Run dialog Archives

Winsage

March 6, 2026

Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma Stealer

Microsoft revealed a social engineering campaign named ClickFix that exploits the Windows Terminal application to deploy Lumma Stealer malware. Detected in February 2026, this campaign instructs users to access Windows Terminal using the Windows + X → I shortcut, enhancing its perceived legitimacy. Attackers evade detection by manipulating users into executing harmful commands through deceptive prompts. The attack chain involves pasting a hex-encoded command into Windows Terminal, which opens additional Terminal and PowerShell instances, leading to a PowerShell process that decodes a script. This process downloads a ZIP payload containing a renamed 7-Zip binary, which extracts files and initiates a multi-stage attack, including retrieving payloads, establishing persistence, configuring Microsoft Defender exclusions, exfiltrating data, and deploying Lumma Stealer by injecting it into "chrome.exe" and "msedge.exe." Lumma Stealer targets browser artifacts to harvest credentials. A secondary attack pathway involves downloading a batch script that writes a Visual Basic Script to the Temp folder and connects to Crypto Blockchain RPC endpoints, also using QueueUserAPC() for code injection into browsers to extract data.

Winsage

March 4, 2026

Here’s some incredible Windows 11 keyboard shortcuts that will save you so much time

Windows 11 includes numerous keyboard shortcuts to enhance productivity. Common shortcuts include: - Ctrl + A: Select everything - Ctrl + C: Copy selected item - Ctrl + X: Cut selected item - Ctrl + V: Paste copied or cut item - Ctrl + Z: Undo last action - Ctrl + Y: Redo last undone action - Ctrl + N: Open new File Explorer window - Alt + Tab: Switch between open apps - Alt + F4: Close active app - Shift + Delete: Permanently delete selected item - Windows Key + F1: Open Windows help search Function key shortcuts include: - F2: Rename selected item - F3: Search in File Explorer - F4: Highlight address bar in File Explorer - F5: Refresh active window - F6: Cycle through screen elements - F10: Activate menu bar - Alt + F8: Show password on login screen Windows key shortcuts include: - Windows key + A: Open Action Center - Windows key + C: Open Microsoft Copilot - Windows key + S: Open Search - Windows key + E: Open File Explorer - Windows key + F: Open Feedback Hub - Windows key + Ctrl + F: Search for PCs on network - Windows key + G: Open Game Bar - Windows key + H: Open Share menu - Windows key + I: Open Settings - Windows key + K: Open Connect menu - Windows key + L: Lock PC - Windows key + O: Lock screen orientation - Windows key + P: Open projection settings - Windows key + R: Open Run dialog - Windows key + U: Open Accessibility settings - Windows key + W: Open Windows Ink Workspace - Windows key + +: Zoom in with Magnifier - Windows key + -: Zoom out with Magnifier - Windows key + Esc: Close Magnifier Window management shortcuts include: - Windows key + M: Minimize all windows - Windows key + Shift + M: Restore minimized windows - Windows key + Home: Minimize all except active window - Windows key + Up arrow: Maximize active window - Windows key + Shift + Up arrow: Maximize vertically - Windows key + Down arrow: Minimize active window - Windows key + Left arrow: Snap window left - Windows key + Right arrow: Snap window right - Windows key + Alt + Up arrow: Snap window top - Windows key + Alt + Down arrow: Snap window bottom - Windows key + Shift + Left/Right arrow: Move window to another monitor Screenshot and emoji shortcuts include: - PrtScn: Copy screenshot to clipboard - Windows key + PrtScn: Save full-screen screenshot - Windows key + Shift + S: Open Snipping Tool - Windows key + . (period): Open emoji keyboard Exploring additional tips in Windows File Explorer can further optimize workflow.

Winsage

February 17, 2026

I’m stuck with Windows for gaming in 2026, but here’s how I’m optimizing it

In early 2026, Windows 11 posed challenges for users, leading to multiple reinstallations. To optimize gaming performance, users can create a restore point, activate Game Mode, adjust power settings to High Performance or Ultimate Performance, enable "Optimizations for windowed games," and activate Hardware-accelerated GPU scheduling. Managing startup apps through Windows Settings or Task Manager, disabling the Virtual Machine Platform and Hyper-V, and using the Win11Debloat PowerShell script can improve system performance. Adjustments in the NVIDIA Control Panel, such as setting the Shader Cache Size to 10 GB and Power management mode to "Prefer maximum performance," enhance gaming experience. Registry edits like changing Scheduling Category to High and modifying NetworkThrottlingIndex can further optimize performance.

