PC World: Welcome to the PC World live chat with Narasu Rebbapragada! Narasu is a senior associate editor at PC World, and is the author of "All-in-One Security." She's here to answer all your questions about the featured security suites, how they were tested, and which is best for you.
PC World: Welcome, Narasu!
Narasu: I'm Narasu Rebbapragada, a senior associate editor at PC World. I spent the past two months researching all-in-one security suites, and I'm looking forward to answering your questions.
RB: Crystal ball time: This time next year, with Vista and 64-bit, who will still fill the bill?
Narasu: A good question. My crystal ball doesn't go out too far. The bad news is that when Vista comes out, you will likely have to replace all your security software packages with Vista versions. The reason is the way it handles administrator rights. Right now the only company to come out with a Vista-ready program is CA. This software, naturally, is still in beta. But, no doubt, most major security companies are working on it. As for 64-bit software, right now I don't know of any 64-bit suites. However, if you want to put together your own solution, Zone Labs has a 64-bit version of its firewall. Avast and Eset have 64-bit versions of their antivirus software, and Lavasoft has a 64-bit antispyware program.
SPSPSP: Will we have to replace our security software when Vista comes out if we have not changed to Vista?
Narasu: If you haven't upgraded to Vista, you can use your current security software.
Abet: Are antivirus programs that claim that they also take care of spyware as effective in doing so as antispyware programs?
Narasu: They can be. Many companies have added antispyware software to their antivirus engines, but there are still very good stand-alone antispyware solutions. What you want to use is up to you, but there are good options on both sides.
Alexred: What is the single largest threat to the security of a home PC, and what actions can be taken to offset this?
Narasu: Right now spyware and adware are the biggest area of the new group in security threats. The danger is that you can just be surfing the Internet and stumble across it; you no longer have to receive it. The best tips I can give are (1) get a good antispyware program, one you're comfortable using, and (2) also practice safe surfing. Go to online retailers that you know, and go to financial services or bank sites through their front door.
Barbschu: How many security packages should/can a person have?
Narasu: The most important thing to remember is to run only one antivirus engine at a time. If you run two, you risk system problems. So with that in mind, it's okay, for example, to run a security suite with one stand-alone antispyware program. It's definitely not okay to run two antivirus programs, and it's not okay to run a security suite and another antivirus program if that security suite has antivirus protection.
Bigalsbread: As I have a very limited income, I am interested in finding a free or extremely low-cost security suite. Does such a thing exist?
Narasu: That's a really good point. A lot of security software is expensive. I don't know of any free suites, but you can definitely put together your own free compilation of components. For firewalls you can use Zone Labs Personal Firewall--that's free. We covered three antivirus programs, and they're all good. And Ad-Aware is free on the antispyware side.
Boowahbabe: I've heard yes, and I've heard no--should you ever just delete all the cookies from the computer?
Narasu: While it's tempting to hit the delete button and lose all your cookies, keep in mind that some cookies are ones that you might need, such as for registration to your news page. So if you really can't find a cookie that's causing a pop-up, you can delete them all. But be prepared to re-register for a lot of your services. It's probably better, before you do that, to run an antispyware tool to try to find the problem cookie.
Blwshpnt: Does PC World rank the all-in-one security suites? They all claim to be the best. I have had Norton, McAfee, and now PC-cillin.
Narasu: Funny you should ask! We just completed our story ranking ten all-in-one security suites. It's called "All-in-One Security," and it will also be in the July 2006 print edition of PC World.
Candymanronnie: How does a virus or a Trojan get onto a Web site? Does the Webmaster know of its presence? Can the Webmaster do anything to protect the site?
Narasu: Well, the scary thing is that the Webmaster may have absolutely no idea that their site is infected with a Trojan horse. What can happen is that you can get rerouted, practically invisibly, to another site that drops a Trojan onto your PC. So the old logic that says "so long as you don't click anything (a link in an e-mail for example) you'll be safe" is no longer true.
Cmwashington: As a new PC user, how do I determine when my PC has been invaded by something foreign and harmful?
Narasu: Well, a lot of times you won't know. Symptoms can be if your PC suddenly is running very slow, or if you're getting pop-ups. Those kinds of things can be a sign of spyware or adware on your PC. And many times nothing will appear to be wrong. So it's important to still run a weekly scan using your antivirus software to make sure there's no bad stuff on your PC.
Cosmo776: How vulnerable are wireless connections compared to dial-up?
Narasu: Wi-Fi connections are more vulnerable than dial-up. So if you're running a Wi-Fi network at home, make sure you password-protect it. If you're at a Starbucks, for example, and you're connecting from a hot spot, make sure you're connected to the network you actually want to be connected to.
Craig: I'd like some feedback on Microsoft's new subscription service it is offering: OneCare and Defender. From a small-business perspective, it would seem like the way to go.
