OT-Spybot and Free Downloads
Besides Spybot for adaware does anyone recommend any other FREE downloads for making my computer run faster. My kids play a bunch of games and download all the time. Anything else I can do tp kill off these bizzare pop ups for an education at ITT University? Sometimes I will log on and another browser just appears on it's own to Universities. I would like to avoid anything too complex or any cost.
Appreciate your help!
Malwarebytes Anti-Malware (the free version).
There is also Adaware.
Spybot, AdAware and the like aren't all that great anymore, but your best bet for anything like this is to start with Malwarebytes. That's what I use at work at least 90% of the time and it really does seem to work. If you need to get more drastic you can try something like ComboFix but that doesn't always work, and sometimes it breaks stuff in Vista (like your wallpaper). Lastly, HijackThis is kind of advanced, but you can paste logfiles here and get an idea of stuff that might be malicious. Malwarebytes will likely take care of you, though. I recommend installing it, turning off System Restore (let me know if you need help with that), rebooting into Safe Mode (press F8 after rebooting but before getting into Windows), running it and deleting whatever it finds, then rebooting and running another scan. I've had a lot of success with that on the many machines I've had to work on with Malware/Spyware, so let me know if that helps you or if you need further advice.
This x100
I also agree with this. HijackThis was a lifesaver when I had a particularly stubborn virus.
Hi Cal and TY so much for all the great information. If it is not too much trouble to explain how this is done (in a K.I.S.S.manner like you are trying to avoid using N/S/E/W to my wife when giving directions :- ) it would be greatly appreciated.
Are you on XP, Vista or 7? The basic process is to go into the System Properties, then the System Restore section, then uncheck or turn it off. In XP you can right click your "My Computer" icon and go to Properties, then the System Restore tab. I believe Vista and 7 are similar in that you can right click your Computer icon, go to Properties, then on the left, choose "System protection". Wait for it to look at your drives, then click "Configure" and choose to turn off System Restore. When you've finished scanning and removing stuff and have booted back into Windows normally, make sure to turn it back on. The reason you want to temporarily turn it off is that some malware embeds itself in your system restore points so that if you try to use them or just generally remove that stuff it has a place to restore itself so you're not really getting rid of it.
Please let me know how that goes for you and if you need any further help I'll be happy to work with you via email or something else.
I will let you know how it goes and thank you SO much!
Spyware Blaster works pretty good for me. I use that with Spybot and AVG, and I haven't got hit with any viruses in over 8 years.
but http://superantispyware.com is what my corporate IT department recommended using to rid my computer of spyware (then promptly deleting, because we don't have a corporate license, although it's free for personal use). It works better than spybot.
I have had success with superantispyware and malwarebytes in combination. Miles better than Spybot.
I also like Auslogics BoostSpeed.
I agree with Malwarebytes and others that have been posted. Recently, I downloaded a program called "CCleaner" and it does a good job of deleting unnecessary files and speeding up the overall system. Here's a free download link(they ask for a donation, but it's not required).
CCleaner's great for cleaning up unnecessary files, as you mentioned, and it's also the only registry "fixer/cleaner" I trust. I've occasionally actually seen the registry cleaner solve some minor problems, and I can't recommend this enough.
I used CCleaner and HijackThis when I was on Windows as well. Both are super programs.
Other than turning the damn thing on, computers are a total mystery to me. Whenever I'd get hit with a virus, I'd usually end up googling the symptoms. There are all kinds of "geek forums" where they will give excellent step-by-step instructions that walk you through deleting a virus and cleaning up your registry.
Microsoft Security Essentials
C Cleaner
are mandatory on my PCs
suggestions, but Malwarebytes is world class and updated regularly.
I've always used some sort of combination of Ad-aware, Ad-watch, and Spybot. Does Malwarebytes cover the territory of all of those?
--limited because I've only had a maybe two infestations in the last several years--Malwarebytes was able to remove the offending program, while other programs, including spybot, could not.
I appreciate everyones help (MGoBlog AWESOME community) and I will follow the suggestions to the best of my ability.
