New laptop seeks security software
May 11, 2011 9:26 PM Subscribe
Best security software for my new Win7 laptop? Any other advice to ensure my computer's life gets off to a good start?
It's a Toshiba Satellite M-645-S4115, running Windows 7.
It's got Norton pre-loaded, and I gather from prior AskMe posts that I shouldn't keep paying for Norton after the free 30-day trial, but what should I replace it with? Any guidance on the process of installing better security software, or on removing Norton?
Anything else should I know about setting things up on my machine? Seems to come pre-loaded with a bunch of processes auto-loading at start-up, so I'll probably want to disable unnecessary things.
I'm a little embarrassed to say I purchased it at Costco, but seemed like a decent price for a solid machine. Anyone have experience with Costco's (free) tech support? Did I get what I paid for, or will they truly be helpful if I run into trouble down the line?
It's a Toshiba Satellite M-645-S4115, running Windows 7.
It's got Norton pre-loaded, and I gather from prior AskMe posts that I shouldn't keep paying for Norton after the free 30-day trial, but what should I replace it with? Any guidance on the process of installing better security software, or on removing Norton?
Anything else should I know about setting things up on my machine? Seems to come pre-loaded with a bunch of processes auto-loading at start-up, so I'll probably want to disable unnecessary things.
I'm a little embarrassed to say I purchased it at Costco, but seemed like a decent price for a solid machine. Anyone have experience with Costco's (free) tech support? Did I get what I paid for, or will they truly be helpful if I run into trouble down the line?
Microsoft Security Essentials is an excellent choice.
Frankly, there's no reason to wait the 30 days. Uninstall Norton now and switch immediately.
posted by Chocolate Pickle at 9:37 PM on May 11, 2011 [2 favorites]
Frankly, there's no reason to wait the 30 days. Uninstall Norton now and switch immediately.
posted by Chocolate Pickle at 9:37 PM on May 11, 2011 [2 favorites]
Best answer: Seconding Security Essentials as the always-on component, with something like MalwareBytes or SuperAntiSpyware in reserve.
Use the official Norton Removal Tool to get rid of it.
posted by holgate at 9:39 PM on May 11, 2011
Use the official Norton Removal Tool to get rid of it.
posted by holgate at 9:39 PM on May 11, 2011
I personally cannot vouch for Security Essentials, it has failed me more than once on viruses that any common AV solution should have been able to catch.
I second Malwarebytes, though. For AV I would use Symantec Corporate/Endpoint (older versions are cheap from Amazon or eBay), or for lesser effect Avira Free or maybe even AVG.
posted by Unhyper at 9:51 PM on May 11, 2011
I second Malwarebytes, though. For AV I would use Symantec Corporate/Endpoint (older versions are cheap from Amazon or eBay), or for lesser effect Avira Free or maybe even AVG.
posted by Unhyper at 9:51 PM on May 11, 2011
Best answer: Norton is as bad as a virus in itself, and you need the cited removal tool to get rid of it. If you've got the money then use Kaspersky. If you haven't got any money then panda cloud or MS security essentials are good. You should use a (free) firewall as well, such as Comodo. If you avoid downloading cracked software, dodgy Russian porn sites and clicking on 'free virus scans' and random executable files you didn't ask for you'll be fine.
posted by joannemullen at 9:59 PM on May 11, 2011
posted by joannemullen at 9:59 PM on May 11, 2011
The latest version of Norton is not as bad as some of its predecessors but there are much better choices out there.
I would use Microsoft Security Essentials over Norton.
I personally use Eset nod32 as my Anti Virus and it has not failed me yet. Its fairly lightweight compared to for instance Norton.
I like to couple it with an enhanced firewall called Outpost
Another good choice is Kaspersky AV
posted by digividal at 10:12 PM on May 11, 2011
I would use Microsoft Security Essentials over Norton.
I personally use Eset nod32 as my Anti Virus and it has not failed me yet. Its fairly lightweight compared to for instance Norton.
