Windows Secrets

Subscribers: Sign in

Enter your e-mail address to get a free subscription.
We guarantee your privacy
Skip to content
  • Home
  • Newsletter Archives
    • Current
    • LangaList Plus
    • Patch Watch
    • Wacky Web Week
    • Security Baseline
  • WinDeals
  • E-Books
  • Lounge
  • Polls
  • About us
    • Refunds
    • Privacy Policy
    • Advertise
  • Contact
  • Your Account
    • Upgrade
    • Preferences
    • Bonus Download
    • Unsubscribe
Home>Reviewers rate Norton the No. 1 security suite

Windows Secrets Newsletter • Issue 186 • 2009-02-26 • Circulation: over 400,000

Table of contents 
  • Bonus: All readers get brain-fitness secrets for free
  • Top Story: Reviewers rate Norton the No. 1 security suite
  • Known Issues: Site owners stung by SiteAdvisor rating errors
  • Wacky Web Week: My smartphone is smarter than your smartphone!
  • LangaList Plus: Tame Windows’ Volume Shadow Copy Service
  • Best Software: Sync services let you update files from anywhere
  • Patch Watch: New viruses target recently patched IE holes
 
Bonus

All readers get brain-fitness secrets for free

That mush between your ears is aging along with the rest of you. To keep your wetware firing on all cylinders, add to your physical-fitness regimen the 12-step brain-workout plan presented in Brain Rules, a book by John Medina. The paperback edition won’t be available until Mar. 31, but all Windows Secrets subscribers can get an exclusive 45-page excerpt, including two chapters and a summary of the others, now through Apr. 1. Use the link below and set your preferences, after which you’ll see a download button to get your free bonus. —Brian Livingston, editorial director

All subscribers: Set your preferences and download your bonus
Info on the printed book: United States / Canada / Elsewhere

 
Top Story

Reviewers rate Norton the No. 1 security suite

Ryan Russell 1 Reviewers rate Norton the No. 1 security suite By Ryan Russell

Norton Internet Security Suite 2009, the top-rated security suite this year — as it was last year — now uses fewer system resources than before without skimping on protection.

If you’re not a fan of Norton products, there are plenty of other contenders worthy of consideration that can challenge the long-time security-software leader.

W20090226 Norton Reviewers rate Norton the No. 1 security suite Windows Secrets writers periodically analyze the ratings of trusted reviewers and summarize for you in the WS Security Baseline which personal-protection products are currently getting the best marks. Based on reviews from PC World, PCMag, Maximum PC, and others, today’s security-suite winner is Symantec’s Norton Internet Security 2009 (photo at right).

This product may seem like a repeat from last year’s tally of ratings. Scott Dunn’s Jan. 24, 2008, Top Story reported that Norton Internet Security 2008 had received the most Editors’ Choice awards of any suite. However, the latest release of NIS is faster and less resource-hungry than previous versions, according to reviewers.

Symantec has not been deaf to the complaints of Norton Internet Security users about the program’s spendthrift ways with your PC’s memory and CPU cycles. In its review of the program, PCMag.com says, “this is definitely the slimmest, most unobtrusive Norton ever.” (See below for links to this and other reviews of the product.)

As with most of the leading security-suite contenders, Norton Internet Security protects against infection by viruses, spyware, and rootkits. The program’s components include a software firewall and a content-filtering utility for browsers and instant-messaging clients.

Runner-up suites challenge Norton products

If you’re one of the many people who’ve sworn never to install a Norton or McAfee security product again, I understand your pain. More than once, I’ve had to venture into the Windows file system and Registry to manually uninstall security programs from the two biggest names in the field, ripping the pieces out one by one.

The good news is that there are a lot of other, strong contenders for security-suite top dog. Maximum PC lists ESET Smart Security as its second choice; the program matched Symantec’s score of 9 out of 10. The magazine’s reviewers gave a lot of weight to performance and the impact the program has on system resources.

PCMag.com gives Trend Micro Internet Security Pro 2009 and ZoneAlarm Internet Security Suite 2009 a tie for second place, trailing only Symantec’s product. The site also weighted performance heavily, particularly the boot times of the programs it tested.

PC World rates BitDefender Internet Security 2009 as the second choice, yet again trailing the rating for Norton Internet Security. The review names the BitDefender suite a value and also singles out Avira Premium Security Suite 8.2 as the best malware detector.

For those who’d rather select their security program solely on the results of independent antivirus test labs, you’ll find several testing organizations described and linked to in Scott Dunn’s Feb. 14, 2008, Known Issues column: “Labs provide alternatives in evaluating suites.”

