I work as a Server Administrator / IT Technician / IT Consultant. I mainly admin linux servers but also support windows servers and networks. Over the past 6 months I have seen an increase of malware infected windows systems and decided to write a mini tweaks page (similar to my windows 7 tweaks page I wrote in 2009).
The first thing is when installing Windows 8.1 make sure you select your privacy options correctly (read this post for more detail).
Run these scripts in Command Prompt as Administrator. Press START+X on keyboard and click Command Prompt as Administrator.
powercfg.exe /hibernate off
This command needs to be run in Windows PowerShell as Administrator.
Get-AppxPackage -AllUsers | Remove-AppxPackage
Personally, I don’t use the start menu for anything in windows (I use WIN+S as a launcher).
One thing that is annoying is the way apps/tiles on the start menu connect to the internet, pulling in un-needed data (also sending location data if you have it enabled for weather updates). I always run this script to cleanup the menu as it clears some resources and also stops random network usage.
winsat formal -v
This will test the system and set specific options within the registry to tweak things like prefetch depending on whether you have a SSD etc. There is a bug with windows 8.1 update where prefetch seems to be enabled on SSDs causing problems but this command should also fix that.
I wrote a script on my old website from 2009 for windows 7 to tweak network interfaces in an attempt to improve latency. The script sets TcpAckFrequency and TCPNoDelay in the registry for all network adapters. You can download the script from my github. Once downloaded, right click the file and click run as administrator. Then reboot to apply the changes.
RAMDisks are very useful for speeding things up (they are used more in linux). Using RAMDisks for temporary storage is best as they are a volatile medium and should not be relied on for important data.
I personally use a [RAMDisk for cache in google chrome](https://equk.co.uk/2013/05/05/using-a-ramdisk-in-windows-for-browser-cache/). **Note:** *Do not use amd radeonmemory ramdisk as there is no option to not save the disk on shutdown.*
I use various security products for windows but am not going to go into too much detail here as it’s really down to personal preference.
I’m not going to tell people which antivirus product to use but it might be worth looking at av-test.org to get a comparison. At the time of writing this article, Microsoft Windows Defender (the antivirus which comes with Windows 8.1) scored 0/6 for protection, missing 33% of 0-day threats in September 2014.
Being honest, most people have malware through installing questionable software or using peer-to-peer networks.
I personally change the default search engine on all browsers to DuckDuckGo
Google Chrome Extensions
Disconnect Tampermonkey HTTPS Everywhere Adblock Pro
(optional) Vanilla Cookie Manager
Disconnect Greasemonkey HTTPS Everywhere (available from EFF.org) Adblock Edge
Internet Explorer 11
Install Tracking Protection
Go to tools > internet options > programs(tab) > Manage add-ons > Tracking Protection > Get a Tracking Protection List online …
Disable the annoying default start page (seems aimed at 13yr old girls)
these are more specific but might be of use
My article regarding this: Using DNSCrypt WITHOUT OpenDNS
Reasons to drop opendns:
everything is logged
opendns control, change & block (without you knowing) opendns guide possible security issues with dns hijacking way of providing transparent CDN for google services (see image below)
Microsoft included flashplayer as part of the OS and gave you no uninstall option.
Also google chrome has pepper flash so you don’t have to install flash or its updater.
This is optional but recommended if you have a SSD
Indexing the contents of files doesn’t seem like a feature that would be very beneficial. It also uses a lot of resources.
If you have any suggestions, additions, questions or comments please leave a comment using disquss.