Evaluate Weigh the pros and cons of technologies, products and projects you are considering.

Windows Live OneCare 1.5: How does it compare?

Security expert Serdar Yegulalp takes an inside look at Windows Live OneCare 1.5's features and outlines the differences between it and its competitors.

When Vista was still tightly under wraps -- before it was even "Vista" and it was still just "Longhorn" -- Microsoft let word slip that it was working on an integrated system-care solution for Windows. A highly stripped-down version of the same would ship with Vista, and the full version would be available for a yearly subscription fee. The product has since been released as Windows Live OneCare, now at revision 1.5.

Since a large and growing number of system security and maintenance products already exist for Windows, some examination of how OneCare stands up next to its many competitors is probably worth the effort. In this article, I'm going to do exactly that, comparing many of OneCare's features with those offered by competing vendors.

The security and performance basics

Other Windows security tools
  • Harden your file servers with Windows wizard tool

  • Checking access permissions with Server Share Check
  • OneCare comes billed as an "all-in-one security and performance package for your PC," with antivirus, antispyware, antiphishing, firewall, system maintenance and backup/restore functions. Microsoft makes it all available for any three PCs for a fee -- a subscription model comparable to those offered by a number of other companies. Panda Software's Internet Security 2007 product, for instance, is also available for three PCs for one year at a cost but offers a few other functions not explicitly offered in OneCare, such as advanced data theft protection and an antispam engine. Some degree of spam protection does exist in Windows Mail and Outlook 2003/2007, but that requires you use those programs; there's no OneCare antispam protection for third-party mail clients.

    Most, if not all, consumer security products on the market have a free trial version of their products -- usually one that runs from 15 to 30 days and then requires a license purchase to continue running. OneCare's free trial is exceptionally long -- 90 days -- which provides a great deal of time to evaluate the product.

    OneCare's main selling point is that it's highly self-managing; you really only need to bother with it if something goes wrong, and it requires little tuning to work well. On the down side, it's highly monolithic -- it doesn't allow you to selectively use another firewall or antivirus solution in conjunction with it. Finally, it's quite limited compared to other solutions on the market.


    Because it's difficult for an end user to determine just how effective a given antivirus solution is, I turned to testing authorities to find out how effective OneCare is compared to other antivirus solutions. What I found was pretty heartening. ICSA Labs, one of the pre-eminent antivirus evaluation and certification authorities, gave OneCare a certification under the Anti-Virus Cleaning Criteria, version 4.0 -- a criterion that has been awarded to many competing products, like McAfee Inc.'s VirusScan, Symantec Corp.'s Norton AntiVirus 2007 and Trend Micro Inc.'s PC-cillin. In terms of detection and removal, OneCare seems to stack up nicely against the competition.


    You can use free antispyware applications -- including some very good ones, like SpyBot - Search & Destroy. Vista's own Windows Defender also does a fairly decent job. On Vista systems, OneCare replaces Defender entirely -- or, more precisely, it disables Defender and runs several OneCare components in its place, since Defender itself cannot be uninstalled, only disabled. ICSA also has an antispyware certification program, but neither Defender nor OneCare itself are certified in this program (yet), so it's a little difficult to judge how much better OneCare's protection is than its competitors.


    OneCare's antiphishing system consists of little more than the antiphishing system that is built into Internet Explorer 7. While it's quite well-designed and traps phishing sites very consistently, that's about the limit of what it's intended to do. Other products (McAfee; PC-cillin) go further by attempting to block the sending of personal information to unauthorized parties. To be scrupulously fair, though, that's a feature that needs to be configured by the user to be effective. Microsoft's approach is just to warn the user pre-emptively about any site that may be suspicious, whether or not any data is submitted.


    OneCare doesn't replace the existing Windows Firewall but wraps it in a new interface. If you go to the Windows Firewall entry in Control Panel, you'll find that it now sports a warning: "For your security, some settings are controlled by Group Policy."

    Third-party security tools
  • Learning Center: Non-MS security tools

  • Windows security toolbox: Our experts' favorite freeware
  • The firewall interface in OneCare has been simplified a bit from the standard Windows Firewall to encompass some common tasks -- mainly setting up things like printer sharing or connections to an Xbox 360. But in terms of core functionality, it's not much more sophisticated than Windows Firewall is now, so if users are looking for something more than what they already have, they may be disappointed. Some features found in third-party firewall products, like ZoneAlarm, are also available as features in Vista, but they are not available in OneCare per se (for instance, the ability to moderate user access to the Internet).

    System maintenance

    The system maintenance functions in OneCare are essentially a repackaging of a number of other functions within the program and throughout Windows: cleaning up unwanted files, defragmenting the hard disk, performing a system scan, looking for files that need to be backed up and checking for any high-priority security updates. In short, it's less of a discrete system maintenance tool than it is a way to do most of the things OneCare offers in one swoop.


    Windows XP's backup tool, NTBACKUP, is difficult for a non-technical user to work with, and Windows Vista has no native backup tool unless you elect to install Vista Ultimate. It is possible to now download the legacy NTBACKUP tool and use it in Vista or XP if you don't already have a backup tool, but that may not be the best solution for everyone.

    OneCare gives the user a backup and restore tool that can save and restore common user files, in addition to arbitrarily-specified files or directories. The backup application also detects new and changed files and backs them up incrementally as needed. Plus, its user interface is less cryptic than NTBACKUP. No full-system backup is possible, however; that's a feature that would require a third-party program or Vista Ultimate's backup tool. (One third-party program I've used with great success to perform full-system backup and restore is the freeware/shareware tool Image for DOS, despite its relative lack of flexibility.)


    Most of the price tag for OneCare seems to go toward antivirus protection, and since it covers up to three computers for one year, that makes it a reasonably good choice if a beginner or less demanding user doesn't need more than basic integrated protection. But the other features of the program are little more than wrappers or extensions for existing functions, so advanced users may have a harder time justifying OneCare's price tag if they need more than the basics.

    About the author:Serdar Yegulalp is editor of the Windows Power Users Newsletter. Check it out for the latest advice and musings on the world of Windows network administrators -- and please share your thoughts as well!

    Dig Deeper on Windows legacy operating systems

    Start the conversation

    Send me notifications when other members comment.

    Please create a username to comment.