Narasu: The good thing about Microsoft's OneCare from a small-business point of view is that the $50 it costs per year is good for up to three PCs. That makes it the cheapest suite we looked at. However, I wouldn't really recommend OneCare for a business, because its tools aren't very configurable.
Dlks: What do you think is the best utility in this category, and why?
Narasu: As far as suites go, Symantec's suite and Norton Internet Security ranked first overall because the software had a good blend of features, performance, and overall usability. If you want the absolute top performer, that title went to McAfee's suite. Another top performer is Kaspersky's suite. For timing reasons it didn't make our suite roundup, but it's another good option.
Dshema: I have McAfee VirusScan, and every time I log on to my computer I get the message "McAfee Active Shield has found a suspect file on your computer. McAfee strongly recommends that you scan your computer now." I run a scan, and it finds nothing. What may be causing this?
Narasu: The first thing I would check is that you have up-to-date virus definitions, the very latest software updates from McAfee. After that, if your scan still finds a problem, you can try running a different antivirus program; but I must stress strongly that before you do that, properly uninstall the McAfee product. I don't recommend you buy anything new right away, as there are trials and free scanners up on the Internet. But again, when you go to the Internet, make sure you go to a company that you trust.
Effex: Does a router protect my computer from any and all viruses and malicious invasion?
Narasu: No. Someone once explained it to me like this: A router is like the fence surrounding your house. So it's good at keeping out certain kinds of networks that are trying to get in. But beyond that, say, for example, you get a virus in an e-mail and you click on it, a router won't prevent that piece of malware from accessing the Internet once it's on your computer. So a router is great for hiding your PC's IP address from the outside world, but you still need antivirus and antispyware software.
Jander41: Is it really necessary to have antispyware and a firewall?
Narasu: That's up for debate. I personally think so, and I run both. But there are compelling arguments that a software firewall, so long as you have a router or something that's hiding you from the Internet, may not be necessary. I would recommend you get both, but keep in mind that a software firewall will cough up messages. It wants to know if certain applications can access the Internet. I prefer that level of protection, but if you're always going to be irritated by the pop-ups and just clicking Yes to get rid of them, then you're defeating the purpose. If you don't have a software firewall, make sure you have a router or some sort of hardware firewall.
Mconway15: Do I need a firewall if I do not bank or pay bills online?
Narasu: Again, same thing--I would say yes, because there are other types of network threats.
N3boden: I need virus tools that will run from a floppy disk or CD, or from a USB port--one that will run from DOS boot.
Narasu: Most of the security suites do have some sort of bootable-CD option. F-Secure, Symantec, and McAfee have CDs that double as emergency discs so you can boot from them. Panda's CD will boot, but it won't boot Windows. BitDefender has a bootable-CD feature, but it's an extra fee (not much, though).
Rafalot: If I use a router even though I'm on a single computer, I don't need a third-party firewall, do I?
Narasu: Really, all you're doing is hiding your computer's IP address from the Internet. So if that's enough protection for you, that might be okay. Again, if you do a lot of file-sharing activities, you might want a software firewall to be able to configure certain applications and how they talk to the Internet.
Simoncotton: AVG is seldom mentioned in magazines. Has it a place?
Narasu: AVG is terrifically good, free antivirus software. If you don't have money, I would definitely recommend using it. I'm not sure why it's overlooked--we included it in our last antivirus roundup. And while it ranked last out of the ten products we tested, it's still good software.
Yyja: With the plethora of security software suites available, plus Microsoft's own OS-bundled security features, how is a poor user like me going to sort out the complexity--and even conflicts--and come up with a proper choice?
Narasu: If you're really a poor user, as in you have no money, then you go with the free software solutions, like one of the free antivirus programs, free firewalls, and free antispyware tools we've recommended in the past. Beyond that, the main decision you have to make is how much help you want with your software. If you consider yourself comfortable with software--uninstalling, installing, configuring--then you may want software that doesn't talk to you as much. F-Secure Internet Security performed well, but it won't explain very many options. I like that one because it interfaces very simply. However, if you don't understand common security terms--for example, whether or not you want to scan a compressed archive--then you may want to go with one of the top three contenders in our security suite roundup, from Symantec, McAfee, or Panda. I find that they pop-up too many alerts about how my software is running, but other people may need that interaction to remind them that they need to update their software. And that's perfectly fine. I wouldn't recommend that my friends use the same security software as me, because we have different levels of experience with it.
3: How do you know which company really has the best security software? They all are going to toot their own horn.
Narasu: That's very true, and it's good that you're aware of that, because the security company with the biggest marketing budget doesn't always make the best product. And the same product can perform differently year after year. So the best thing you can really do is read articles from magazines like PC World, or the variety of other publications out there, and just keep current. Just to give you an indication of some of the things we examined, we looked at how well the different security packages were able to detect and clean up a large number of security threats. We looked at the number of features they had. And we also looked at how actionable they are (how well you're able to understand the information they're giving you). And they all did that pretty differently. It's unfortunate that we live in a world where we have to keep track of a lot of this stuff, but we do.