I use Glary Utilities daily, it's free. It cleans my registry, frees up space on my hard drive, defragments, gets rid of unnecessary programs, temporarily downloaded files and pretty much everything else. My computer was noticeably faster after I downloaded and began to use it.
Windows CleanUp!, Malware anti malbytes, McAfee, and Windows Onecare.
Windows CleanUp! is my favorite.
My advice: DON'T use McAfee. It doesn't catch anything and it slows down your system. Case in point: with version 8.5, after an update a couple years ago, all of our Windows machines slowed down. Why? It decided to scan the quarantine folder. And quarantine those files in the quarantine folder. And scan that folder...lather, rinse repeat. We had quarantine folders with 400,000+ files. Our workaround was to make that folder an exception from being scanned and to empty it fairly often. We went to McAfee about the problem and instead of fixing it they told us our workaround was fine. Crappy product, crappy company. For anti-virus, I was a big supporter of AVG for a while, but that started slowing down (though I hear the latest version is better), but I'd heard many good things about the free MS Security Essentials, so that's what I'm running now and I'm happy with it. As a reminder to all, DON'T run more than one anti-virus program, ie McAfee and Norton, etc. (that doesn't mean you can't run MS Security Essentials and Malwarebytes, as that's anti-malware, not AV software), it'll only create headaches for you and possibly leave you even more vulnerable. Use one of the better free AV products, it's not necessary to pay for something like Norton.
Malwarebytes does everything they do...it takes care of adware, tracking cookies, spyware, malware and viruses.
Here's something I've used to help some friends with "AntiVirus 2012" types of infections:
http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx
Where it's already installed on the machine (which is obviously not always the case), I've sometimes been able to get to it, just after start-up, before the Malware launches. Quite often the offending programs (with names like asdfjiwef.exe) are sitting there in plain sight. It's a simple matter to just uncheck them (so they won't start automatically). That makes the clean-up with the other programs more pleasant.
Once you get one of these infections, though, all bets are off. You'll never know for sure whether the clean-up was fully successful. If rebuilding is a reasonable option, that's what I'd do.
I belong to forum that helps users get rid of malware on their systems. Spybot and Adaware were excellent tools a few years back, but they have fallen by the wayside. SuperAntispyware and MalwareBytes are excellent tools, and we advise our visitors to download these programs after their computers have been cleaned. Combofix is a very powerful tool that is used against certain types of malware. It could potentially damage your computer if you use this without being properly diagnosed or without the guidance of a trained malware removal expert.
Much to the chagrin of my stepsons, I had to lay down the ban hammer on the online games. I know there are some out there that are clean, but it is just too hit and miss when it comes to the ones that are clean and the ones that come bundled with spyware and adware. Some of them come bundled with toolbars that will install themselves whether you authorized them to or not, and some of them are a major pain to get rid of. The aforementioned programs may help with your problems, but keep in mind, they might just be symptoms of a bigger problem that they may not be able to take care of alone. If these problems still persist after using those tools, I suggest you visit a malware removal site. They will clean your computer free of charge and give you advise on how to stay clean, and also get optimum performance from your computer. You could visit Atribune, BleepingComputer, or Major Geeks. Out of sheer homerism, I suggest you use Geeks To Go. Good luck.
Give this a look, http://www.ubuntu.com/
I originally started using it for kid's computer that had the same issues you are having. Seeing how well it worked and the amount of free software lead me to use it on all of my home network and my work laptop. You can also dualboot it with Windows, meaning at startup you can use windows or linux.
Haven't had a problem with a virus or spyware in 4 years since switching.
both free on cnet
previously used adaware (free) but it really didn't catch everything, so deleted and replaced with above
also use a Simple File Shredder to clean up HD everyday after internet use, cleans out temp files, deletes anything else you add, good for deleting pics and large files, writes over files 5x and deletes
Children + PC = bad PC...I used to do in-house pc fixes and dear lord anyone that had a kid had an absolutely screwed up PC. What is it with kids and housewives that they just cant help themselves from downloading the flashing set of extra smily faces from the deepest corners of the net?
