SpyBot and Avira is probably the best free combination for a decent protection, and of course using FF as a browser and some healthy common sense - and you'll probably be 99.99% secure...
(I myself bought and running Kaspersky Internet Security on Win7, using IE8 and was never let down by this combination)
I actually agree with you on this one but the problem is people simply cannot run Ubuntu as they are experianced XP users etc and probably would not know where to start but what about installing Virtual pc ? then installing Ubuntu?
Do you really consider a guy who runs Windows XP without an antivirus and a firewall as "experienced" ?
seriously...
Just install Linux Mint if you're afraid of what Linux looks like. It looks like a Windows but it's a modified Ubuntu.