(Disclosure: My employer, BigFix Inc., sells a couple of different brands of anti-malware software to enterprises. While the company competes with many of the firms that are mentioned in this review — and partners with at least one of them — BigFix doesn’t sell products such as the ones mentioned above to consumers.)

Finding the sweet spot of security suites

From my point of view, the most important criterion for selecting a security suite is whether the program includes all the components you need.

Nearly all of the top-rated security suites provide a firewall and a range of anti-malware tools. The programs are differentiated by their auxiliary security components. For example, youngsters and inexperienced users may require first-rate Web-content filtering and antiphishing tools. More-experienced PC users may find such features less important.

In terms of which programs offer the best virus detection, I’m afraid the days of ranking an antivirus engine the best because of an advantage of a few percentage points in detection tests are over. It never was a really useful measurement. The myth that an antivirus app will protect you from the latest infections is even less credible now.

The sheer volume of new malware has outstripped the ability of AV vendors to create and distribute their virus-definition updates. No security program made today can prevent all PC infections. The virus-detection rates of the top-rated apps are so similar, it makes sense to give a little more weight to the tools’ design, performance, and range of features. A tool people can’t understand and use is no protection to them at all.

For more information on the ratings, see the following security-suite reviews:
  • PC World: Top Internet security suites
  • PCMag.com: The best security suites for 2009
  • Maximum PC: Antivirus software roundup — protect your PC from guys like this!
Firewall, updater, and browser round out Baseline

Your security suite is an important component of your overall PC-security strategy, but it’s not the only one. A minimal security configuration for a PC also calls for a hardware firewall, a means of frequently updating all of your applications, and a secure Web browser. (Laptops don’t ordinarily use hardware firewalls and must rely on the personal-firewall features of an installed software suite.)

Windows Secrets has no test lab and doesn’t run its own security tests. Instead, WS writers study the published tests that are available and summarize for you which products get the best overall scores. Based on the latest findings, the WS Security Baseline currently includes the following four elements:

1. Use a hardware firewall. For home PCs, Netgear’s RangeMax WPN834 and the Linksys Dual-Band Wireless-N Gigabit Router WRT610N currently enjoy high ratings for security and usability. Read more

2. Install a security suite. Norton Internet Security Suite 2009 (see above).

3. Check for updates regularly. For novices, WS editors recommend running Microsoft Update at least monthly. For small businesses, patch-management software such as PatchLink Update and GFI LANguard Network Security Scanner are highly rated.

After you update Windows, you should immediately run Secunia’s Software Inspector, an online service that scans your system for application and operating-system patches you may still need. Read more

4. Select a more-secure browser. The safest way to surf the Web is to use Mozilla’s Firefox browser, which has repeatedly been demonstrated to have fewer security holes than Internet Explorer 7. Read more

TUNE IN TO HEAR MORE. Ryan Russell and WS editorial director Brian Livingston discuss the new Security Baseline on the Computer America syndicated radio program, Fri., Feb. 27. The show begins live at 10 p.m. Eastern/7 p.m. Pacific. Visit the listen to Computer America page beforehand to learn how to get the streaming audio via Windows Media Player or find a station near you that carries the program.

Ryan Russell is quality assurance manager at BigFix Inc., a configuration management company. He moderated the vuln-dev mailing list for three years under the alias “Blue Boar.” He was the lead author of Hack-Proofing Your Network, 2nd Ed., and the technical editor of the Stealing the Network book series.
 
Known Issues

Site owners stung by SiteAdvisor rating errors

Dennis OReilly 1 Site owners stung by SiteAdvisor rating errors By Dennis O’Reilly

McAfee’s SiteAdvisor security service leaves some Web developers scratching their heads over inconsistencies in its green-yellow-red ratings.

The company’s promises of more-frequent reviews of its site classifications are welcomed by site owners struggling to win SiteAdvisor’s approval.

The Feb. 19 Top Story by editorial director Brian Livingston described McAfee’s attempts to ensure that the security ratings generated by the company’s SiteAdvisor service are up-to-date. That column followed the previous week’s Top Story by Mark Joseph Edwards, which reported that SiteAdvisor’s ratings could be as much as one year old.

Eric Legge wrote in to tell us of his efforts to have his site retested after it was assigned a yellow rating by SiteAdvisor:
  • “SiteAdvisor is talking rubbish about dealing with complaints promptly. I complained by e-mail and by letter to the [McAfee] CEO about every page on my site having a yellow rating in October 2008. I also requested that my site be revisited after I had removed the [offending] link, which I removed only because I have probably been losing visitors for years because of this lousy service.