1. malwarebytes is good, 2. run AVG antivirus as well, they are both free and shouldnt tie up your system all that much. You can get them at CNETs 'download.com'
2. Create a seperate user for each person,
Go to --> Start --> Control Panel --> User Accounts...and it is very simple to create your own work space...password protect it so the little ones cant get in.
3. Get a cheapo piece of junk PC and let the kids destroy that, you can get a desktop these days for almost nothing, and if you let your kids use a computer they will 100% destroy it at some point, and if you dont have the technical knowledge to do a clean install someone else is going to be doing it for you and you will have to pay.
Hope this helps,
Aug
PS. I am not sure if you have to pay for it or not, but I think in last years big anti-virus testing Kapersky actually won, but I don't know anyone that uses it, so I cant really give you any info
Excellent advice. Running an AV program, like AVG, plus a weekly/monthly scan of Malwarebytes will keep you clean. As for your second point, I think separate accounts are ideal, but lots of people don't like that kind of inconvenience. Another good option is to create an administrator account but not log in with it and instead create a standard account everyone uses. Vista and 7 will then prompt for administrator credentials anytime you need to change anything. This keeps you safer, though not entirely safe because we've had plenty of non-admin users get hit with malware. It at least makes it harder for nasty stuff to get installed.
I ran Malwarebytes and the trial version cleaned up 100 of the 657 problems. If I wanted the remaining problems cleaned from the scan I had to $$$. I did do all the other optimezer options for free and got almost 55% of my RAM back whatever that means. So I then ran CCcleaner for free. Between the two the computer is no longer being hijacked and the system is much faster.
VERY COOL!
TY ALL!
Glad to hear it's working better, but I'm not 100% sure you actually got the legit version of Malwarebytes--I've experienced malware where it redirects you from good/actual pages to fake ones. When it finds malware, the program should look like this:
It's not normal for Malwarebytes to try to get you pay for it--the version you're using is totally free, not a trial. It also doesn't have any kind of optimizer, such as one for RAM. So keep an eye on your computer and maybe to be safe try to make sure you're running the right version of Malwarebytes.
When I click on the link you provided I am directed here...
How do I get to the correct Malwarebytes site?
Also Google is still hijacked-I cant get images on this computer or find web sites-YIKES!
I did download HiJack this and I have a log file. Although not as bad the system is still under attack and corrupted. I am quite tarded and out of my element here. If you would like to make this a project I would appreciate your help and we could exchange information through e-mail.
Appreciate what you have offered so far.
Ok, let's see what we can do about it today. Do you have an email address I should use, or something like AIM?
You can reach me at [email protected] the weekend might be some delay getting to you. Really appreciate it.
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:03:16 AM, on 7/9/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\Explorer.EXE
c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
c:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
c:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
c:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\INTELLINET\INTELLINET Wireless Utility\RtWLan.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Updates from HP\9972322\Program\Updates from HP.exe
C:\Program Files\MemTurbo 4\MemTurbo.exe
C:\WINDOWS\system32\msiexec.exe
C:\WINDOWS\System32\svchost.exe
c:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\HP\KBD\KBD.EXE
c:\windows\system\hpsysdrv.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\DISC\DISCover.exe
C:\Program Files\DISC\DiscUpdMgr.exe
C:\Program Files\DISC\DiscStreamHub.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=64&bd=PAVILION&pf=desktop
