Registry Archives

Winsage

February 28, 2026

Microsoft testing Windows 11 batch file security improvements

Microsoft has released new Windows 11 Insider Preview builds that enhance security and performance for batch files and CMD scripts. IT administrators can now activate a secure processing mode by adding the LockBatchFilesInUse registry value, which prevents modifications to batch files while they are running. This update also requires signature validation only once per batch file, improving performance. Additionally, the Shared Audio feature has been refined, allowing users to share audio across multiple devices with individual volume sliders and a new taskbar indicator. The feature now supports more Bluetooth LE Audio accessories, including Samsung Galaxy Buds 4, Sony WF-1000XM6, and Xbox Wireless Headset. These updates are available for Windows Insiders in the Beta and Dev channels with specific preview builds installed.

Winsage

February 27, 2026

Announcing Windows 11 Insider Preview Build 26220.7934 (Beta Channel)

Windows 11 Insider Preview Build 26220.7934 (KB5077242) has been released to the Beta Channel. Key updates include: - Enhanced security and performance for batch files with a new secure mode that ensures batch files remain unchanged during execution, improving performance and security. - Shared audio feature now includes individual volume sliders for each listener and a taskbar indicator for ongoing audio sharing sessions. - A new command for Narrator users allows reading the status bar contents in applications like Word and Excel. - The rollout of improved taskbar animations has been temporarily paused. - Reliability improvements for removing Windows Update files and windows.old files. - Enhanced typing reliability with the ADLaM keyboard. - The Paint app has introduced a freeform rotate feature for shapes, text, and selections. Insiders can access these updates through Settings > Windows Update, and features may be gradually rolled out using Controlled Feature Rollout technology. A desktop watermark is displayed for Windows Insider pre-release builds.

Winsage

February 27, 2026

Announcing Windows 11 Insider Preview Build 26300.7939 (Dev Channel)

Windows 11 Insider Preview Build 26300.7939 (KB 5077243) has been released to the Dev Channel, introducing new features and improvements. Key updates include enhanced security and performance for batch files through a new secure mode, individual volume sliders for shared audio between Bluetooth LE Audio devices, a new Narrator command to read status bar contents in applications, improved reliability for removing Windows Update files, and enhanced typing reliability with the ADLaM keyboard. The rollout of improved taskbar animations has been temporarily paused. Updates are gradually being rolled out to Insiders who have opted in through Settings > Windows Update.

Winsage

February 24, 2026

How to migrate applications to Windows 11

Organizations are transitioning from Windows 10 to Windows 11 following the end-of-support date for Windows 10. Windows 11 is designed to support most applications that ran on Windows 10, but challenges may arise due to undocumented legacy applications and configurations. A thorough evaluation of devices, including installed applications and data locations, is essential to minimize disruptions during the upgrade. Migrations can be categorized as clean installations or in-place upgrades. A clean installation erases the previous OS and data, while an in-place upgrade retains existing settings and applications. In-place upgrades are not allowed for certain transitions, such as from Windows 10 Home to Windows 11 Pro without first upgrading to Windows 10 Pro. IT professionals often prefer clean installations to avoid carrying over issues from the previous OS. During an in-place upgrade, data in library folders is retained, but data in the Windows folder may be at risk. Compatibility issues may arise with poorly designed applications or drivers post-upgrade, particularly with legacy applications reliant on outdated frameworks. Preparation for migration includes creating an inventory of applications, identifying potential incompatibilities, and ensuring backups of data. IT must also confirm hardware meets Windows 11 requirements. If a clean installation is chosen, strategies for application installation must be developed, utilizing tools like System Center Configuration Manager or Microsoft Intune. Validation and testing of migration tools should occur in a lab environment, followed by a pilot deployment on a small percentage of machines. After successful pilot testing, the final deployment can proceed, followed by an audit to address any issues. Careful planning and testing are crucial for a smooth migration process.

Tech Optimizer

February 24, 2026

Fake Huorong Site Delivers ValleyRAT Backdoor in Targeted Malware Campaign

A cyber operation is targeting users of Huorong Security antivirus software through a typosquatted domain, huoronga[.]com, which mimics the legitimate site huorong.cn. Users who mistakenly visit the counterfeit site may download a file named BR火绒445[.]zip, which contains a trojanized installer that leads to the installation of ValleyRAT, a remote access trojan. The malware employs various techniques to evade detection, including using an intermediary domain for downloads, creating Windows Defender exclusions, and establishing a scheduled task for persistence. The backdoor facilitates activities such as keylogging and credential access while disguising its operations within legitimate processes like rundll32.exe. Attribution points to the Silver Fox APT group, and there has been a significant increase in ValleyRAT samples documented in recent months. Security measures include ensuring software downloads are from the official site and monitoring for specific malicious activities.

Winsage

February 24, 2026

How to Disable Copilot in Windows 11 — Uninstall, Hide, and Stop It from Coming Back

Microsoft has integrated its AI assistant, Copilot, into various parts of Windows 11, including the taskbar, Edge, and Notepad. Users have expressed a desire to remove Copilot, leading to the creation of a guide detailing methods to disable it. Copilot can be uninstalled through Settings, but additional steps are required to remove it from Edge, Notepad, and Windows Search. Users can also prevent Copilot from reinstalling after updates by adjusting registry settings. The Copilot app is categorized as a standalone application in Windows 11 24H2, making it easier to uninstall compared to previous versions. Methods to disable Copilot include: 1. Uninstalling the app via Settings. 2. Hiding the icon from the taskbar. 3. Using Group Policy Editor (limited to Pro, Enterprise, Education). 4. Removing Copilot for all users using PowerShell. 5. Adjusting settings in Edge and Notepad to disable Copilot features. 6. Editing the registry to remove Copilot from Windows Search and Paint. 7. Remapping the physical Copilot key on newer laptops. 8. Disabling silent reinstallation of Copilot through registry edits. Disabling Copilot will not affect core Windows functionality but will remove AI-specific features such as the chatbot and writing assistance.