    “My entire site [PC Buyer Beware] still has a yellow rating for a link to this page, which SiteAdviser has given a green rating! [The page contains] a valid fix for the Smitfraud virus.

    “You only have to search the Web to find a number of site owners who have had their sites’ existence threatened by SiteAdvisor errors. Thanks for taking this ‘service’ to task.”
So many people asked us about SiteAdvisor alternatives that we’re planning a technical review of the accuracy of SiteAdvisor, Web of Trust, and other site-rating services. This complex task will take a while to finish, but we hope to offer our recommendations sometime within the next few weeks. At this point, it’s not clear how bad the situation is and which services are really the most correct.

SiteAdvisor plug-in may not be easy to remove

Our report on SiteAdvisor caused many readers to uninstall the plug-in for their browsers. Unfortunately, getting the program off your system may require some extra effort, as reader Chris Coddington discovered:
  • “In the recent article on SiteAdvisor’s retesting policy, I and most others certainly read between the lines and know what to expect if [we] continue to use the ‘service.’ I suspect that many users — including myself — are uninstalling SiteAdvisor. If we can’t trust the [service's] red warnings, we can’t trust the green warnings, either.

    “Now the only problem is how to uninstall the beast! It certainly can’t be found [by clicking] Start, All Programs, and I don’t have any other McAfee software on my system. It sounds like they are hiding it someplace. It’s getting to sound almost like another virus to worry about!”
SiteAdvisor can be removed via standard Control Panel applets: Add or Remove Programs in XP and Programs and Features in Vista. In XP, another way to get to Add or Remove Programs is to click Start, Run; type appwiz.cpl; and press Enter. An alternative way to open Programs and Features in Vista is to press the Windows key, type appwiz.cpl, and press Enter.

Once you’re in the Control Panel applet in either version of Windows, select the entry for McAfee SiteAdvisor, click Change/Remove in XP or Uninstall in Vista, and step through the wizard.

The Windows uninstaller may not completely remove the program. McAfee provides a free Consumer Products Removal utility (more info and download page). This tool promises to clear your system of several of the company’s products, not just SiteAdvisor.

If you prefer to disable rather than uninstall the SiteAdvisor plug-in, you can do so in Firefox by clicking Tools, Add-ons; selecting McAfee SiteAdvisor; and choosing Disable. In IE, click Tools, Manage Add-ons, Enable or Disable Add-ons; select both McAfee SiteAdvisor BHO and McAfee SiteAdvisor Toolbar, one at a time; and choose Disable under Settings near the bottom of the dialog box.

Another possible SiteAdvisor alternative

In the Feb. 19 Known Issues column, reader George Elting recommended two free programs designed to make your Web browsing safer. In summary, CallingID (more info) and LinkScanner Lite (more info) are more specialized services than SiteAdvisor. The former identifies the location of the site’s server, and the latter verifies the links returned by search engines.

Larry Croy offers another suggestion for secure browsing:
  • “Just a heads-up for another free alternative to SiteAdvisor. I have been using the Finjan SecureBrowsing software [more info] for several years with no problems. They have both IE and Firefox versions.”
As I mentioned above, we’ll be taking a closer look at Web security programs in a future article. Stay tuned!

Readers Eric, Chris, and Larry will each receive a gift certificate for a book, CD, or DVD of their choice for sending tips we printed. Send us your tips via the Windows Secrets contact page.

The Known Issues column brings you readers’ comments on our recent articles. Dennis O’Reilly is technical editor of WindowsSecrets.com.
 
Wacky Web Week

My smartphone is smarter than your smartphone!

My smartphone is smarter than your smartphone! By Katy Abby

It happens every time: just when you think you’ve got the newest, slickest, most-awesome gadget on the market, a new model comes along that makes your posh purchase look like peanuts. Nowhere is this more apparent than with cell phones. Today’s latest smartphones top their predecessors by offering mind-blowing features that we could barely dream of in years past.

Enter the Pomegranate. It does absolutely everything you’d ever want a cell phone to do, and then some! Just don’t tell your iPhone …. Play the video
 
LangaList Plus

Tame Windows’ Volume Shadow Copy Service

Fred Langa 1 Tame Windows Volume Shadow Copy Service By Fred Langa

The Volume Shadow Copy Service has been a part of Windows since 2003 and can silently consume prodigious amounts of disk space.

Here’s how to keep the automatic-backup service from devouring the hard-drive capacity on your XP or Vista system.


