PDA

View Full Version : TeaTimer - what processes are being analyzed?



psychotrix
2010-07-08, 00:51
Hi there.

After PMing Tashi, I follow his sugestion: post here.
Thank you for your reply!

I have a question regarding the TeaTimer process monitoring. I have SpyBot S&D 1.6.2.0 and have TeaTimer running on "paranoid mode", so I can know exactly when a new process starts (I'm kind of a monitoring freak, so I really love this program :D).
My questions are exactly:
1. Is there a logfile stored anywhere about what processes are analyzed?
2. Is it possible to get a hold of that information - which processes are being analyzed and when?
3. Is there a hardcoded time interval / minimum time required between each popup info/process analysing? -- I ask this because when PC starts, I notice that each 2 seconds a popup appears informing processes are being analyzed -- while TeaTimer is using up a full cpu core.

Basically I want to have a log of what processes are run at which times (specially when some processes start and exit in less than one second, and I have no clue of what started and why).
Right now, the closest I can get to that information is the Prefetch folder on the Windows folder!
(and sorting some other Windows internal folders by modify date -- that usually allows me to pinpoint when infections occured -- and their source)

Thank you very much for your time, I apologize for saying anything ignorant, and I wish also to thank the creators of this program, I love it!
-Andre Costa AKA avmc AKA psychotrix

Zenobia
2010-08-03, 09:21
No,there is no log file stored anywhere about what processes Teatimer is analyzing that is that thorough,that I know of.
I do know of another program that you might be interested in.I'm not sure if this has everything you're looking for,I can't remember what it logs,it's been a while since I had it,but as I recall,it's a pretty good program.
http://technet.microsoft.com/en-us/sysinternals/bb896645.aspx
hth. :)

tashi
2010-08-03, 18:01
psychotrix,

In addition, this is another useful tool: http://technet.microsoft.com/en-us/sysinternals/bb896653.aspx (http://technet.microsoft.com/en-us/sysinternals/bb896645.aspx)

Cheers.

psychotrix
2010-08-08, 13:38
Ok, thank you very much guys, I am trying it already!
Cheers to all!
-psychotrix aka avmc

Zenobia
2010-08-09, 19:56
You're welcome. :)