Duis mollis, est non commodo luctus, nisi erat porttitor ligula, eget lacinia odio sem nec elit. Sed posuere consectetur est at lobortis. Vestibulum id ligula porta felis euismod semper. Donec ullamcorper nulla non metus auctor fringilla. Aenean lacinia bibendum nulla sed consectetur. Cras justo odio, dapibus ac facilisis in, egestas eget quam. Cras mattis consectetur purus sit amet fermentum. Morbi leo risus, porta ac consectetur ac, vestibulum at eros. Sed posuere consectetur est at lobortis. Etiam porta sem malesuada magna mollis euismod. Cum sociis natoque penatibus et magnis dis parturient montes, nascetur ridiculus mus. Duis mollis, est non commodo luctus, nisi erat porttitor ligula, eget lacinia odio sem nec elit. Cras justo odio, dapibus ac facilisis in, egestas eget quam. Aenean eu leo quam. Pellentesque ornare sem lacinia quam venenatis vestibulum. Curabitur blandit tempus porttitor. Sed posuere consectetur est at lobortis.
seascorpion,
Could you please also provide the versions of both Firefox and iTunes which are causing this issue? I personally use both of these applications and have not received any alerts from N360 regarding either. That doesn't necessarily mean it isn't a false positive. I have occasionally received false positives in a virus scan (although not with N360) and in that case it had to do with a new virus definition which happened to match executable code in one of my applications. In that case, it was fixed with the next definition update.
~scott
I have a similar problem...Norton 360 (v.2.3.0.9) cz has identified ICQ.exe as a polling keylogger, winpatrol.exe and ctfmon.exe as hook keyloggers and blocked them...
ICQ v 6.0
WinPatrol 2008 Free v 15.0.2008.0
scott_moen wrote:seascorpion,
Could you please also provide the versions of both Firefox and iTunes which are causing this issue?
Perhaps you didn't see it litsted in my post but the versions I have installed are Firefox 2.0.0.14 and itunes 7.6.2.9.
Any other info you need?
Sorry, I generally don't read signatures so I did miss it in the first post. Thank you for your reply. I think the only other piece of information that might be pertinent would be when this first started to occur.
~scott
Scott,
Thanks for your prompt response.
I believe that I activated Eavesdropping Protection for the first time either Saturday June 21st or Sunday the 22nd.
After going to the eavesdropping section of 360 yesterday morning I noticed that itunes and firefox were listed as keyloggers on the 23rd -- I didn't receive any alert prior to that.
I just checked my Eavesdropping Protection Settings in 360 and discovered that itunes now has a date/time of 6/24 @ 5AM as the last time it was blocked-- firefox still has the original 6/23 date and time.
I was on the computer with itunes playing music in the background at 5 this morning. However, I never unblocked itunes so why would 360 block the program again?
Incidentally, I was surprised that Eavesdropping Protection was not on by default. Is this the standard setup?
Did a little detective work on google and found out that this is a well known problem-- at least within the firefox community.
http://support.mozilla.com/tiki-view_forum_thread.php?comments_parentId=27488&forumId=1
> I did a live chat with a Symantec support agent and he said that when certain programs automatically check for updates at startup it may trigger 360 to block the outbound access of the program temporarily until you shut down and restart the program.
What Norton says is that the Firefox.exe and browser is fine - it's the add-on extensions that sometimes trigger it as being a key-logger or screen capture program.
You can disable the Eavesdropping Protection obviously, but I simply modified the settings for Firefox.exe to "allow."
For those with this problem in the future a more general solution can be found here:
http://support.mozilla.com/en-US/kb/Configuring+Norton+360
I didn't initially connect this with the keylogger-firefox issue but I have had occasional browser failures the last few days which is consistent with the conflict described in the above link.
Although this doesn't address itunes I presume that when it access the web for updates etc. it is triggering the same reaction in Eavesdropping Protection that firefox.exe does.
I'm going to "allow" firefox and do a bit more research before allowing itunes.
Thoughts?
seascorpion,
It looks like you found the solution while I was still trying to replicate the problem 
I'm glad it turned out to be something benign instead of an issue with your computer.
