Run dialog Archives

Winsage

March 27, 2026

Microsoft Confirms Dark Mode Expansion For Windows 11 Legacy Interfaces

Microsoft is working to enhance dark mode support in Windows 11, focusing on older system components, particularly legacy interfaces. Marcus Ash, head of Windows Design and Research, stated that efforts are underway to incorporate dark mode into more areas, including the Windows Registry Editor, although no timeline has been provided. Dark mode remains inconsistent across various system areas, such as File Properties dialogs, Registry Editor, Run dialog, Device Manager, and Disk Management. While some aspects of File Explorer have received dark mode support, others still display light-themed interfaces. Users should expect inconsistencies and are advised to use the system dark mode setting while regularly checking for updates. Microsoft has not disclosed specific details or timelines for future updates related to dark mode enhancements.

Tech Optimizer

March 19, 2026

ClickFix Lures Power LeakNet’s Growing Ransomware Attack Chain

The ransomware group LeakNet has evolved its tactics, increasing its average targets from three per month and shifting from purchasing stolen network access to launching its own campaigns. They now use deceptive error screens and a new tool that executes malicious code in a computer's memory. Their strategy includes ClickFix lures, which compromise legitimate websites to display fake security checks, tricking users into executing malicious commands. This method broadens their victim reach and reduces costs. The Deno loader, part of this strategy, collects machine information and retrieves additional malicious code without leaving standard files, making detection difficult. After infiltrating a network, LeakNet checks for active user credentials and uses PsExec for lateral movement, employing Amazon S3 buckets for payload staging and data exfiltration. Defenders are advised to monitor for suspicious behavior rather than just known malicious files, focusing on unusual web commands and unexpected cloud storage connections.

Winsage

March 6, 2026

Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma Stealer

Microsoft revealed a social engineering campaign named ClickFix that exploits the Windows Terminal application to deploy Lumma Stealer malware. Detected in February 2026, this campaign instructs users to access Windows Terminal using the Windows + X → I shortcut, enhancing its perceived legitimacy. Attackers evade detection by manipulating users into executing harmful commands through deceptive prompts. The attack chain involves pasting a hex-encoded command into Windows Terminal, which opens additional Terminal and PowerShell instances, leading to a PowerShell process that decodes a script. This process downloads a ZIP payload containing a renamed 7-Zip binary, which extracts files and initiates a multi-stage attack, including retrieving payloads, establishing persistence, configuring Microsoft Defender exclusions, exfiltrating data, and deploying Lumma Stealer by injecting it into "chrome.exe" and "msedge.exe." Lumma Stealer targets browser artifacts to harvest credentials. A secondary attack pathway involves downloading a batch script that writes a Visual Basic Script to the Temp folder and connects to Crypto Blockchain RPC endpoints, also using QueueUserAPC() for code injection into browsers to extract data.

Winsage

March 4, 2026

Here’s some incredible Windows 11 keyboard shortcuts that will save you so much time

Windows 11 includes numerous keyboard shortcuts to enhance productivity. Common shortcuts include: - Ctrl + A: Select everything - Ctrl + C: Copy selected item - Ctrl + X: Cut selected item - Ctrl + V: Paste copied or cut item - Ctrl + Z: Undo last action - Ctrl + Y: Redo last undone action - Ctrl + N: Open new File Explorer window - Alt + Tab: Switch between open apps - Alt + F4: Close active app - Shift + Delete: Permanently delete selected item - Windows Key + F1: Open Windows help search Function key shortcuts include: - F2: Rename selected item - F3: Search in File Explorer - F4: Highlight address bar in File Explorer - F5: Refresh active window - F6: Cycle through screen elements - F10: Activate menu bar - Alt + F8: Show password on login screen Windows key shortcuts include: - Windows key + A: Open Action Center - Windows key + C: Open Microsoft Copilot - Windows key + S: Open Search - Windows key + E: Open File Explorer - Windows key + F: Open Feedback Hub - Windows key + Ctrl + F: Search for PCs on network - Windows key + G: Open Game Bar - Windows key + H: Open Share menu - Windows key + I: Open Settings - Windows key + K: Open Connect menu - Windows key + L: Lock PC - Windows key + O: Lock screen orientation - Windows key + P: Open projection settings - Windows key + R: Open Run dialog - Windows key + U: Open Accessibility settings - Windows key + W: Open Windows Ink Workspace - Windows key + +: Zoom in with Magnifier - Windows key + -: Zoom out with Magnifier - Windows key + Esc: Close Magnifier Window management shortcuts include: - Windows key + M: Minimize all windows - Windows key + Shift + M: Restore minimized windows - Windows key + Home: Minimize all except active window - Windows key + Up arrow: Maximize active window - Windows key + Shift + Up arrow: Maximize vertically - Windows key + Down arrow: Minimize active window - Windows key + Left arrow: Snap window left - Windows key + Right arrow: Snap window right - Windows key + Alt + Up arrow: Snap window top - Windows key + Alt + Down arrow: Snap window bottom - Windows key + Shift + Left/Right arrow: Move window to another monitor Screenshot and emoji shortcuts include: - PrtScn: Copy screenshot to clipboard - Windows key + PrtScn: Save full-screen screenshot - Windows key + Shift + S: Open Snipping Tool - Windows key + . (period): Open emoji keyboard Exploring additional tips in Windows File Explorer can further optimize workflow.

