1.You need to enable and update your Operating system first, because critical security patches are released by Micrososft which fill up the vulnerable holes which can be exploited by malware/hackers.
Keeping the OS and software updated is basic for security.
2.You are either running local or admin account? and you need UAC (user account control) prompts enabled at least with default levels, so that nothing is executed on your system without permission. Right now everything is leveraged to full access which can be dangerous( I am assuming it is an admin account).
One of the best practices is to set an admin account with a strong password and then use a local account( which has lesser rights) for your everyday work. Even if the system is compromised, you can use admin account to restore most of it.
3.Antivirus and other security : Please use the updated version of AVG 2016 for now, as I've said keeping the software updated is necessary. Also consider
adding other layers of protection like an anti-malware(Malwarebytes,Zemana) and anti-exploit(Malwarebytes anti -exploit, HitmanPro.Alert). You can have a
look at the security configs in the forum marked as secure for a general idea.
4.On demand scanners :
These can help you confirm if your system is clean or not, whether something got through the defenses.These do not have to have real time protection, most of the free versions will do.(Zemana, HitmanPro, EEK, Norton PowerEraser, etc.) A regular scan ethic is recommended.
5.Browsers and add-ons: Again keeping your browser up-to-date can prevent some serious exploits. Also consider adding an
adblocker like ublock-origin(extension) or adguard(system-wide) so you are protected from unwanted content and tracking.
Site advisor add-ons like bitdefender-trafficlight or WOT can be useful(most security suites have their own safe search too).
Https-everywhere to ensure you have a safe encrypted connection and maybe
Noscript addon for dealing with in-browser malicious scripts/attacks.
6.Password manager is absolutely required for
managing and keeping the passwords safe. You may try LastPass, Roboform, or KeePass. Do not rely on browser password manager much.
7.Backups:
Backups are the backbone of any secure config. If anything goes wrong(failed software installations,BSOD, malware infection,data corruption) you can easily restore your system to a previous working state with a good external/online backup. Consider free versions of Aomei Backupper, Macrium reflect. If it is too much for you, at least consider making backup copies of your valuable documents.
8.System tuning : Advanced users can clean up the junk by using built-in windows tools only. However, free version of
Ccleaner,Privazer are enough for most.
9.Stay safe,
have good browsing habits,avoid shady or suspicious websites and links/email attachments.
10.The others have contributed their generous time to advise and
help you keep safe,so follow their opinion and if anything goes wrong community is here to help.