Winsage

February 20, 2026

Facebook ads spread fake Windows 11 downloads that steal passwords and crypto wallets

Attackers are using social media advertising, specifically paid Facebook ads, to promote a malware campaign disguised as legitimate Microsoft promotions. They create near-exact replicas of the official Windows 11 download page to lure users into downloading malicious software. The deceptive domains used include ms-25h2-download[.]pro and ms-25h2-update[.]pro. The malware campaign employs geofencing to selectively target victims, redirecting security researchers to benign sites while delivering malware to unsuspecting users. The malicious file, named ms-update32.exe, is hosted on GitHub and mimics the size of a legitimate Windows installer. Once executed, it checks for monitoring tools and, if none are detected, installs an application named "Lunar" that collects sensitive data, including cryptocurrency wallet information. The malware maintains persistence by writing data to the Windows registry and employs various obfuscation techniques to evade detection. The attackers run parallel ad campaigns with different Facebook Pixel IDs to ensure continued operation even if one is suspended. Indicators of compromise include specific file hashes, domains, file system artifacts, and registry keys associated with the malware.

Tech Optimizer

February 19, 2026

How to Install McAfee Antivirus on Windows 11 or 10

Installing third-party antivirus software like McAfee on Windows 11 can be challenging due to the built-in Windows Security, which can complicate the installation process. Users may face issues such as silent failures from conflicting software, permission problems on restricted machines, or restrictions due to S Mode on new laptops. Windows 11 includes Windows Security, which is effective for malware protection, but McAfee may be necessary for compliance, additional features, or centralized protection for multiple devices. McAfee supports Windows 11 Home, Pro, and Education editions but not Enterprise. The minimum hardware requirements include a processor of 1 GHz or faster, at least 2 GB of RAM (4 GB recommended), 1.3 GB of free disk space, an internet connection for download and updates, and a display resolution of at least 1024×768. McAfee requires a persistent internet connection for activation and updates. Before installing McAfee, users should check if their device is in S Mode, as McAfee cannot be installed in this mode. They must remove any existing antivirus software completely, as leftover files can interfere with the installation. Users should also ensure that Windows 11 is up to date and verify that there is enough disk space available. To download McAfee, users should go directly to the McAfee trial page to avoid scams. After downloading, they need to run the installer and restart their computer after installation. Users should then activate McAfee, run a manual update, and conduct a full system scan. Common installation problems include freezes during download, errors due to S Mode, and issues with Windows Security not recognizing McAfee as the active antivirus. Users can verify that McAfee is functioning correctly by checking the system tray icon, Windows Security settings, and the McAfee dashboard. To uninstall McAfee, users should go to Settings > Apps > Installed Apps, select McAfee, and follow the prompts to remove it. After uninstallation, Windows Security will reactivate automatically. McAfee offers several plans for Windows users, including Basic, Essential, Premium, and Advanced, each with different features and device limits. The Basic plan is suitable for single-device users without additional needs, while families may benefit from the Essential or Premium plans.

Winsage

February 17, 2026

I’m stuck with Windows for gaming in 2026, but here’s how I’m optimizing it

In early 2026, Windows 11 posed challenges for users, leading to multiple reinstallations. To optimize gaming performance, users can create a restore point, activate Game Mode, adjust power settings to High Performance or Ultimate Performance, enable "Optimizations for windowed games," and activate Hardware-accelerated GPU scheduling. Managing startup apps through Windows Settings or Task Manager, disabling the Virtual Machine Platform and Hyper-V, and using the Win11Debloat PowerShell script can improve system performance. Adjustments in the NVIDIA Control Panel, such as setting the Shader Cache Size to 10 GB and Power management mode to "Prefer maximum performance," enhance gaming experience. Registry edits like changing Scheduling Category to High and modifying NetworkThrottlingIndex can further optimize performance.

Winsage

February 17, 2026

How to Uninstall and Reinstall Chrome on Windows 11 Using Winget CMD

Google Chrome can experience performance issues on Windows due to corrupted profiles, extension conflicts, broken updates, and crashes. A complete uninstall and reinstall often resolves these issues, and the Windows Package Manager (Winget) provides a command-line method for this process. To uninstall Chrome using Winget, open Terminal as an administrator and run the command PLACEHOLDER7836d906c03bd8f1. After uninstallation, verify it with PLACEHOLDER30cf24d62406b8ee, then reinstall using PLACEHOLDER76e40aae6965d719. For a clean reinstall, delete the leftover user data folder at PLACEHOLDER142352b706501488. Commands: - Check installed version: winget list Google.Chrome - Uninstall Chrome: winget uninstall Google.Chrome - Verify removal: winget list Google.Chrome - Reinstall Chrome: winget install Google.Chrome - Silent install: winget install Google.Chrome --silent - Delete leftover data: rmdir /s /q "%LocalAppData%GoogleChrome" Before executing commands, ensure Winget is available and updated, and that you have administrator privileges. Backup data by enabling Chrome Sync. Close Chrome completely before uninstalling to avoid process interference. A clean reinstall involves deleting the Chrome user data folder, which removes bookmarks, passwords, and other stored data. Winget is faster and more suitable for scripting and remote management compared to traditional uninstall methods through the Settings app or Control Panel. Common troubleshooting for Winget includes handling errors related to package recognition, installation blocks, and access issues. If uninstalling fails, terminate any running Chrome processes and retry the command. If unsuccessful, use the Settings app for removal and then Winget for reinstallation.