Most IT problems don't happen suddenly. A laptop that dies takes weeks to deteriorate — running hotter, getting slower, throwing occasional errors — before it finally fails. A hacked account was usually exposed long before the breach was noticed. A failed backup was silently not running for months before anyone needed it.
Maintenance is the habit of catching those warning signs before they become crises. It takes about 30–60 minutes a month. It saves hours, days, and sometimes thousands of cedis in recovery costs. This checklist covers everything — from your physical devices to your security posture — organised by category so you can work through it section by section.
Make It Interactive
Click any checklist item below to mark it complete. Your progress is tracked in the bar at the top of the checklist. Print or screenshot when done as a record of your monthly maintenance run.
Why Maintenance Beats Repair Every Time
The cost argument for maintenance is straightforward. Compare what routine upkeep costs versus what emergency recovery costs when you skip it:
| What You Skip |
Cost of Neglect |
Cost of Maintenance |
| Windows updates |
Ransomware infection — GH₵ 5,000–50,000+ in recovery |
10 minutes, automatic |
| Antivirus scan |
Keylogger steals banking credentials — account drained |
5 minutes, automated scan |
| Dust cleaning |
Overheating kills motherboard — GH₵ 1,500–6,000 repair |
15 minutes with compressed air |
| Backup verification |
Hard drive fails — 3 years of data gone permanently |
5 minutes to confirm last backup ran |
| Password audit |
Compromised account exposes customer data — regulatory risk |
20 minutes quarterly review |
| Disk cleanup |
Full disk causes system crashes and data corruption |
10 minutes with built-in tools |
How to Use This Checklist
Each item is tagged with a frequency — Monthly, Quarterly, or Annually — and a priority level: Critical (do not skip), Important (skip at your own risk), or Routine (good practice). Click any item to mark it done. The progress bar tracks your completion through each section.
For businesses, assign this checklist to a named owner — your IT officer, office manager, or your managed IT provider. A checklist with no owner is just a document that gets ignored.
// CHECKLIST::PROGRESS
0 / 35 completed
Section 1 — Devices & Hardware
Physical hardware is the foundation of everything else. Heat, dust, and wear are the silent killers of laptops, desktops, and servers — and they're entirely preventable with a little attention each month.
Check all devices for unusual heat or fan noise
Excessive heat is the first warning sign of dust buildup or failing cooling. A laptop that's hot to touch on the bottom is running too warm.
Important · Monthly
Clean keyboard, screen, and external surfaces
Use a microfibre cloth and appropriate screen cleaner. Dust and oils degrade screens and keyboards over time and introduce grime into vents.
Routine · Monthly
Check all cables and power adapters for damage
Frayed power cables are a fire risk. Loose connections cause data corruption on external drives. Replace any damaged cables immediately.
Critical · Monthly
Test UPS and surge protectors
Press the test button on your UPS to confirm the battery holds a charge. A UPS with a dead battery provides zero protection during a power cut.
Critical · Monthly
Clean vents with compressed air (desktops and laptops)
Do this in a well-ventilated area. Blow dust out of all vents. For laptops, quarterly is usually sufficient; for desktops in dusty offices, monthly is better.
Important · Quarterly
Check disk health with built-in diagnostics
Windows: search "Defragment and Optimise Drives" to check disk status. Use CrystalDiskInfo for SMART health data. On Mac: Disk Utility → First Aid. Failing disks almost always show warnings before they die.
Important · Quarterly
Audit devices in use vs devices registered
For businesses: confirm every device accessing your network or systems is accounted for and authorised. Unregistered devices are a security risk.
Important · Quarterly
Section 2 — Security
Security maintenance is the category most businesses do least consistently — and it's the one where skipping a step can be catastrophic. These checks take less than 30 minutes combined but close the gaps that attackers exploit most.
Run a full antivirus / antimalware scan
Don't rely on real-time protection alone. Run a scheduled full scan monthly. Free options: Windows Defender (built-in), Malwarebytes Free. Review and act on any detections immediately.
Critical · Monthly
Check for accounts with weak or reused passwords
Use a password manager (Bitwarden, 1Password) to identify reused passwords. Prioritise email, banking, cloud storage, and admin accounts. Change any reused passwords immediately.
Critical · Monthly
Review active user accounts — remove ex-staff access
Former employees whose accounts remain active are one of the most common sources of unauthorised access. Disable or delete accounts for anyone who has left within 24 hours of their departure.
Critical · Monthly
Check MFA is enabled on all critical accounts
Verify MFA is active on email, cloud platforms, banking, and any admin dashboards. New accounts are sometimes created without MFA being enforced — check them specifically.
Critical · Monthly
Check HaveIBeenPwned for compromised email addresses
Visit haveibeenpwned.com and check your business email addresses. If any are listed in a breach, change that password immediately and check for suspicious login activity.
Important · Monthly
Review firewall and router access logs
Log in to your router admin panel and check connected devices and recent login attempts. Unknown devices on your network or repeated failed login attempts are red flags.
Important · Monthly
Review app permissions on mobile devices
Check which apps have access to your location, camera, microphone, and contacts. Revoke permissions for apps that don't genuinely need them. This is a quarterly task but worth doing after installing new apps.
