@k2x4b524[: I pretty much agree with everything you said but I'd just like to point out that there is no such thing as "good antimalware".
Yes, I know this is going to sound very controversial but I consider all kinds of antimalware to be a complete waste of time and resources. In fact I'll even go as far as saying it's one of the biggest scams in the history of computing. All they do is give you a false sense of security while actually creating more problems than they solve. Note that I define "antimalware" as any software that does some kind of pattern matching in an attempt to identify malware (ie antivirus software). Just saying this to make it perfectly clear what I'm talking about. I don't include firewall software in this definition (firewalls are a good thing and should be used in the router as well as on each individual machine) unless they too do pattern matching, which incidentally
some routers actually do and like all AV solutions fail so hard it's not even funny.
To keep a system reasonably* secure you need only do a few things (listed in order of importance);
Keep the software you use updated.
Not because the newer versions are inherently more secure (because they aren't) but because the new security holes aren't widely known yet.**
Disable or uninstall software/services you don't need.
Do you really need support for Javascript in your PDF-reader software? The answer is you don't. At all. Never ever.
Some people perceive Java as a must-have. I don't know if this has ever been true but it's definitely not true now. Uninstall it unless you know you need it. At the very least disable it in your browser (you might be surprised to see how few sites actually need Java). In any case, no site is worth the risk of having that steaming pile of shit enabled in your browser. Yes, I'm using strong words but it's definitely called for, trust me.
Use common sense.
Which surprisingly isn't so common in my experience. This means among many other things that you should take care to download software only from official sites. It also means realizing that very few things on the Internet is actually for free and understanding that you're almost always paying for stuff one way or the other.
Use a firewall.
As stated earlier. Preferably a hardware solution (like a router).
Use services like www.virustotal.com
For any file that seem suspicious. The only good use of AV software in my opinion. Another approach is to run suspicious files in a virtual machine where you can roll back the system after testing.
Know your system.
And know it well.*** This will allow you to easily clean your system manually when you eventually get infected (and you
will get infected sooner or later). If you think cleaning your system manually sounds like a chore then understand that you will spend more time on your beloved AV program (and its related problems) then you ever will on cleaning your system manually. You will also do a far better job than some half-assed automated removal done by an AV solution. In fact, if you don't use an AV program you will most likely be able to remove every trace of infection whereas it is often impossible to remove everything when an AV program has done its thing.
My 2c on security based on my experiences. Most of what I've said should be obvious for people on here.
* Perfect security is simply not possible.
** A service I'd like to see and pay for would be a client that would identify all executable binaries on my systems and check them against a database on the Internet for known vulnerabilities. Maybe something like this already exists?
*** This is for expert users obviously and I don't actually expect everyone to be able to clean their systems manually.