Tech Optimizer

February 11, 2026

How to Disable Windows 11 Defender: Temporary and Permanent

Microsoft Defender Antivirus is the built-in security solution for Windows 11, protecting against viruses, malware, and ransomware. Users may need to disable it temporarily or permanently for various reasons, including software installation, penetration testing, performance issues, transitioning to third-party antivirus solutions, or troubleshooting conflicts. Temporary disabling can be done through the Windows Security app, which will automatically re-enable after a restart. Permanent disabling requires changes in Group Policy, applicable only to Windows 11 Pro, Enterprise, and Education editions, and necessitates disabling Tamper Protection first. Another method for permanent disabling is installing a third-party antivirus, which automatically deactivates Defender's real-time protection. Windows 11 Home users cannot use Group Policy for permanent disabling but can still temporarily disable Defender or install a third-party antivirus. Disabling Defender exposes the system to threats, and users should ensure they have alternative protection in place. Major Windows updates may reset Defender settings, and caution is advised when modifying system settings.

Winsage

January 7, 2026

Hackers Use Fake Windows BSOD To Spread Malware

Security researchers have identified a social engineering campaign that mimics the Windows Blue Screen of Death (BSOD) to deceive users into installing a remote access Trojan (RAT). The campaign, named PHALT#BLYX, begins with phishing emails that appear to be legitimate cancellation notices from travel websites, leading victims to a fake login page and an interactive CAPTCHA. This culminates in a full-screen imitation of the BSOD, prompting users to follow instructions that ultimately allow attackers to gain control of their computers. The attackers use a “ClickFix” process that involves executing commands through native Windows tools like PowerShell and MSBuild, making detection more challenging. The malware delivered is an obfuscated version of DCRat, which provides attackers with remote control capabilities, keylogging, and the ability to download additional malware. The campaign primarily targets hotels and hospitality businesses in Europe, exploiting the urgency of front-desk staff to respond to apparent technical issues. Indicators of a fake BSOD include the ability to interact with the screen, requests to execute commands via Windows tools, and the presence of CAPTCHA prompts. Organizations are advised to train employees, implement application control, enhance email and web defenses, and prepare for incident response to mitigate risks associated with such attacks.

Winsage

January 6, 2026

ClickFix attack uses fake Windows BSOD screens to push malware

A new social engineering attack campaign called ClickFix is targeting the hospitality sector in Europe, using fake Windows Blue Screen of Death (BSOD) screens to trick users into executing malware. Initially identified in December by Securonix as "PHALT#BLYX," the campaign involves phishing emails that appear to be notifications from Booking.com, often mentioning significant refunds to create urgency. Victims are directed to a counterfeit Booking.com site that mimics the legitimate one and displays a fake error message prompting them to execute a malicious command. This command launches a PowerShell script that downloads and compiles malware known as DCRAT, a remote access Trojan that allows attackers to control infected devices, exfiltrate data, and spread within networks.

Winsage

December 17, 2025

If you want to scrub Windows 11’s AI features off the face of the earth some legend has made a tool that does just that

The integration of artificial intelligence in Windows 11 has received mixed reactions from users, with some appreciating the advancements while others find AI features, especially the Copilot buttons, to be cluttering their experience. In response to user concerns, a GitHub user named zoicware has developed a tool that targets the AI components in the 25H2 build of Windows 11, aiming to enhance user experience, privacy, and security by removing these features. This tool is seen as more comprehensive compared to existing alternatives like Windows Utility. Users are advised to exercise caution when using scripts that modify system settings, particularly those affecting the registry. The script is available on GitHub for users to review before use.

Winsage

December 7, 2025

Microsoft’s revamping Windows 11’s Run prompt, and already there are jokes about Copilot integration – alongside more serious worries

A significant update for the 'Run' dialog box in Windows 11 is forthcoming, featuring a modern design aligned with Microsoft's Fluent design language. The revamped Run box will display a list of recently used commands above the command line and include icons for applications. This update will not replace the existing version but will be an optional feature that users can enable through the Settings menu. Screenshots suggest the new Run box is ready for broader use, although it will not include AI enhancements at this time. The Run box can be accessed by pressing Windows key + R, allowing users to input various commands.

Winsage

December 5, 2025

Microsoft is too busy with AI to fix Windows 11’s design — so developers stepped up

FluentFlyout is a new application for Windows 11 that enhances media control by introducing customizable flyouts activated by media keys. It integrates well with the Windows 11 aesthetic and offers a premium version for .96, which includes a taskbar widget, while a free version is available on GitHub. The app features options for previewing upcoming media, personalizing content display, adjusting flyout position, and selecting themes. Despite improvements in design from Microsoft, such as updates to the Run dialog box and dark mode, users have expressed frustration with the pace of these updates and inconsistent design elements. Third-party developers like those behind FluentFlyout are addressing these gaps and improving the user experience on Windows 11.

Winsage

December 5, 2025

Microsoft finally has a better looking Run dialog for Windows 11

Microsoft is redesigning the Run dialog prompt in Windows, introducing a dark mode and a modernized interface that aligns with Windows 11 aesthetics. The revamped Run dialog resembles a contemporary launcher while retaining its core functionality, allowing users to access applications via commands. Users can toggle the new design on and off in the advanced system settings of Windows 11. Although no official announcement has been made, the modern Run prompt is expected to be included in upcoming builds. Additionally, Raycast has launched on Windows, offering a launcher, clipboard manager, and shortcut system, which may prompt further refinements to the Run dialog.