In general, the Eavesdropping Protection has the narrow task of watching for outbound traffic from your computer and blocking it if it thinks there is potentially personal information being sent to a remote site. Norton 360's antivirus and antimalware components are there to ensure that no malicious code ends up on your system. When they work together, your computer is doublly safe: even if you somehow end up with a virus, Eavesdropping protection will prevent it from sending anything damaging off your system.
I do know that iTunes checks for new updates when it starts up. If you are routinely running system scans for viruses then you should be OK to unblock iTunes - if you want to allow it to check for updates.
I hope this has been helpful for you, even though in the end you found the solution on your own. If there's anything else we can help with feel free to either send a PM or start a thread.
~scott
scott_moen wrote:
I hope this has been helpful for you.
The problem has been solved and we created a record that those who search the forum with a simalar problem in the future can use. I'd call that very helpful!
Thanks Scott.
seascorpion wrote:The problem has been solved and we created a record that those who search the forum with a simalar problem in the future can use. I'd call that very helpful!
The orginal poster to the thread (you in this case) has that control. See the green 'Solution?' buttons to the right? Click the one next to post that you would like to mark as the solution.
are you on 360v1 or 360v2? looks like v1 to me (but im no expert on 360)
i just installed the trial on a test machine so i could try to follow this thread...
but the screen i have (v2) is differnt on the mozilla link you provided....
if your on v1 then i would update to v2 (it's free)...
fwiw... i've never had to disable any portion of a norton product for itunes or FF...... i would also think both of those would be common malware targets.....
Allen_K wrote:
The orginal poster to the thread (you in this case) has that control. See the green ‘Solution?’ buttons to the right? Click the one next to post that you would like to mark as the solution.
Ahhh! Consider it done kind Sir. 
4runner wrote:are you on 360v1 or 360v2? looks like v1 to me (but im no expert on 360)
i just installed the trial on a test machine so i could try to follow this thread...
but the screen i have (v2) is differnt on the mozilla link you provided....
if your on v1 then i would update to v2 (it's free)...
I'm on Norton 360v.2.3.0.9.
4runner wrote:fwiw... i've never had to disable any portion of a norton product for itunes or FF...... i would also think both of those would be common malware targets.....
Now you went and gave me the heebee geebees again! 
As stated in the post I referenced on the Mozilla boards--firefox is not really the problem. The conflict is between add on extension(s) and 360. It is not a universal problem for 360/Forefox users.
The OP on the Mozilla board had 7 extensions installed: "Adblock Plus, Pic Lens, NoScript, PDF downloader, Cooliris Previews, Simple Mail, and Talkback." I have 4 of those 7 extensions installed-- within those 4 likely lies the source of the conflict. (The extensions we share are listed in bold print).
Of course this still leaves unexplained the cause of the itunes/keylogger issue.
After reconsideration I've decided to keep itunes blocked, for now, just to be on the safe side. I can manually search for updates or album art if needed.
By the way is your Eavesdropping Protection activated? (Just curious)
SaLaDiN wrote:I have a similar problem...Norton 360 (v.2.3.0.9) cz has identified ICQ.exe as a polling keylogger, winpatrol.exe and ctfmon.exe as hook keyloggers and blocked them...
ICQ v 6.0
WinPatrol 2008 Free v 15.0.2008.0
I'm just bumping this post because I think it may have been overlooked in the confusion-- so to speak.
Is this still a current problem for you SaLaDiN? If not how did you resolve it?
seascorpion wrote:I'm on Norton 360v.2.3.0.9.
By the way is your Eavesdropping Protection activated? (Just curious)
interesting.... test machine was vista when i installed the trial.... no Eavesdropping Protection on the setting menu.... the reason i asked about version...
switched to XP SP2.... installed trial again... this time Eavesdropping Protection appears in the setting menu.... with the feature disabled by default....
don't have itunes on the test system 
don't have time to try this right now on a system that has itunes... maybe someone else will test it.... if not i'll try to do it later....
no issue with FF2.0.0.14 with no addins.... again limited time right now.... so i can't play with adding your addins one at a time.... but might later....
Hi Guys and Gals,
Have we been able to narrow the mystery down to a single plugin? I would love to be able to say conclusively "when you install XXX, N360 starts giving you a warning in Eavesdropping protection."
~scott