Advice-New Installation

Advice about setting up a new PC (briefly)

The steps taken here are not meant to be a complete step by step guide.

Computer security is about hurdles

The more hurdles you put into place the harder it is for the bad guys to win.

(Advanced and Optional) Skip reading this step if you are a non-geek.
If there is only one hard drive in system (laptops) then purchase Acronis Disk Director along with True Image to get the Discount. With Disk Director create two approximately equal partitions (generally the D partition will be larger than the C partition). You can re-size the partitions later to adjust to your needs. Your Windows System and Program Files will be installed on the C:\ Drive. Your Documents can be stored on the D:\ drive. The benefit of having 2 partitions is in the event of a severe operating system infection, you can do a clean installation of Windows on the C:\ drive without harming your documents on the D:\ drive. For Desktop PC’s Install a second internal drive to achieve the same benefit. Then Point the default libraries to the new drive. (instructions will be written soon).

Steps

Steps for setting up a brand new PC with Windows 7.

Allow sufficient time to setup your computer

Please do not hook up to the internet and leave a fresh untouched, unsecured computer to the internet. Please do not start surfing the internet until the following steps are complete.

Follow Setup instructions from the manufacturer of the computer. They will walk you through registration, connecting to the internet, etc…
Set computer for automatic updates from Microsoft. When asked for a user name, give an ambiguous name like pcadmin. You will not be using the original created user account on a daily basis. We will create your actual user account later.

Load Anti-Virus Program, update the virus definitions.

Update Windows Manually. Go to the control panel and run Windows Update. (Keep running updater until all have been installed). This usually requires multiple reboots and takes a bit of time depending upon your internet connection speed. Update file sizes are often quite large.

Make sure your user requires a password at login

Create your Rescue Recovery Disks if your manufacturer did not include them (most don’t). Put them in a safe place but much more importantly a place that you will remember. Include any other important documentation about the computer.

Install Firefox, Install Web of Trust Plugin if Your Anti-Virus does not come with search protection.

Create New User Account

Create a new user account as a “Standard User”. Creating a new user is located in the control panel. This will be the account you use everyday. When naming this account use your first name, your nickname, or any other name that pleases you.

Log out from the Administrator account

Login as the new Standard User (any installs will require password of the original user – the administrator)
Login as the Standard User 99% of the time. Outside of a good security program, and keeping the OS and Programs up to date, this is the most important security step you can take.

Create a password for your user account. Located in the control panel.

Install Firefox, Install Web of Trust Plugin if Your Anti-Virus does not come with search protection. Use Firefox as your primary browser!

Install Secunia PSI – Do updates as suggested by Secunia.

Install Acronis True Image

Backup

Attach External Hard Drive. Make Complete Image Backup. Do this once a month. (might even dedicate a second external drive for this task)
Setup Acronis or Syncback to make incremental backups of All Users. That way you will capture backups of important items that fall outside of the typical “My Documents”, “My Pictures” … Folders. Do Not ever overwrite this version of the backup.

Install Programs

Install HijackThis (don’t use it unless asked)

Install Process Explorer

Install AutoRuns

Install Malwarebytes (Run once a week, watch out for false positives. This advice is true of any malware removal tool.)

Install Spybot Search and Destroy (minimal, no Tea-Timer, No bho-helper)

Install Spyware Terminator

Install SuperAntiSpyware

Install Google Chrome Browser

Install the rest of your programs and apply the updates.

Run Secunia PSI and update as needed.

Backup Again

Using Acronis True Image, Attach external hard drive and make another complete image backup. This will now become your PRIMARY LAST RESORT Backup if anything should happen to your system. Do not overwrite this backup. In summary you now have two complete image backups of your complete hard drive including partitions.

Full Image Backup Schedule

For future Acronis True Image backups. Rotate a set of three. Month1 Backup 1, Month 2 Backup 2, Month 3 Backup 3, Month 4 Replace Backup 1, Month 5 Replace Backup 2, Month 6 Replace Backup 6. You get the idea. The reasoning is that if your most recent backup is seriously infected with no hope of repair, then you can revert to the previous full image backup. Should all 3 previous backups be serious infections with no hope of recovery, then there is the Primary Last Resort backup to fall back upon :)

Incremental Backups

You will want an external hard drive attached to your system, or use a thumb drive, or use online backup solutions to take care of backing up the every day stuff like your documents, pictures, music, quicken, outlook, quickbooks, etc.. These backups are much quicker than a full system backup. Can be setup using Acronis True Image or a free favorite utility called Syncback.

Prevent User Error Infections

Be careful of clicking unknown links. Google search them first so your “Web of Trust” or your Anti-Virus Protection Suite can show you if the link is bad.

Do not open attachments from unknown sources.

Adobe Flash, Adobe Reader PDF files, are under many attacks these days and infections may give a hacker the ability to take complete control of your system. Update these programs often. If you are using Secunia PSI then you should have no trouble keeping the system up to date.

I use password managers Keepass and Roboform daily. You might want to give them a look. And while I am talking about passwords. Do you use the same password for everything? Is your password easy for hackers to figure out (Words in the dictionary). Add some complexity to your password make them at least 8 characters long, no words, use some symbols, numbers, uppercase, lowercase. Make it hard. Easy to have a product like Roboform remember them. Remember to backup Roboform and Keepass or you could be locked out in case of lost data.

I like products like WinPatrol, Comodo Firewall. But for most users they never know whether to click yes or no. Guessing wrong can have unintended effects on the operation of your computer. Windows 7 firewall is a vast improvement over the XP version. Your anti-virus application suite may come with a firewall.

Browsers – A point of entry for malware. KEEP THEM PATCHED

Is one browser safer than another? Yes and No. It changes week to week. That is not what you wanted to hear was it? I have 5 browsers installed on my system. I mostly browse with Firefox and keep it updated. It tends to get infected less, but I can’t say it has less vulnerabilities than any other browser from week to week. The bottom line is pay attention to security alerts and keep your browser and plugins updated with the latest security updates.

There are many more steps to keeping a safe computer. This list is by no means comprehensive, but rather a good start for a brand new PC.