script Archives

Winsage

August 15, 2025

Windows 11’s August update fails to install on some PCs. Here’s what you can do

Microsoft released the mandatory Windows 11 update KB5063878 for August, which includes the Quick Machine Recovery feature for remote troubleshooting of PCs. Users have reported installation issues, encountering error codes such as 0x80240069, 0x80240031, and 0x800f0922. Microsoft has acknowledged these as known errors, particularly affecting those using Windows Server Update Services (WSUS). The installation problems occur regardless of whether the system is newly installed or has been updated multiple times. Microsoft offers a temporary solution called "Known Issue Rollback" to revert the problematic update and suggests modifying the Windows registry or using a PowerShell script as a workaround. Users can also manually download the update from Microsoft's Update Catalog for immediate installation.

Winsage

August 12, 2025

You should deep clean your Windows PC every year to keep it running smoothly — here’s how I do it

Maintaining a computer's performance requires regular software upkeep in addition to physical care. An annual deep clean is advisable, with more frequent maintenance being beneficial. 1. Uninstall unused applications using the built-in Settings app or a tool like BCUninstaller, which can bulk uninstall and identify leftover files. 2. Run debloat scripts, such as Chris Titus Tech's Windows Utility, to remove bloatware and manage privacy settings. 3. Disable unnecessary startup apps through the Task Manager to optimize boot times. 4. Check for driver updates manually under Advanced options > Optional updates, and visit manufacturer websites for graphics drivers. 5. Run a malware scan using MalwareBytes for periodic checks. 6. Delete temporary files via System > Storage > Temporary files in the Settings app, and manage cached files in web browsers.

Winsage

August 7, 2025

Updating your Linux kernel sounds scary, but here’s why it’s no different from a Windows update

Updating the Linux kernel is generally straightforward and low-risk, similar to Windows updates. Most Linux distributions, including Ubuntu, Fedora, Debian, and Linux Mint, manage kernel updates automatically through the package manager. When a new kernel is installed, the previous version remains intact, allowing users to revert to it if necessary via the GRUB boot menu. Kernel updates provide essential security patches, bug fixes, and improved hardware support. While manual installation of a kernel is possible, it is not required for most users. Tools are available for easier management of kernel versions, but the update process is designed to be user-friendly and safe.

Winsage

August 6, 2025

OpenAI open weight models now available on AWS

AWS has introduced two new OpenAI models with open weights, the gpt-oss-120b and gpt-oss-20b, available through Amazon Bedrock and Amazon SageMaker JumpStart. These models are designed for text generation and reasoning tasks, excelling in coding, scientific analysis, and mathematical reasoning, with performance comparable to leading alternatives. They support a context window of 128K and adjustable reasoning levels (low, medium, high). Users can access these models via an OpenAI-compatible endpoint in Bedrock, utilizing the OpenAI SDK or Bedrock APIs for integration. To access the models in Amazon Bedrock, users must request access through the console and can evaluate them using the Chat/Test playground. The process for using the OpenAI SDK involves configuring the API endpoint and authentication with an Amazon Bedrock API key. Users can build AI agents using frameworks that support the Amazon Bedrock API or OpenAI API, with deployment facilitated by Amazon Bedrock AgentCore. The OpenAI models are available in the US West (Oregon) region through Amazon Bedrock and in the US East (Ohio, N. Virginia) and Asia Pacific (Mumbai, Tokyo) regions via SageMaker JumpStart. Each model provides full chain-of-thought output capabilities for enhanced interpretability. They can be modified and customized to meet specific needs, and security measures are in place to ensure robust evaluation processes. Compatibility with the standard GPT-4 tokenizer is also included. For cost details, users can refer to the Amazon Bedrock and SageMaker AI pricing pages.

Winsage

August 5, 2025

APT37 Hackers Weaponizes JPEG Files to Attack Windows System Leveraging “mspaint.exe” File

A new variant of the RoKRAT malware, attributed to North Korea's APT37 group, utilizes advanced techniques such as steganography to hide malicious code within JPEG image files, complicating detection efforts. This malware is primarily distributed in South Korea through compressed archives containing Windows shortcut files that lead to a multi-stage infection process. The process involves executing PowerShell commands to decrypt and run the malware, which can inject itself into trusted Windows processes like mspaint.exe and notepad.exe, leaving minimal forensic traces. The malware also exfiltrates sensitive information using legitimate cloud APIs, making attribution difficult. APT37 has demonstrated adaptability by changing its injection targets and camouflaging its development artifacts, highlighting the need for advanced Endpoint Detection and Response (EDR) solutions and proactive security measures.

