ok doing computer repairs i dont feel comfortable connecting the same computers im repairing to the same router i have my main system on just some ideas on your setups would be nice

You can have them on a separate subnet.

I will never plug a patch cable into an infected box until it is clean.

We have several networks here in the shop (two bonded T1's on one provider, a 768k covad sdsl and business FIOS 20mup.5mdown with wireless) and we put customers PC's on any of the nets as soon as we think their box is basically stable.

I mean, if you are afraid of it attacking other boxes in your net, you get that inbound from anything out there in the ether anyway. If you are worried about the customer box spewing spam or using your net for bot/zombie work then you have to just watch the machine.

But if you done the usual malware,adware,spyware,virus cleanups then you killed 90% of the crap you might see go outbound from your net and the rest is just keeping an eye on the traffic out from the machine. So we put them on the net to suck updates and do tests.

If your considering being secure. Most security professionals go by the "paranoid" approach. Viruses as we all know propegate through the network. Zero-Day viruses are no match for any Anti-Virus. Given said that, it is a good idea to have a locally installed firewall on all machines, always.

However like mentioned before, use a different subnet, or don't even put it on the network until it's clean.