script Archives

Winsage

March 3, 2026

This third‑party Windows 11 app fixes one of its most annoying UX problems

The Files app has been updated to version 4.0.28, featuring an improved right-click context menu, bug fixes, support for the Microsoft Store version of Dropbox, icon customization for URL and shortcut files, and an option to disable smooth scrolling. The update resolves several issues, including problems with the 'Open With' menu, tab switching, and tag searches. The development team is focused on performance improvements, particularly for thumbnail loading times. Microsoft has plans to enhance Windows 11 and address user pain points related to File Explorer.

Winsage

March 2, 2026

Fake Xeno and Roblox Utilities Used to Install Windows RAT, Microsoft Warns

Cybersecurity experts at Microsoft Threat Intelligence have identified a trend where attackers distribute counterfeit gaming tools that install a remote access trojan (RAT) on users' systems. These trojanized executables, such as Xeno.exe or RobloxPlayerBeta.exe, are shared through browsers and chat platforms. The initial executable acts as a downloader, installing a portable Java runtime environment and launching a harmful Java archive, jd-gui.jar. Attackers use built-in Windows tools to execute commands via PowerShell and exploit trusted system binaries, minimizing detection risk. The embedded PowerShell script connects to remote locations, downloads an executable as update.exe, and executes it. The malware erases evidence of the downloader and modifies Microsoft Defender settings to allow RAT components to function undetected. It establishes persistence through scheduled tasks and a startup script named world.vbs, enabling prolonged access to the compromised device. Microsoft Defender can detect the malware and its behaviors, and organizations are advised to monitor outbound traffic and block identified domains and IP addresses. Users are encouraged to scrutinize Microsoft Defender exclusions and scheduled tasks for irregularities and remain cautious about downloading tools from unofficial sources.

Winsage

March 1, 2026

Forget ‘debloat apps.’ Sophia Script gives you real control over Windows 11. Here’s how it works.

Windows 11 users often find system settings dispersed and many functionalities unconfigurable. The Sophia Script for Windows is an open-source PowerShell module designed to debloat and optimize Windows 10 and 11. It requires manual adjustments to select desired optimizations. To use the script, users must download it via PowerShell or from GitHub, extract files, and run the SophiaScriptWrapper.exe to import the Sophia.ps1 file. Users can customize functions and export a custom script before executing it. The script requires specific commands to run and may prompt users for selections during operation. Users can also run individual functions without modifying the entire script. The Sophia Script offers advanced control over privacy settings and system functions, appealing to power users who seek deeper customization beyond standard interfaces.

Winsage

March 1, 2026

Forget ‘debloat apps.’ Sophia Script gives you real control over Windows 11. Here’s how it works.

Windows 11 users often find system settings scattered, making configurations difficult to access. The Sophia Script for Windows is an open-source PowerShell module designed to debloat and optimize Windows 11 and 10. It requires manual modifications for customization and can be downloaded via PowerShell or from GitHub. Users must extract files, run the SophiaScriptWrapper.exe, and import the Sophia.ps1 file to customize and export their script. To execute the script, users must navigate to the script's directory in PowerShell, set execution policies, and run the customized script. Individual functions can also be executed by navigating to the script directory and using specific commands. The Sophia Script offers extensive control over system-level functions, allowing for deep customization of privacy settings and system behaviors, but may not be suitable for all users due to its complexity.

AppWizard

March 1, 2026

A Minecraft Movie Producer Teases a Potential Addition to the Sequel

The sequel to A Minecraft Movie is in development, with producer Roy Lee hinting at the inclusion of the Ender Dragon. Actor Jason Momoa has praised the script as strong and engaging. The first film successfully captured the essence of the game, featuring a diverse cast including Jack Black and Emma Myers, and performed well at the box office. The sequel is projected to be released in summer 2027.

Winsage

February 28, 2026

Microsoft confirms a wider roll out of Windows 11’s new colourful battery icons on the taskbar

Windows 11 users will see colorful battery icons on the taskbar as Microsoft rolls out updates, including the new Start menu, with the update KB5077241. The vibrant battery icons have been in development for nearly two years, with initial testing starting in late 2024. The rollout began last year but was limited to select PCs. An optional update in February 2026 will further expand the availability of these icons and the updated Start menu. The new battery icon replaces the plain white bar with a green icon when charging, featuring a charging bolt during the process. The icon changes color based on battery levels: it turns orange at 30% and red below 6%. Users can display the battery percentage on the taskbar by enabling it in Settings > System > Power & Battery. Recent improvements to the Windows taskbar include the return of drag-and-drop functionality, the ability to resize the taskbar, and potential options to reposition it. Microsoft is also updating Secure Boot certificates, set to expire in June 2026, and distributing new certificates issued in 2023 to more PCs. A tutorial is available for users to verify the application of these new Secure Boot certificates.

