A baseline set of software and services for a home or professional Windows computer

This is a first installment on a post I've been writing (on and off, with lots of distractions) for the last month or two.  I started walking a friend through a list of security concerns and recommendations for their Windows computer, but soon found the subject complex enough that I needed to write it all down.  Later, as I started to document it all, I realized that others would benefit from it too.  Then it ballooned into a much larger task than I could have imagined, so it's still not ready.

So here is the Coles Notes version.  I'll finish the full write-up as soon as I find the time.

Area	Setting, Software, or Service
Router	WPA2 Personal/PSK, AES
Computer	TPM, ideally
Windows OS	Windows 10 Pro or Windows 10 Home Regular updates
Full disk encryption	BitLocker -- ideally using TPM-and-PIN mode or Device Encryption
Firewall	Windows Defender
Antivirus	AVG Free or Avast Free
Antimalware	VoodooShield Free
Browser privacy - Chrome	HTTPS Everywhere uBlock Origin
Internet usage monitoring	GlassWire
VPN	TunnelBear
Password manager	LastPass Premium
Authenticator for 2FA	Authy
Container encryption	VeraCrypt -- needed if your computer drive isn't encrypted
Drive free space wiping	CCleaner -- needed if your computer drive isn't encrypted
Cloud sync/storage - zero knowledge	Sync.com or Boxcryptor 2.0
Cloud sync/storage - regular	Dropbox, OneDrive, Google Drive, Apple iCloud, etc.,
Cloud backup	CrashPlan BackBlaze (Added 2020-11-15) Sync.com (Added 2020-11-15)
Local backup	CrashPlan SyncBackSE --  to a drive encrypted with FDE (e.g., BitLocker To Go) N.B. SyncBackFree won't give you the critical Versioning feature; for that you need SyncBackSE (Added 2020-11-15) Apple Time Machine (Added 2020-11-15)
Image backup	Windows system image backup
Drive cleanup	CCleaner
Update monitoring	Secunia PSI
Credentials monitoring	haveibeenpwned.com
Mobile security	Device encryption Regular updates
Mobile local storage	Documents by Readdle

. o O o .