Winsage

February 17, 2026

I’m stuck with Windows for gaming in 2026, but here’s how I’m optimizing it

In early 2026, Windows 11 posed challenges for users, leading to multiple reinstallations. To optimize gaming performance, users can create a restore point, activate Game Mode, adjust power settings to High Performance or Ultimate Performance, enable "Optimizations for windowed games," and activate Hardware-accelerated GPU scheduling. Managing startup apps through Windows Settings or Task Manager, disabling the Virtual Machine Platform and Hyper-V, and using the Win11Debloat PowerShell script can improve system performance. Adjustments in the NVIDIA Control Panel, such as setting the Shader Cache Size to 10 GB and Power management mode to "Prefer maximum performance," enhance gaming experience. Registry edits like changing Scheduling Category to High and modifying NetworkThrottlingIndex can further optimize performance.

Tech Optimizer

February 11, 2026

How to Disable Windows 11 Defender: Temporary and Permanent

Microsoft Defender Antivirus is the built-in security solution for Windows 11, protecting against viruses, malware, and ransomware. Users may need to disable it temporarily or permanently for various reasons, including software installation, penetration testing, performance issues, transitioning to third-party antivirus solutions, or troubleshooting conflicts. Temporary disabling can be done through the Windows Security app, which will automatically re-enable after a restart. Permanent disabling requires changes in Group Policy, applicable only to Windows 11 Pro, Enterprise, and Education editions, and necessitates disabling Tamper Protection first. Another method for permanent disabling is installing a third-party antivirus, which automatically deactivates Defender's real-time protection. Windows 11 Home users cannot use Group Policy for permanent disabling but can still temporarily disable Defender or install a third-party antivirus. Disabling Defender exposes the system to threats, and users should ensure they have alternative protection in place. Major Windows updates may reset Defender settings, and caution is advised when modifying system settings.

Winsage

January 7, 2026

Hackers Use Fake Windows BSOD To Spread Malware

Security researchers have identified a social engineering campaign that mimics the Windows Blue Screen of Death (BSOD) to deceive users into installing a remote access Trojan (RAT). The campaign, named PHALT#BLYX, begins with phishing emails that appear to be legitimate cancellation notices from travel websites, leading victims to a fake login page and an interactive CAPTCHA. This culminates in a full-screen imitation of the BSOD, prompting users to follow instructions that ultimately allow attackers to gain control of their computers. The attackers use a “ClickFix” process that involves executing commands through native Windows tools like PowerShell and MSBuild, making detection more challenging. The malware delivered is an obfuscated version of DCRat, which provides attackers with remote control capabilities, keylogging, and the ability to download additional malware. The campaign primarily targets hotels and hospitality businesses in Europe, exploiting the urgency of front-desk staff to respond to apparent technical issues. Indicators of a fake BSOD include the ability to interact with the screen, requests to execute commands via Windows tools, and the presence of CAPTCHA prompts. Organizations are advised to train employees, implement application control, enhance email and web defenses, and prepare for incident response to mitigate risks associated with such attacks.

Winsage

January 6, 2026

ClickFix attack uses fake Windows BSOD screens to push malware

A new social engineering attack campaign called ClickFix is targeting the hospitality sector in Europe, using fake Windows Blue Screen of Death (BSOD) screens to trick users into executing malware. Initially identified in December by Securonix as "PHALT#BLYX," the campaign involves phishing emails that appear to be notifications from Booking.com, often mentioning significant refunds to create urgency. Victims are directed to a counterfeit Booking.com site that mimics the legitimate one and displays a fake error message prompting them to execute a malicious command. This command launches a PowerShell script that downloads and compiles malware known as DCRAT, a remote access Trojan that allows attackers to control infected devices, exfiltrate data, and spread within networks.

Winsage

December 17, 2025

If you want to scrub Windows 11’s AI features off the face of the earth some legend has made a tool that does just that

The integration of artificial intelligence in Windows 11 has received mixed reactions from users, with some appreciating the advancements while others find AI features, especially the Copilot buttons, to be cluttering their experience. In response to user concerns, a GitHub user named zoicware has developed a tool that targets the AI components in the 25H2 build of Windows 11, aiming to enhance user experience, privacy, and security by removing these features. This tool is seen as more comprehensive compared to existing alternatives like Windows Utility. Users are advised to exercise caution when using scripts that modify system settings, particularly those affecting the registry. The script is available on GitHub for users to review before use.

Winsage

December 7, 2025

Microsoft’s revamping Windows 11’s Run prompt, and already there are jokes about Copilot integration – alongside more serious worries

A significant update for the 'Run' dialog box in Windows 11 is forthcoming, featuring a modern design aligned with Microsoft's Fluent design language. The revamped Run box will display a list of recently used commands above the command line and include icons for applications. This update will not replace the existing version but will be an optional feature that users can enable through the Settings menu. Screenshots suggest the new Run box is ready for broader use, although it will not include AI enhancements at this time. The Run box can be accessed by pressing Windows key + R, allowing users to input various commands.