Winsage

August 4, 2025

North Korea Hiding Malware Within JPEG Files to Attack Windows Systems Bypassing Detections

Security researchers at Genians Security Center discovered a new variant of the RoKRAT malware linked to the North Korean APT37 threat group. This malware uses steganography to hide malicious payloads within JPEG files, allowing it to evade traditional antivirus detection. It is typically distributed through malicious shortcut files within ZIP archives, often disguised as legitimate documents. The malware employs a two-stage encrypted shellcode injection method, utilizing PowerShell and batch scripts to execute its payloads in memory. It collects system information, documents, and screenshots, exfiltrating data via compromised cloud APIs. The command and control accounts associated with the malware are linked to Russian email services. Variants of RoKRAT have evolved to include different injection methods and reference specific PDB paths. Indicators of compromise include various MD5 hashes associated with the malware.

AppWizard

August 4, 2025

Google Home app fixes edge-to-edge Routines bug on Android

Users of the Google Home app on Android 16 experienced a bug in the Routines creator and editor, which was resolved with the release of Google Home version 3.37. The update restored accessibility to buttons at the top and bottom of the Routines interface, allowing users to navigate to the Automations tab and access options for Household or Personal routines. The close ‘x’ and “Save” buttons are now available, improving user experience. The three-dot overflow menu, which includes actions like the Script editor and Help, has also returned. Previously, page titles were obscured by the front-facing camera, and users faced challenges with actions like “Remove action.” The issue originated from Android 16's restrictions on apps targeting the latest version. The resolution was implemented via a server-side rollout with no visible changes in the initial release of Google Home 3.37.

Winsage

August 4, 2025

I use this official Microsoft application to make booting Windows 11 so much easier

Windows users can streamline their morning routine by using a Microsoft utility called Autologon, which automates the login process. Autologon allows users to bypass traditional login steps and securely stores passwords as Local Security Authority (LSA) secrets, unlike the registry method that stores credentials in plain text. For enhanced efficiency, Autologon can be combined with PowerToys' Workspaces and Task Scheduler to automate the launch and arrangement of applications upon login. Users can create a task in Task Scheduler to trigger the desired workspace, ensuring that applications are ready and arranged as preferred. This setup saves time and improves productivity for users managing multiple applications.

Winsage

August 3, 2025

5 Windows PowerShell commands every power user should know

Microsoft has transitioned from the traditional command prompt to Windows PowerShell, a command-line interface tool designed for scripting and task automation. Key commands in PowerShell include: 1. Get-Process: Retrieves information about processes running on a local computer or a remote server, including process names, IDs, CPU usage, and memory consumption. Example usage includes filtering processes by memory usage or specific applications. 2. Get-Command: Lists all available commands within PowerShell, including cmdlets, functions, aliases, and scripts. It helps users discover commands for specific tasks. 3. Set-ExecutionPolicy: Configures the PowerShell script execution policy, determining whether scripts can run and under what conditions. It allows power users to adjust policies for executing custom scripts. 4. Get-EventLog: Accesses detailed system logs for troubleshooting errors or auditing system activity, including warnings and security breaches. It can filter logs based on criteria like log name and entry type. 5. Where-Object: Filters objects in a pipeline based on specified conditions, allowing users to narrow down results for analysis, reporting, and automation. It can be combined with other commands for enhanced functionality.

Winsage

July 28, 2025

UpDownTool lets you move from Windows 11 to Windows 10 in just 5 clicks – without losing any data

A new application called UpDownTool allows users to revert from Windows 11 to Windows 10 without losing programs, files, drivers, or settings. Many users are dissatisfied with Windows 11 due to sluggish performance, a less intuitive interface, increased system requirements, and the removal of familiar features. Microsoft has limited options for downgrading, typically allowing a 10-day rollback period or requiring a clean install. UpDownTool simplifies the process by enabling users to transition to Windows 10 LTSC 2021 while preserving core data and configurations. Windows 10 LTSC 2021 is designed for long-term deployment and receives extended updates, with support for the IoT Enterprise LTSC 2021 edition lasting until January 2032. The LTSC edition does not include preinstalled applications like the Microsoft Store and Cortana, making it appealing for users seeking a minimalist experience. UpDownTool can also repair existing Windows 10 LTSC installations or convert other editions to LTSC. Users must be cautious of licensing implications, as LTSC licenses are typically not available through consumer channels. The downgrade process involves downloading the installer and executing a batch script, with the system booting into Windows 10 LTSC 2021 upon completion. Users are advised to back up important files before proceeding.