Settings for Comodo Internet Security

I installed CIS, as recommended here, following an issue with my husband's computer getting a virus.

So far it's been fine, but yesterday I managed to get something on my system from a website that appeared to be trustworthy (I have a thread in the Malware section at the moment waiting for logs to be checked).

I disabled CIS while running all the scans, but I wondered whether there are any recommendations on the best settings for the AV, Firewall and Defense+ in order to prevent further attacks. Currently they are on Stateful, Safe Mode, Safe Mode, respectively.

Luckily I run Windows 7 in a restricted access mode, but I've put that up to maximum level now. I just want to be sure to make this less likely in future. It's most inconvenient to have to spend all day cleaning up after these morons.

 

Apologies for posting again, but I have another issue and just want to get this all sorted and be fully protected.

I still have Malwarebytes Anti-Malware installed from when I did the scans a couple of days ago. Last night I looked at a friend's blog (a Blogger site that I've looked at hundreds of times over the past few years) and from the system tray a MAM pop-up warning appeared telling me that it had blocked a suspicious website and gave an IP address and a port number. The blog still loaded, so I am wondering what actually happened and whether I should be concerned about this.

I'm using Firefox 5.0.1.

 

Thanks. I'll leave the default settings on CIS then.

I am usually quite careful what I click on, but this was a valid looking website posted by someone in one of my groups on LinkedIn - presuming it was a fellow photographer. I can't remember what thread it was now, but it was either someone pretending to be a valid member, or that person has had their website hijacked.

I wondered about that with my friend's blog. He has lots of add-ons, but I suppose it could be a false positive.

Another worrying aspect is that I received an email from Facebook this morning saying that my account has been locked due to suspicious log-on from a device I don't normally log on with. I have been doing certain things normally while waiting for my logs to be assessed (which they now have and I will be following the further instructions shortly), so I am now looking into where I might have logged into over the past couple of days and changing my passwords (on a different computer, obviously). The supicious log-in was on a mobile device on the east coast USA, definitely not me, being in the UK!