I like to couple it with an enhanced firewall called Outpost
Another good choice is Kaspersky AV
posted by digividal at 10:12 PM on May 11, 2011
Best answer: Avast! free antivirus is a very low footprint superior email/web/usenet/program virus scanning software. Updates regularly, doesn't hog a lot of resources.
There is a shared computer (hooked up to a DNA gel setup) that lots of stupid people get to use. It was an almost unuseable pile of computer disease spreading $5 crack whore. Every time I stuck my USB key into my own computer, my antivirus had to scrub multiple things from it.
I got annoyed, installed Avast on the shared computer and spent an afternoon cleaning it of the more esoteric shit. Things are allright now.
My work computer stays/ed uncompromised, random undergrads don't pick up something stupid by accident, and the center-wide Molly Malone is dezombified, works faster, and doesn't curse anyone who tickles her slot with an USB drive.
posted by porpoise at 10:26 PM on May 11, 2011
There is a shared computer (hooked up to a DNA gel setup) that lots of stupid people get to use. It was an almost unuseable pile of computer disease spreading $5 crack whore. Every time I stuck my USB key into my own computer, my antivirus had to scrub multiple things from it.
I got annoyed, installed Avast on the shared computer and spent an afternoon cleaning it of the more esoteric shit. Things are allright now.
My work computer stays/ed uncompromised, random undergrads don't pick up something stupid by accident, and the center-wide Molly Malone is dezombified, works faster, and doesn't curse anyone who tickles her slot with an USB drive.
posted by porpoise at 10:26 PM on May 11, 2011
Panda cloud works for me, I switched from AVG and never looked back.
posted by hortense at 10:50 PM on May 11, 2011
posted by hortense at 10:50 PM on May 11, 2011
Best answer: Antivirus:
Microsoft Security Essentials paired with Immunet is actually a fairly decent free AV solution. Up until recently I've recommended Avira due to having the highest detection rate, however Microsoft has stepped up the heuristics game in their latest version and it's far less nagging than the free Avira. You can also look into Avast, and AVG which are also decent free AV solutions. I don't believe paying for AV is worth it, and here's why:
You can't rely on AV solutions to be the magic bullet that prevents you from getting malware. On a good day, a very good AV solution will prevent around 30% of new threats based on heuristics alone. Without heuristics, it will block 0% of new threats designed to be undetected. That is coupled with an exponential increase in malware variants in the past few years. In 2010, 1/3 of all malware variants THAT EVER EXISTED were created. So far in 2011, AV companies like Panda are seeing 73k+ new variants DAILY. The reason there has been such a tremendous increase is due to malware developers shifting from "causing havoc" to scamming or stealing you out of your hard earned cash. And like anything...where there's money to be made, the criminals come in droves from all over the world.
So that's where the rest of this reply focuses, malware prevention:
Limited Rights:
The first and most important thing you'll want to do, (after you clean off the stuff you don't want via Add/Remove programs) is to remove your "main" account from the Administrators group. I know that sounds inconvenient, but trust me, it's not bad at all with Windows 7. Here is one way to accomplish this, step by step:
1. Right-click My Computer and select Manage
2. Navigate to the Users and Groups section (under System Tools) and click on Users
3. Right-click on the right hand pane and select New User
4. Give this user a name and password. Set it so that "not expire" is the only check selected
(for example the username "Trusted" and password "trustno1" would work)
5. Click on the members tab and add the Administrators group
6. Log out and log in as your new "Trusted" account. Go back to Users and Groups
7. Click on Groups then double-click Administrators. Remove your "main" account
8. Double-click the Users group. Ensure your "Main" account is there, add it if not.
9. Log off "Trusted" and log back into your "Main" account. You're all set!
From here when you want to install a new device, administer your PC, or run a program that requires elevated rights, you'll get a prompt to enter the password for your "Trusted" account. You should rarely, if at all, need to log out and log in to the "Trusted" profile in order to install something...instead simply install it by typing in its credentials while under limited rights.