Still on the prowl for missing disk space

My previous items on determining the cause of vanishing disk space (see the Jan. 8 column and Feb. 12 column) looked at some of the obscure backwaters of Windows that can quietly consume huge chunks of your hard-drive real estate. But XP, Vista, and Windows Server share still another black hole for disk space, and reader Sande Nissen ran head-on into the version in Vista:
  • “I’ve seen one more situation that can account for missing hard-disk space: the Volume Shadow Copy Service. When my new ThinkPad running Vista Home Premium starting losing significant amounts of disk space, I was baffled. Finally, I learned that the Volume Shadow Copy Service was unconfigured, which meant it would use an infinite amount of space.

    “A free utility called Shadow Explorer [more info] helped me discover this. And the vssadmin.exe command-line utility built into Windows let me fix it. Here’s the Microsoft reference on Vssadmin.”

Thanks, Sande! The Volume Shadow Copy Service (which is abbreviated to VSS; see explanation below) actually has roots all the way back to Windows Me, which introduced an early version of System Restore. XP improved on this by letting System Restore roll back unwanted changes to the Registry and other critical system files.

It’s easy to control the amount of disk space allotted to XP’s System Restore, as Microsoft shows in the aptly named how-to article “Windows XP System Restore is easy to use.”

You can think of VSS as a kind of hugely enhanced System Restore. The service rolled out with Windows Server 2003 and is also in Vista. VSS retains the familiar all-or-nothing system-file rollbacks of System Restore, but it adds a Previous Version feature that, among other options, lets you selectively roll back changes to individual files on your system — even regular documents! And as Sande says, Vssadmin is the tool that lets you manage VSS in Windows Server 2003 and Vista.

This article is part of our paid content. Subscribe.

Already a paid subscriber? Click here to login.

 
Best Software

Sync services let you update files from anywhere

Scott Dunn 2 Sync services let you update files from anywhere By Scott Dunn

A new generation of services allows you to share and synchronize folders via the Internet.

Many sync services also offer online backup, remote file management, and access to your synched files from any browser, even when the remote machine on which they’re stored is turned off.

Why would you want to use a Web-based file-sync service rather than a sync program such as Microsoft’s free SyncToy (download page)? Because the services harness the power of the Internet to pierce corporate firewalls. With many of these services, you need only an Internet connection and a small sync applet that you download and install on each PC.

Unfortunately, browsers don’t make very good file managers. For one thing, you can forget about dragging and dropping between your desktop and the browser window listing your synched files.

While the services don’t charge to download their sync software, in many cases you have to pay a monthly or annual fee to access all the program’s features. The fee includes the cost of storage space on the site’s servers.

Note that the annual fees charged by most of the products I tested are the equivalent of 10 monthly payments, so going the annual route is the same as getting two months of service for free.

This article is part of our paid content. Subscribe.

Already a paid subscriber? Click here to login.

 
Patch Watch

New viruses target recently patched IE holes

Susan Bradley 1 New viruses target recently patched IE holes By Susan Bradley

We’re seeing the first exploits attempting to take advantage of the Internet Explorer vulnerabilities addressed in this month’s security update from Microsoft.

The fix causes pages on some trusted sites to stop loading, which requires a patch of its own.

MS09-002 (961260)
Microsoft Word documents may be infected

As predicted, attacks have begun to target the Internet Explorer vulnerabilities patched by the update explained in Microsoft security bulletin MS09-002 and Knowledge Base article 961260. The first such viruses were contained in Word documents, as discussed in this article on the SANS Internet Storm Center, but the attacks are now being launched from various web sites, mostly in China and Taiwan at present.

Note that some people report a problem associated with this update. When they browse to a page on a site on IE’s Trusted Sites list, the page may stop loading if it pulls content from servers that aren’t on the Trusted Sites list. In Vista, IE will indicate that navigation to the page was canceled.

To fix this issue, either follow the manual instructions in KB article 967941 or scroll to and select the Fix it button on that page. (See Figure 1.)

W20090226 Fixit New viruses target recently patched IE holes
Figure 1. Many Microsoft Knowledge Base articles now feature one-click fix-it options.

This article is part of our paid content. Subscribe.

Already a paid subscriber? Click here to login.

YOUR SUBSCRIPTION

The Windows Secrets Newsletter is published weekly on the 1st through 4th Thursdays of each month, plus occasional news updates. We skip an issue on the 5th Thursday of any month, the week of Thanksgiving, and the last two weeks of August and December. Windows Secrets is a continuation of four merged publications: Brian's Buzz on Windows and Woody's Windows Watch in 2004, the LangaList in 2006, and the Support Alert Newsletter in 2008.

Publisher: WindowsSecrets.com, 1218 Third Ave., Suite 1515, Seattle, WA 98101 USA. Vendors, please send no unsolicited packages to this address (readers' letters are fine).