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=64&bd=PAVILION&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mgoblog.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=64&bd=PAVILION&pf=desktop
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=64&bd=PAVILION&pf=desktop
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: IQ Challenge Bar Toolbar - {7b057ef2-5096-43e9-88de-1122699e70c1} - C:\Program Files\IQ_Challenge_Bar\tbIQ_1.dll
F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe,,c:\windows\temp\840.tmp,C:\WINDOWS\system32\sdra64.exe,
O1 - Hosts: 89.149.193.137 www.google.com
O1 - Hosts: 89.149.193.137 us.search.yahoo.com
O1 - Hosts: 89.149.193.137 uk.search.yahoo.com
O1 - Hosts: 89.149.193.137 search.yahoo.com
O1 - Hosts: 89.149.193.137 www.google.com.br
O1 - Hosts: 89.149.193.137 www.google.it
O1 - Hosts: 89.149.193.137 www.google.es
O1 - Hosts: 89.149.193.137 www.google.co.jp
O1 - Hosts: 89.149.193.137 www.google.com.mx
O1 - Hosts: 89.149.193.137 www.google.ca
O1 - Hosts: 89.149.193.137 www.google.com.au
O1 - Hosts: 89.149.193.137 www.google.nl
O1 - Hosts: 89.149.193.137 www.google.co.za
O1 - Hosts: 89.149.193.137 www.google.be
O1 - Hosts: 89.149.193.137 www.google.gr
O1 - Hosts: 89.149.193.137 www.google.at
O1 - Hosts: 89.149.193.137 www.google.se
O1 - Hosts: 89.149.193.137 www.google.ch
O1 - Hosts: 89.149.193.137 www.google.pt
O1 - Hosts: 89.149.193.137 www.google.dk
O1 - Hosts: 89.149.193.137 www.google.fi
O1 - Hosts: 89.149.193.137 www.google.ie
O1 - Hosts: 89.149.193.137 www.google.no
O1 - Hosts: 89.149.193.137 www.google.de
O1 - Hosts: 89.149.193.137 www.google.fr
O1 - Hosts: 89.149.193.137 www.google.co.uk
O1 - Hosts: 89.149.193.137 www.bing.com
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: IQ Challenge Bar Toolbar - {7b057ef2-5096-43e9-88de-1122699e70c1} - C:\Program Files\IQ_Challenge_Bar\tbIQ_1.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: hpWebHelper Class - {AAAE832A-5FFF-4661-9C8F-369692D1DCB9} - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\plugin\WebHelper.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: IQ Challenge Bar Toolbar - {7b057ef2-5096-43e9-88de-1122699e70c1} - C:\Program Files\IQ_Challenge_Bar\tbIQ_1.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [DMAScheduler] "c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [URLLSTCK.exe] c:\Program Files\Norton Internet Security\UrlLstCk.exe
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [net] "C:\WINDOWS\system32\net.net"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [AROReminder] C:\Program Files\Advanced Registry Optimizer\ARO.exe -rem
O4 - HKUS\S-1-5-18\..\Run: [147bea7c-9c24-4b7e-bf44-86a253bbd7e0_42] rundll32.exe "C:\Documents and Settings\LocalService\Application Data\147bea7c-9c24-4b7e-bf44-86a253bbd7e0_42.avi", start (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [147bea7c-9c24-4b7e-bf44-86a253bbd7e0_42] rundll32.exe "C:\Documents and Settings\LocalService\Application Data\147bea7c-9c24-4b7e-bf44-86a253bbd7e0_42.avi", start (User 'Default user')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - .DEFAULT User Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
O4 - Startup: MemTurbo.lnk = C:\Program Files\MemTurbo 4\MemTurbo.exe
O4 - Global Startup: INTELLINET Wireless Utility.lnk = C:\Program Files\INTELLINET\INTELLINET Wireless Utility\RtWLan.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Updates From HP.lnk = C:\Program Files\Updates from HP\9972322\Program\Updates from HP.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_2EC7709873947E87.dll/cmsidewiki.html
O15 - Trusted Zone: http://*.trymedia.com (HKLM)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ASP.NET State Service aspnet_state LiveUpdate Scheduler (aspnet_state LiveUpdate Scheduler) - Unknown owner - C:\WINDOWS\system32\2052r.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Intel(R) Quick Resume technology (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - c:\Program Files\Norton Int
Firefox + AdBlock + NoScript.
NoScript is a bit of a PITA, because you have to allow sites to run scripts, but should help keep malicious scripts from running.
If I ever have kids, their computers will be virtual machines that I can wipe/restore with a keystroke, and keep them out of the protected machine. I will now withhold my Windows file system permissions rant for another day.