Tech Optimizer

February 27, 2026

Fake Avast Website Steals Users’ Credit Card Information

A phishing scam is targeting French-speaking users in Europe by impersonating Avast antivirus software. Victims are lured to a fraudulent website that mimics Avast's official portal, where they are tricked into providing credit card details due to a fabricated €499.99 charge and promises of a refund. The scam uses realistic branding, dynamic JavaScript for urgency, and live chat features to collect personal information. Users are asked to select refund reasons and submit their personal details, after which they are prompted for credit card information. The scam employs the Luhn algorithm to validate card numbers and displays a fake confirmation message after data submission. Key red flags include dynamic dates, tight deadlines, requests for full card re-entry, and suspicious live chat interactions. Avast has warned users about these scams and encourages reporting to authorities.

Tech Optimizer

February 27, 2026

Replicate spatial data using AWS DMS and Amazon RDS for PostgreSQL

The process of migrating spatial data from self-managed PostgreSQL, Amazon RDS for PostgreSQL, or Amazon Aurora PostgreSQL-Compatible Edition to Amazon RDS for PostgreSQL or Amazon Aurora PostgreSQL-Compatible Edition using AWS Database Migration Service (AWS DMS) is outlined. Spatial data includes points, lines, polygons, and collections of these features, which are essential for applications like mapping and asset tracking. AWS DMS treats spatial columns as large objects (LOBs) and requires proper configuration for LOB handling and PostGIS support to avoid migration failures. PostGIS is an extension for PostgreSQL that manages geospatial data types and functions, enabling operations such as radius searches and distance calculations. Amazon RDS for PostgreSQL fully integrates with PostGIS, making it suitable for geospatial applications. The migration solution involves ensuring compatibility of PostGIS versions between source and target databases, configuring AWS DMS, and validating the migration. Prerequisites include having an AWS account, RDS instances for source and target, a DMS replication instance, and the PostGIS extension installed on both databases. Tables must have primary or unique key constraints, and geometry columns must be nullable for LOB handling. Best practices for configuring PostGIS include validating version compatibility, monitoring resource usage, and establishing backup strategies. Implementation steps involve creating a spatial table in the source database, preparing the target database, configuring the AWS DMS task with specific settings, and monitoring the migration process through CloudWatch logs. Common errors during replication may relate to LOB handling or PostGIS data types. Post-migration validation includes comparing row counts, verifying geometry data types, and ensuring the functionality of PostGIS spatial functions. Finally, it is recommended to clean up all resources post-migration to avoid ongoing charges.

Winsage

February 22, 2026

Download KRNL On Windows 8: A Simple Guide

KRNL is an exploit for the Roblox gaming platform that allows users to execute custom scripts to enhance gameplay. It is compatible with various Windows operating systems, including Windows 8, but compatibility issues may arise due to specific system configurations or outdated drivers. To prepare a Windows 8 system for KRNL, users should disable antivirus software temporarily, ensure the latest version of DirectX is installed, update graphics drivers, and create a system restore point. To download KRNL, users should find a reliable source, download the installer, extract files if necessary, run the installer, and complete the installation process. Common issues include KRNL not opening, DLL errors, crashing issues, and script execution problems, which can often be resolved by running as an administrator, reinstalling, updating drivers, or checking script syntax. For safety, users should download KRNL from trusted sources, keep antivirus software active (except during installation), be cautious with scripts, consider using a separate Roblox account for testing, and regularly update KRNL to the latest version.

Winsage

February 20, 2026

Facebook ads spread fake Windows 11 downloads that steal passwords and crypto wallets

Attackers are using social media advertising, specifically paid Facebook ads, to promote a malware campaign disguised as legitimate Microsoft promotions. They create near-exact replicas of the official Windows 11 download page to lure users into downloading malicious software. The deceptive domains used include ms-25h2-download[.]pro and ms-25h2-update[.]pro. The malware campaign employs geofencing to selectively target victims, redirecting security researchers to benign sites while delivering malware to unsuspecting users. The malicious file, named ms-update32.exe, is hosted on GitHub and mimics the size of a legitimate Windows installer. Once executed, it checks for monitoring tools and, if none are detected, installs an application named "Lunar" that collects sensitive data, including cryptocurrency wallet information. The malware maintains persistence by writing data to the Windows registry and employs various obfuscation techniques to evade detection. The attackers run parallel ad campaigns with different Facebook Pixel IDs to ensure continued operation even if one is suspended. Indicators of compromise include specific file hashes, domains, file system artifacts, and registry keys associated with the malware.