By doing this simple initial step...you gain a protection inherent to many other operating systems than Microsoft's, who with Windows adopt more of a "lazy admin by default" paradigm...you've protected yourself immensly against the bulk of rootkits out there...and some of the nastier system-wide trojans. You might still manage to accidently get a profile based trojan, but in most cases you can clear it up by logging in as "Trusted" to address it. (in "good news" terms...no need to wipe/reload..yay!)
(And yes, the UAC is built into Windows 7, but I wouldn't trust it at all...unfortunately it does not prompt for many windows processes...which to Microsoft's benifit avoids nagging. This can be abused by certain types of malware like TDSS/TDL4, etc. The Power Users group has similar vulnerbilities, allowing malicious code to self-escalate..always use the Users group for limited rights)
Patches:
The 2nd most important thing to have besides limited rights is patched software! Most malware programs these days install via web based exploit packs (drive by infections) that take advantage of unpatched 3rd party programs. Running Windows updates only gets you so far, that older copy of Adobe Reader makes your PC as secure as a raw steak in a lions cage. In fact, back in 2009, Adobe Reader alone was seen by AV companies to be responsible for over 80% of all malware infections. The trend is constantly in flux as malware developers always go for the lowest hanging (and most profitable) fruits....often more than 1 at a time.
There's two places to go that make personal patch management a breeze:
- Secunia PSI is an automatic patching service for home PCs. Think of it as "Windows Updates for everything else"
- Ninite is a web based updater that is very easy to use to get the latest versions of software. It lacks active features that PSI has however, such as security assessments and automatic patching. But it's easier to use to get things started.
Site Advisors:
- Web of Trust I cannot recommend enough. Think of it as an "early warning" to malicious sites before actually clicking on them in search results. A simple search for "free screensavers" for example usually returns about 1-2 "safe" sites out of 10. Very very handy plugin. (works for IE, Chrome, Firefox, and Opera)
- Peerblock is a very decent IP filter that will help you control "who" your PC is talking to. Lot's of prebuilt lists as well as ones you can download. This program is a little more on the paranoid end, but is also easy to learn and has an active community supporting it. (at the least, you get to watch tons of advertisment companies lose track of what your doing..)
- Depending on the browser you use, you might want to look into Adblockers to cut down ad exposure. Many advertising affiliates are lazy in checking their content for obfuscated code. Let alone adblockers help ward off cookies and help protect your privacy!
- If you really want to go all out, disable java entirely. (or set to always prompt..alternatively use a plugin that controls what loads and what doesn't)
Some other minor things:
- Make sure your Windows Firewall is running. It should be sufficient for the most part in Windows 7...simple to use, and will alert you to programs trying to send data out into the wild.
- Be sure to create a manual Restore Point when you get to a configuration you really like.
- Factory installs are often outdated driver-wise. Head to the manufacturer's website and grab the latest drivers from their support section.
- Happy computing, and best of luck!
posted by samsara at 11:18 PM on May 11, 2011 [18 favorites]
Microsoft Security Essentials paired with Immunet is actually a fairly decent free AV solution. Up until recently I've recommended Avira due to having the highest detection rate, however Microsoft has stepped up the heuristics game in their latest version and it's far less nagging than the free Avira. You can also look into Avast, and AVG which are also decent free AV solutions. I don't believe paying for AV is worth it, and here's why:
You can't rely on AV solutions to be the magic bullet that prevents you from getting malware. On a good day, a very good AV solution will prevent around 30% of new threats based on heuristics alone. Without heuristics, it will block 0% of new threats designed to be undetected. That is coupled with an exponential increase in malware variants in the past few years. In 2010, 1/3 of all malware variants THAT EVER EXISTED were created. So far in 2011, AV companies like Panda are seeing 73k+ new variants DAILY. The reason there has been such a tremendous increase is due to malware developers shifting from "causing havoc" to scamming or stealing you out of your hard earned cash. And like anything...where there's money to be made, the criminals come in droves from all over the world.