Important · Quarterly
Section 3 — Software & Updates
Outdated software is the single most exploited attack vector in cyberattacks. Most vulnerabilities that ransomware and malware exploit have already been patched — the victims just hadn't installed the patch yet. Updates are not optional maintenance, they're the primary security layer for your entire system.
Install all pending Windows / macOS / Linux updates
Don't defer security updates. Windows: Settings → Windows Update. macOS: System Settings → General → Software Update. Schedule restarts outside business hours.
Critical · Monthly
Update all installed applications
Check browsers (Chrome, Firefox, Edge), office suites, antivirus, and any business software. Browsers are a primary attack surface — always keep them current.
Critical · Monthly
Update router and network device firmware
Log in to your router admin panel and check for firmware updates. Router vulnerabilities are commonly exploited to intercept traffic or gain network access. Most routers don't auto-update.
Critical · Monthly
Run disk cleanup and remove temporary files
Windows: search "Disk Cleanup" → select C: drive → check all boxes including System Files. Free up space before it becomes critical. Aim to keep at least 15% of your drive free at all times.
Important · Monthly
Uninstall software that is no longer needed
Every unused program is a potential attack surface and a resource drain. Audit installed software quarterly and remove anything your team no longer uses. Also cancel unused software subscriptions.
Routine · Quarterly
Restart all servers and workstations (if not done automatically)
Systems that run continuously without restarts accumulate memory leaks and pending patch installations. A scheduled monthly restart clears both. Don't skip this for servers that "seem fine".
Important · Monthly
Section 4 — Backups & Storage
A backup you haven't verified is not a backup — it's a hope. This section takes 10 minutes and is the most important 10 minutes in your maintenance routine.
Verify the last backup completed successfully
Check your backup software logs or dashboard. Confirm the last backup completed without errors, covered all expected folders, and the backup file size is reasonable (not suspiciously small).
Critical · Monthly
Check available storage on backup destinations
A backup destination that runs out of space silently stops backing up. Check both local backup drives and cloud storage usage. Alert threshold: act when you're at 80% full.
Critical · Monthly
Confirm offsite or cloud backup is current
Log in to your cloud backup service and confirm the last sync date and what was synced. If only a local backup exists with no offsite copy, a fire or flood means total loss.
Critical · Monthly
Delete old temporary files and downloads folder
The Downloads folder on most computers accumulates gigabytes of installers and files that are never needed again. Clear it monthly. Move anything important to a proper folder first.
Routine · Monthly
Do a test restore from backup
Restore a sample of files from your most recent backup to confirm they open correctly and haven't been corrupted. You don't need to do a full system restore every time — pick 5–10 critical files and verify them.
Critical · Quarterly
Section 5 — Network & Connectivity
Your network is the plumbing of your business — everything depends on it, and problems are often invisible until they become severe. These checks take 15 minutes and catch the most common issues before they cause real disruption.
Run a speed test and compare to your contracted speed
Use fast.com or speedtest.net. If your speeds are consistently below 70% of your contracted rate, contact your ISP. Gradual speed degradation often goes unnoticed without measurement.
Routine · Monthly
Restart router and network switches
Routers accumulate memory issues over time. A monthly restart clears temporary errors, applies any pending firmware, and refreshes connections. Schedule it for a low-traffic period.
Important · Monthly
Check all connected devices in router admin panel
Log in to your router and review the list of connected devices. Any unknown device on your network is a security concern. Cross-reference against your device inventory.
Important · Monthly
Test WiFi coverage in all areas of the office
Walk to different parts of your office and check signal strength. Dead zones cause staff to use mobile data or workarounds — address them with access points or mesh nodes rather than accepting them.
Routine · Quarterly
Verify guest WiFi is separate from staff network
Visitors, clients, and customers should never share a network with your business systems. If you only have one WiFi network, set up a guest SSID — most routers support this natively.
Important · Quarterly
Check physical network cables for damage or loose connections
Ethernet cables that are bent, pinched, or have loose connectors cause intermittent connectivity problems that are notoriously hard to diagnose. A visual check catches most issues before they cause problems.
Routine · Quarterly
Want Someone to Run This For You?
GreyFixTech offers managed IT services that include monthly maintenance runs across all five categories — devices, security, software, backups, and network — with a written report after each session. Get in touch to find out more →
Full Maintenance Schedule at a Glance
Here's a summary of how each task maps to a maintenance frequency — useful for scheduling recurring calendar reminders or briefing a team member who owns this process.
- Check backup completed
- Review antivirus alerts
- Install critical security patches
- Full antivirus scan
- All OS & app updates
- Review user accounts
- Run disk cleanup
- Restart router & servers
- Verify backup logs
- Check cloud backup
- Test UPS battery
- Clear downloads folder
- Test backup restore
- Clean vents & fans
- Check disk health
- Uninstall unused apps
- Audit device inventory
- Review app permissions
- Check WiFi coverage
- Verify guest network
- Audit passwords
- Full DR plan test
- Security policy review
- Hardware replacement audit
- Staff security training
Set Calendar Reminders Now
The best time to schedule your monthly maintenance run is the first Monday of each month. Block 60 minutes, assign it to one person, and treat it like any other business appointment — because the cost of missing it is real, even if it's not immediately visible.
