To protect your Windows 10 PC from hackers, try the following: Create a local user account as your administrator account. Many Windows 10 users make the mistake of using the Administrator account as their daily user account, which makes your PC more vulnerable if your user account is hacked.
One of the advantages of Linux PCs is that users do not have “always active” administrator accounts by default. Instead, authorized users increase their rights to act as an administrator for a short period of time. It is a good system that can thwart attackers and make the PC more secure.
Technically, we have the same situation on Windows 1
The UAC is a bit more robust than that description suggests. Nevertheless, we can improve the situation by removing administrator rights from our daily account. We then create a separate local user account to act as an administrator. You can still authorize almost all the actions you now take from your daily account, but you will have to enter a separate password each time instead of clicking Yes or with your current account password.
The argument for doing this is quite simple. If malicious software ever got onto your PC or if it was hacked remotely, there is the option to bypass the UAC and use the elevated permissions of your account. By acting as an administrator, an attacker could install more malicious software, run an elevated command-line tool, delete user accounts, and more.
Restricting administrative rights to an individual account limits these threats, but does not remove them completely. For example, a keylogger installed on your system can easily find out your administrator password and a UAC popup can trick you into doing something you didn’t intend to do. Still, removing admin rights adds a little more security than leaving them intact on your day-to-day account.
Windows 10 comes with a built-in administrator account that we could activate, but we’re not going to do that. Most experts caution against using the built-in administrator account, as it has free rein on your PC in a way that other account types don’t. For that reason, we leave the built-in account alone.
Create a special administrator
The first thing we need is a new local account, which we will call ‘Admin’. We cannot call it an administrator because that name is reserved for the hidden administrator account on the PC. We are also not going to use a regular Windows 10 account connected to an Outlook or Hotmail address as that increases the chances of hacking. Moreover, there is no good reason to connect it to the cloud like a regular account.
Open the Settings app in Windows 10 by tapping the Windows key + IThen go to Accounts> Family and other users, and under “Other users” click Add someone else to this PCA new window will open asking for the new user’s email address. We don’t want this, so click on the link below I don’t have the login details for this person
Microsoft is nothing but stipulated, so another window will pop up offering to create a Microsoft account. We must insist on going local by clicking Add a user without a Microsoft account
Now we are cooking. In the next window under ‘Who will be using this PC?’ enter the name “Admin” or whatever you want. Then choose a password and enter it a second time to confirm. You will also need to answer several security questions so that you can access this account if you forget the password. Once that’s done, click The next
Now we have a new account called “Admin”, which you can see under the “Other Users” section in the primary settings window (see image). However, this is currently a regular account. To give it administrator rights, select the account and when it is highlighted, select Change the account type
Another window will appear. In this, click the drop-down list under “Account Type” and select Administratorthen click OK
Now that we’ve given our new account elevated permissions, it’s time to switch accounts so we can make sure the local account is working.
Log in to the new administrator account and then try to do something that requires administrator permission, such as installing a program such as a web browser such as Chrome, Firefox, or Opera.
If you have installed the program in the Admin account by clicking Yes In a UAC dialog, the account is ready and it’s time to remove the super powers from our daily account manager.
To do that, log out of the administrator account, as we only want to log into this account when needed. Now log back into your daily account and tap the Windows key + R.In the Run dialog box that appears, type
netplwiz and click OK
This brings up the User Accounts window. Select your account under “Username” (it uses your Microsoft account email address) and select Properties
Another window will appear. Select it here Group membership tab and then the Standard user radio button (shown). Touch OK to close that window OK again to close the original User Accounts window.
The operating system requires you to log out of the account for the changes to take effect. You now have a regular user account and all the power lies with the newly created Admin account.
For the most part, when you want to do something that requires administrator rights, you just need to enter the administrator account password in your daily account. However, there will be times when you will need to log into the administrator account to perform advanced actions such as using the Disk Management utility. Those cases are quite rare, but that’s a downside to this system.
Finally, make sure to put the password of the new administrator account somewhere so you don’t forget it. In fact, using a password manager would be an excellent way to make sure you never lose it.