So that's where the rest of this reply focuses, malware prevention:
Limited Rights:
The first and most important thing you'll want to do, (after you clean off the stuff you don't want via Add/Remove programs) is to remove your "main" account from the Administrators group. I know that sounds inconvenient, but trust me, it's not bad at all with Windows 7. Here is one way to accomplish this, step by step:
1. Right-click My Computer and select Manage
2. Navigate to the Users and Groups section (under System Tools) and click on Users
3. Right-click on the right hand pane and select New User
4. Give this user a name and password. Set it so that "not expire" is the only check selected
(for example the username "Trusted" and password "trustno1" would work)
5. Click on the members tab and add the Administrators group
6. Log out and log in as your new "Trusted" account. Go back to Users and Groups
7. Click on Groups then double-click Administrators. Remove your "main" account
8. Double-click the Users group. Ensure your "Main" account is there, add it if not.
9. Log off "Trusted" and log back into your "Main" account. You're all set!
From here when you want to install a new device, administer your PC, or run a program that requires elevated rights, you'll get a prompt to enter the password for your "Trusted" account. You should rarely, if at all, need to log out and log in to the "Trusted" profile in order to install something...instead simply install it by typing in its credentials while under limited rights.
By doing this simple initial step...you gain a protection inherent to many other operating systems than Microsoft's, who with Windows adopt more of a "lazy admin by default" paradigm...you've protected yourself immensly against the bulk of rootkits out there...and some of the nastier system-wide trojans. You might still manage to accidently get a profile based trojan, but in most cases you can clear it up by logging in as "Trusted" to address it. (in "good news" terms...no need to wipe/reload..yay!)
(And yes, the UAC is built into Windows 7, but I wouldn't trust it at all...unfortunately it does not prompt for many windows processes...which to Microsoft's benifit avoids nagging. This can be abused by certain types of malware like TDSS/TDL4, etc. The Power Users group has similar vulnerbilities, allowing malicious code to self-escalate..always use the Users group for limited rights)
Patches:
The 2nd most important thing to have besides limited rights is patched software! Most malware programs these days install via web based exploit packs (drive by infections) that take advantage of unpatched 3rd party programs. Running Windows updates only gets you so far, that older copy of Adobe Reader makes your PC as secure as a raw steak in a lions cage. In fact, back in 2009, Adobe Reader alone was seen by AV companies to be responsible for over 80% of all malware infections. The trend is constantly in flux as malware developers always go for the lowest hanging (and most profitable) fruits....often more than 1 at a time.
There's two places to go that make personal patch management a breeze:
- Secunia PSI is an automatic patching service for home PCs. Think of it as "Windows Updates for everything else"
- Ninite is a web based updater that is very easy to use to get the latest versions of software. It lacks active features that PSI has however, such as security assessments and automatic patching. But it's easier to use to get things started.
Site Advisors:
- Web of Trust I cannot recommend enough. Think of it as an "early warning" to malicious sites before actually clicking on them in search results. A simple search for "free screensavers" for example usually returns about 1-2 "safe" sites out of 10. Very very handy plugin. (works for IE, Chrome, Firefox, and Opera)
- Peerblock is a very decent IP filter that will help you control "who" your PC is talking to. Lot's of prebuilt lists as well as ones you can download. This program is a little more on the paranoid end, but is also easy to learn and has an active community supporting it. (at the least, you get to watch tons of advertisment companies lose track of what your doing..)
- Depending on the browser you use, you might want to look into Adblockers to cut down ad exposure. Many advertising affiliates are lazy in checking their content for obfuscated code. Let alone adblockers help ward off cookies and help protect your privacy!
- If you really want to go all out, disable java entirely. (or set to always prompt..alternatively use a plugin that controls what loads and what doesn't)
Some other minor things:
- Make sure your Windows Firewall is running. It should be sufficient for the most part in Windows 7...simple to use, and will alert you to programs trying to send data out into the wild.
