-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Terry Pinnell wrote:
Many thanks for those prompt and helpful replies.
Always welcome
I used Startup Cop to disable the automatic startup of TeaTimer.exe,
then rebooted and ran Spybot, then ensured that both the TeaTimer
options were unchecked. Apart from the display issue, I've no real
understanding of what Tea Timer does, and how it interacts with other
stuff (e.g. Firefox), so I'll steer clear for a while.
TeaTimer is a "resident" program, i.e. one that stays running, that looks
out for changes to parts of the system that could be spyware installation,
for example a program setting itself to run when Windows starts, or tries
to set itself as a Browser Helper Object so that it runs when I.E. starts.
TeaTimer prompts you when it notices a change of this nature to give you a
chance to allow or deny the change, and so that you know something may be
trying to do something nasty.
Can't say I found the Help too useful. But I will follow up those links.
Did you see this part of the help, under Resident->Tea Timer:
The Resident TeaTimer is a new tool of Spybot-S&D which perpetually
monitors the processes called/initiated. It immediately detects known
malicious processes wanting to start and terminates them giving you some
options how to deal with this process in the future: You can set TeaTimer to:
- - be informed, when the process tries to start again
- - automatically kill the process
- - or generally allow the process to run There is also an option to delete
the file associated with this process.
In addition, TeaTimer detects, when something wants to change some critical
registry keys. TeaTimer can protect you against such changes again giving
you an option: You can either "Allow" or "Deny" the change. As TeaTimer is
always running in the background, it takes some resources of about 5 MB.
Just did first scan and seems OK. After a clean bill of health earlier
today with 1.3, 1.4 found 70 entries:
DoubleClick 3 entries
HitBox 67 entries
The first is familiar, but don't recall ever seeing HitBox before.
Looks like tracking cookies - HitBox are pretty common. You can use S&D's
Immunize feature, along with SpywareBlaster from
http://www.javacoolsoftware.com to stop these (and "proper" spyware) from
getting on the system in the first place.
Cheers
- --
Adam Piggott, Proprietor, Proactive Services (Computing).
http://www.proactiveservices.co.uk/
Please replace dot invalid with dot uk to email me.
Apply personally for PGP public key.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (MingW32)
iD8DBQFDAx637uRVdtPsXDkRAj05AJ4mtYwVx9C5LIcX0VPtOWNqcPNAvACcCPlM
ILKgLU0LJ6xRDr4ClIf1A8k=
=41QQ
-----END PGP SIGNATURE-----