I agree with malwarebytes and spybot to a large extent.So, what would you recommend as the minimum and optimum for 2013? Regards
For the minimum level of security, I feel pretty good about the default packages that come with Windows 8 now, so keeping your system and any third-party applications up to date isn't too bad. Yes, Windows Defender has some of the lowest detection rates of any virus scanner according to third-party testing, but it is there by default and very efficient. Coupled with common-sense practices, and provided the system isn't being used as a server, that is adequate for most users and very efficient.
There really is no 'optimum' level of security as far as I'm concerned, because optimally it would be perfect and you wouldn't have to worry about anything - and no solution is. There are always tradeoffs between security and efficiency/convenience, too. It's all about how you use the system and what you want to accomplish.
Running a third-party scanner every now and then with something like MalwareBytes is desirable, but it's also not something that mom or grandma is going to do. Ideally, if you are worried about security or in a higher-risk environment like a business, you will want to upgrade your real-time protection to something with better detection rates. Nowadays, you will likely be getting other features to go along with that like dynamic link checking, a third-party firewall, and so on.
If you are looking at only free options for a more secure environment:
1. Real-time antivirus: Avira or AVG (Avira is usually ranked the highest of these), can still use an ad-hoc scanner like MalwareBytes to complement your A/V. The best detection rates come from things like Kaspersky or Bitdefender, which are not free (and there is always the possibility of a program that will conflict and cause problems).
2. Firewall: Comodo, ZoneAlarm, or Online Armor Free (Comodo is usually ranked the highest here).
3. Dynamic link checking: For firefox, something like WOT or Webutation (WOT is usually ranked higher). I don't personally use this because I find it annoying, but some people really like it.
4. Ad blocking/JS-blocking: This can prevent a lot of vulnerabilities on websites today. Adding the NoScript plugin for FireFox and disabling a bunch of ad/malware sites via your hosts file with something like HostsMan can help add another layer of protection as well (be sure to disable your DNS Client service if you do this, or else browsing will be slow on system startup).
5. Use BitLocker or TrueCrypt to encrypt your hard disk (this is more important for business laptops).
6. Use something like KeePass if you have a lot of crazy passwords you have to remember.
A lot of the times, the best security won't actually come from security programs, but will be user behavior and system usage habits... so I will add the following:
7. If you are paranoid, don't use Flash, don't use Adobe Acrobat, and don't use Java. I would personally add Silverlight to the list of programs to avoid as well, which means no Netflix, which could be a big sacrifice to some. These programs remain very common targets for exploits.
8. Keep your system and all third-party applications up to date. There seems like there will always be 'another' vulnerability in the future, so you'll need to keep patching them.
9. For the ultra-paranoid, use a Virtual Machine for all of your online activities that you can quickly trash and restore. This will usually keep your system from being infected even if the VM itself becomes infected with something. Obviously running games on a VM is not ideal though, so that's a huge sacrifice for some.
I've not heard of QFX or Disconnect, so I'll have to check those out before I can comment on them.
I hope these tips may help. Keep in mind that there is no 'magic bullet' or perfectly secure environment, though. You know what they say... 'peace and security' and then sudden destruction comes.