.tmp) files. How can I get this to stop? 

After Symantec AntiVirus detects an infection, the 7.5\xfer and/or 7.5\xfer_temp folders starts generating numerous temporary (.tmp) files. How can I get this to stop?

After a migration from Symantec AntiVirus to Symantec Endpoint Protection the xfer_tmp folder starts generating a large number of .tmp files. How can I get this to stop?

Symptoms
Large numbers of temporary (.tmp) files are generated in any of the following locations:
Symantec Endpoint Protection

Windows 2000/XP/2003
• C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\xfer_tmp
• C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\xfer

Windows Vista/7/2008
• C:\Program Data\Symantec\Symantec Endpoint Protection\xfer_tmp
• C:\Program Data\Symantec\Symantec Endpoint Protection\xfer

Symantec AntiVirus

NOTE: The following file locations may still be relevant in a migration scenario from Symantec AntiVirus to Symantec Endpoint Protection

Windows 2000/XP/2003
• C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\xfer
• C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\xfer_tmp

Windows Vista/7/2008
• C:\Program Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\xfer
• C:\Program Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\xfer_tmp

Solution

This issue has been fixed in Symantec Endpoint Protection 11 Release Update 6 Maintenance Patch 1 (RU6 MP1). For information on how to obtain the latest build of Symantec Endpoint Protection, read TECH 103088:  Obtaining an upgrade or update for Symantec Endpoint Protection 11.x or Symantec Network Access Control 11.x