Editor in chief: Tracey Capen. Senior editors: Fred Langa, Woody Leonhard. Copyeditor: Roberta Scholz. Program director: Tony Johnston. Contributing editors: Yardena Arar, Susan Bradley, Scott Dunn, Michael Lasky, Scott Mace, Ryan Russell, Lincoln Spector, Robert Vamosi, Becky Waring. Product manager: Andy Boyd. Advertising director: Eric Gilley.

Trademarks: Microsoft and Windows are registered trademarks of Microsoft Corporation. The Windows Secrets series of books is published by Wiley Publishing Inc. The Windows Secrets Newsletter, WindowsSecrets.com, Support Alert, LangaList, LangaList Plus, WinFind, Security Baseline, Patch Watch, Perimeter Scan, Wacky Web Week, the Logo Design (W, S or road, and Star), and the slogan Everything Microsoft Forgot to Mention all are trademarks and service marks of WindowsSecrets.com. All other marks are the trademarks or service marks of their respective owners.

 HOW TO SUBSCRIBE: Anyone may subscribe to this newsletter by visiting our free signup page.

WE GUARANTEE YOUR PRIVACY:

1. We will never sell, rent, or give away your address to any outside party, ever.
2. We will never send you any unrequested e-mail, besides newsletter updates.
3. All unsubscribe requests are honored immediately, period.  Privacy policy

HOW TO UNSUBSCRIBE: To unsubscribe from the Windows Secrets Newsletter,
  • Visit our Unsubscribe page.
Copyright © 2012 by WindowsSecrets.com. All rights reserved.

Table of contents

Top-scoring articles in the past 12 months
  • Leaving long cookie trails throughout the Web 5.00
  • Windows-like security for Android devices 5.00
  • Win7′s no-reformat, nondestructive reinstall 4.56
  • LizaMoon infection: a blow-by-blow account 4.46
  • RPV: Win7′s least-known data-protection system 4.35
  • Recovery: the last step in total data security 4.31
  • The sorry tale of the (un)Secure Sockets Layer 4.30
  • Time for a .NET update we can’t ignore 4.30
  • Getting the most from Windows Search — Part 1 4.25
  • Revising printing habits saves money and trees 4.25
  • Upgrades end in erratic, partial hangs 4.25
  • Get wired performance from your Wi-Fi network 4.24
  • Caution: Bumps in the road to IPv6 4.23
  • Patch Watch adds problem-patch update chart 4.23
  • ZeuS Trojan reinvents itself as bots rock on 4.22
  • Pros and cons of a ‘keyfile’ password 4.21
  • April brings showers of browser patches 4.20
  • Readers comment on the LizaMoon infection story 4.20
  • Office 2007 gets its final service pack 4.19
  • Putting Registry-/system-cleanup apps to the test 4.19
  • The advanced system-recover toolkit 4.18
  • One year and 99 security bulletins later 4.18
  • Don’t pay for software you don’t need — Part 3 4.17
  • What to do when Windows refuses to boot 4.17
  • Make the most of Windows 7′s Libraries 4.16
  • Keeping you up to date: say no to .NET — again 4.16
  • Internet Explorer gets another round of patches 4.15
  • Vacation’s over; it’s a big round of patches 4.15
  • Big-time Wi-Fi security for the small office 4.14
  • Office File Validation patch leads to problems 4.14
Connect with us Follow us on Twitter Connect with us on Facebook View our RSS Feeds
  • Home|
  • Newsletter|
  • About Windows Secrets|
  • Advertise with us|
  • Unsubscribe|
  • Sitemap|
  • Affiliates|
Trademarks: Microsoft and Windows are registered trademarks of Microsoft Corporation. The Windows Secrets series of books is published by Wiley Publishing Inc. The Windows Secrets Newsletter, WindowsSecrets.com, WinFind, Windows Gizmos, Security Baseline, Patch Watch, Perimeter Scan, Wacky Web Week, the Logo Design (W, S or road, and Star), and the slogan Everything Microsoft Forgot to Mention all are trademarks and service marks of iNET Interactive. All other marks are the trademarks or service marks of their respective owners.
iNET Interactive Copyright © 2011 iNET Interactive.
All rights reserved.
Terms of Use  |  Privacy Policy
Internet Services
  • Web Hosting Talk
  • HostingCon
  • Hosting Catalog
  • Host Voice
Web Development
  • Hot Scripts
  • DB Forums
Digital Marketing
  • ABestWeb
  • Search Marketing Standard
  • PayPerClickUniverse
  • SEMCompare
Consumer Tech
  • Windows Secrets
  • Overclockers
  • Mac Forums

Learn more about
advertising opportunities across the iNET Interactive Network.

LiquidWeb