I have ZoneAlarm (free version), Windows XP Pro SP2 and Symantec Norton SystemsWorks 2005 with Norton AntiVirus 11.
Norton is giving me the following Alert in my Symantec Resource Protector:
Time: 1/5/2006 8:50:42 AM
Actor: C:\WINDOWS\SYSTEM32\ZoneLabs\vsmon.exe (PID=1588)
Target: C:\Program Files\Common Files\Symantec Shared\ccApp.exe (PID=2216)
Action: Unauthorized access
Reaction: Unauthorized access stopped
It appears that Norton thinks that ZoneLabs' vsmon.exe is attempting to modify Symantec's ccApp.exe.
Anyone know if I should be concerned about this? Is vsmon.exe really trying to do something bad, or is Norton just being too sensitive and over-alerting me about vsmon.exe activities?
Additional info: Norton Help File says about the Resource Protector: Symantec Resource Protector Alerts - Selecting Symantec Resource Protector Alerts on the left side of the Log Viewer displays details about unauthorized attempts to modify Symantec processes and tasks that were blocked by your Symantec product. The log shows the time that the event occurred and the action taken. The bottom of the Log Viewer window shows the original location of the infected file on your computer and, if available, a link to the online Symantec Virus Encyclopedia for more information.
Operating System:Windows XP Pro
Product Name:ZoneAlarm (Free)