When you get a brand new comp what are the first things you do to keep it secure running well?

Discussion in 'other software & services' started by Brosephine, Jan 24, 2016.

  1. MisterB

    MisterB Registered Member

    Joined:
    May 31, 2013
    Posts:
    1,267
    Location:
    Southern Rocky Mountains USA
    Emet is a good addition that is free and will cover anti exploit pretty well. Windows 10 pro also includes applocker which will add an anti executable. My applocker configuration is pretty basic, allow execution of .exes and scripts in the "program files" and "Windows" directory and deny execution in the "user" folder and subfolders plus the "Windows/temp" folder to non administrators. For an anti virus, I see no reason to use anything other than Windows Defender unless you want to add additional features like hips.
     
  2. Infected

    Infected Registered Member

    Joined:
    Feb 9, 2015
    Posts:
    1,134
    Never seen this, might check it out later. :thumb:
     
  3. JRViejo

    JRViejo Super Moderator

    Joined:
    Jul 9, 2008
    Posts:
    97,426
    Location:
    U.S.A.
    Infected, it has been around for a long time.

    Edit: URLVoid shows domain first registered almost 10 years ago!
     
  4. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    4,867
    Location:
    Outer space
    One thing hasn't been mentioned before, and it's actually the very first thing I do.
    Wipe the hard drive and do a clean install!
    (I do advise to make a backup first in case you have issues and can't find the proper firmware/drivers from the manufacturer.)
    Apart from the fact that after removing all the preinstalled software there are still traces that aren't removed properly, there may also be more dangerous unwanted software installed such as Superfish, compromised Root CA or the Rootkit like thing from Lenovo recently. There have also been cases of software from the manufacturer used for updating or support(such as Dell) that doesn't even use SSL/TLS or allows remote code execution.
    Then there are also incidental cases of new devices or storage media coming with malware straight from the manufacturer.

    You'll probably need to install drivers and such from the manufacturer to get all hardware working properly and depending on what hardware is used you might need to download them through a second machine if separate drivers are needed for WiFi/Ethernet adapters.
     
  5. act8192

    act8192 Registered Member

    Joined:
    Nov 9, 2006
    Posts:
    1,789
    It does? Where do you see it?
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.