- Be sure to create a manual Restore Point when you get to a configuration you really like.
- Factory installs are often outdated driver-wise. Head to the manufacturer's website and grab the latest drivers from their support section.
- Happy computing, and best of luck!
posted by samsara at 11:18 PM on May 11, 2011 [18 favorites]
Best answer: (oh almost forgot, to clean up your start-up...first uninstall what you definitely don't want via Add/Remove programs...*cough Norton cough*. Then click in the searchbox above the start button and type "msconfig" to assist in cleaning up the remaining startup items you don't want. It will save what you disable just in case you find you want to turn it back on later.)
posted by samsara at 11:28 PM on May 11, 2011 [1 favorite]
posted by samsara at 11:28 PM on May 11, 2011 [1 favorite]
Response by poster: Thanks, everyone! Especially samsara. Wow.
posted by quinoa at 8:52 AM on May 12, 2011
posted by quinoa at 8:52 AM on May 12, 2011
Response by poster: Okay, I've started the process! No more Norton, I'm now running MS Security Essentials and Immunet, behind a firewall at home.
As I plow through all these suggestions, I'm wondering...any suggestions to help me figure out which programs I want to remove from my computer, and which I should keep but should stop automatically loading at start-up?
posted by quinoa at 4:49 PM on May 15, 2011
As I plow through all these suggestions, I'm wondering...any suggestions to help me figure out which programs I want to remove from my computer, and which I should keep but should stop automatically loading at start-up?
posted by quinoa at 4:49 PM on May 15, 2011
Response by poster: Online, a number of comments from random websites suggest PCdecrappifier. Does the hive mind have any feedback on that?
posted by quinoa at 5:33 PM on May 15, 2011
posted by quinoa at 5:33 PM on May 15, 2011
PCdecrapifier is a safe program, however it'll give you pretty much the same options that Add/Remove programs will (however it'll do so in an easier batch mode where you can remove more than one at a time).
Mainly you'll want to look at your startup items first and try disabling anything you think you don't need:
- Click start/run and type msconfig
- Click on the startup tab
If you find that everything is working fine after a week or so with the disabled items, then they should be safe to remove as well. Honestly, since the PC is so new and you can more than likely restore any program from the recovery partition, you should feel free to remove anything from the get-go that doesn't sound like something you'd need. I'd only exercise caution on the following:
- Synaptics trackpad software or similar...this adds functionality to your trackpad
- Anything that refers to buttons (the non-keyboard buttons for the laptop that could be useful to keep and configure)
- Any video driver related software (optional, can function without in most cases)
- Any wireless management software (also optional, Windows has built-in capabilities)
- And of course, anything obviously useful
I would just use your best judgement on these. You could get by with removing every single item and still have a working Laptop. But if you start with you startup items first, you have the ability to quickly re-enable them if they were needed to be in memory at login.
posted by samsara at 5:16 AM on May 16, 2011
Mainly you'll want to look at your startup items first and try disabling anything you think you don't need:
- Click start/run and type msconfig
- Click on the startup tab
If you find that everything is working fine after a week or so with the disabled items, then they should be safe to remove as well. Honestly, since the PC is so new and you can more than likely restore any program from the recovery partition, you should feel free to remove anything from the get-go that doesn't sound like something you'd need. I'd only exercise caution on the following:
- Synaptics trackpad software or similar...this adds functionality to your trackpad
- Anything that refers to buttons (the non-keyboard buttons for the laptop that could be useful to keep and configure)
- Any video driver related software (optional, can function without in most cases)
- Any wireless management software (also optional, Windows has built-in capabilities)
- And of course, anything obviously useful
I would just use your best judgement on these. You could get by with removing every single item and still have a working Laptop. But if you start with you startup items first, you have the ability to quickly re-enable them if they were needed to be in memory at login.
posted by samsara at 5:16 AM on May 16, 2011
This thread is closed to new comments.
posted by GuyZero at 9:29 PM on May 11, 2011 [4 favorites]