08-01-2012 12:08 PM - edited 08-01-2012 12:10 PM
NIS continually blocks this file which is a valid System32 file. C:\WINDOWS\SYSTEM32\CONHOST.EXE. It is a Windows 7 console host for the cmd prompt I think. There are no options to allow it. There are dozens of instances of the blocking in history.
Solved! Go to Solution.
08-01-2012 01:29 PM
This is not a detection of malware, but just Norton's Self-Protection blocking files that come into contact with any Norton file, folder or process. It doesn't differentiate between "bad" or "harmless" tampering, it just blocks it all. This happens to be a Microsoft file that during some process attempts to read a Norton file, is blocked, and this entry is written in the log. This conhost.exe blocking happens on every Windows 7 system. You can safely ignore it.
08-01-2012 01:32 PM
This is a Norton Product Tamper Protection event: Norton is preventing an outside agent - in this case, a WIndows process - from accessing Norton's process data. This is by design; Norton blocks anything from interfering with its files or processes. No harm is done to Norton or Conhost, so you can simply disregard these log entries.