System Information Archives

Winsage

December 25, 2025

10 free Windows apps that improved my productivity (and I’d easily pay money for)

Open-source software provides flexibility and control for users. Notable applications for Windows include: 1. LibreOffice: A free office suite with tools similar to MS Office, offering a modern or classic interface and local data privacy. 2. Flow Launcher: A rapid file search and app launcher that is customizable and visually appealing, available for free. 3. Duplicati: A backup solution that allows data backup to various destinations, including cloud services, with features like scheduling and remote management, free for personal use. 4. Nextcloud: An open-source cloud service for file storage and collaboration, installable on Windows at no cost. 5. Franz: An application that consolidates multiple messaging services into one interface, free to install and use. 6. YAZB: A customizable top bar for Windows that displays system information and provides quick access to controls, enhancing desktop aesthetics and functionality. 7. File Converter: A tool for converting and compressing files directly from the Windows file manager, free to use. 8. Bitwarden: An open-source password manager with essential features, free to use with a premium option for advanced features. 9. AutoHotKey: A tool for automating tasks through scripting, available for free installation. 10. Ollama: An open-source AI solution with a user-friendly interface, free to install and use on Windows.

Winsage

December 7, 2025

Microsoft’s revamping Windows 11’s Run prompt, and already there are jokes about Copilot integration – alongside more serious worries

A significant update for the 'Run' dialog box in Windows 11 is forthcoming, featuring a modern design aligned with Microsoft's Fluent design language. The revamped Run box will display a list of recently used commands above the command line and include icons for applications. This update will not replace the existing version but will be an optional feature that users can enable through the Settings menu. Screenshots suggest the new Run box is ready for broader use, although it will not include AI enhancements at this time. The Run box can be accessed by pressing Windows key + R, allowing users to input various commands.

AppWizard

November 27, 2025

If you love Minecraft, this new Thermaltake CPU cooler is absolutely perfect for you

The Thermaltake Minecube 360 Ultra ARGB Sync CPU cooler is an all-in-one liquid cooler featuring four LCD displays arranged in a cube design. Each display measures 3.95 inches square with a resolution of 720 x 720, and the cooler supports various image and video formats through its TT LCD Screen Software. Users can customize visuals and monitor system information like memory usage and CPU temperature. The cooler has a copper base, a 27mm thick radiator, and three 120mm Swafan EX ARGB Sync fans. It is priced at 9, making it one of the more expensive coolers on the market.

Winsage

November 16, 2025

I gave Windows Command Prompt the “Pimp my Ride” treatment and it’s so much fun now

Oh My Posh is a customization tool for command-line interfaces that allows users to enhance their terminal experience by displaying relevant information, such as Git repository status and real-time updates from applications like Spotify. To set it up, users need to customize their Color Scheme in the Windows Terminal and install a Nerd Font for displaying glyphs. The installation of Oh My Posh can be initiated with the command PLACEHOLDER5dee3f180dc01d05, and users can verify the installation by running PLACEHOLDERc79b60db6f07f844. To further enhance the terminal, users can install Winfetch with the command Install-Script -Name pwshfetch-test-1 and add an alias for easy access to system stats. Overall, Oh My Posh provides flexibility for users to tailor their terminal to their workflows and preferences.

Tech Optimizer

November 13, 2025

Hackers Using RMM Tools LogMeIn and PDQ Connect to Deploy Malware as Legitimate Software

Cybersecurity researchers at AhnLab Security Intelligence Center (ASEC) have discovered an attack campaign that uses legitimate Remote Monitoring and Management (RMM) tools, specifically LogMeIn Resolve and PDQ Connect, to deploy backdoor malware on users' systems. Attackers lure victims to fake download sites that mimic legitimate software pages for utilities like Notepad++, 7-Zip, and VLC Media Player, delivering modified versions of LogMeIn Resolve. The malicious installers are disguised with filenames such as "notepad++.exe" and "chatgpt.exe." Once executed, these files install the RMM tool and additional malware capable of stealing sensitive information. ASEC has identified three CompanyId values associated with the attacks: 8347338797131280000, 1995653637248070000, and 4586548334491120000. The malware, known as PatoRAT, is a Delphi-developed backdoor that gathers system information and has extensive malicious capabilities, including keylogging and remote desktop access. Users are advised to download software only from official websites and verify digital signatures, while organizations should monitor for unauthorized RMM installations and the identified indicators of compromise.

Tech Optimizer

November 6, 2025

EndClient RAT Abuses Stolen Code-Signing Certificate to Evade Antivirus Detection

North Korean cyber actors have developed a Remote Access Trojan (RAT) called "EndClient RAT," targeting human rights defenders in South Korea and internationally. This malware evades antivirus detection by using stolen code-signing certificates and is delivered through a Microsoft Installer package named "StressClear.msi," which is signed by a Chinese firm. The RAT deploys an AutoIT-based payload, creates a scheduled task for persistence, and communicates with its command-and-control server using a custom protocol. Detection rates for EndClient RAT are low, with only 7 out of 64 detections for the dropper and 1 out of 64 for the payload script. Organizations are advised to block identified indicators of compromise and treat signed MSIs as untrusted until verified.

Winsage

November 3, 2025

Windows Graphics Vulnerabilities Allow Remote Attackers to Execute Arbitrary Code

Multiple vulnerabilities have been identified in Microsoft’s Graphics Device Interface (GDI), particularly related to Enhanced Metafile (EMF) formats, allowing potential remote code execution and information exfiltration. Key vulnerabilities include: - CVE-2025-30388: Rated Important with a CVSS score of 8.8, it involves out-of-bounds memory operations during processing of records, affecting Windows 10/11 and Office for Mac/Android. It allows attackers to read or write beyond allocated heap buffers. - CVE-2025-53766: Rated Critical with a CVSS score of 9.8, it permits remote code execution through out-of-bounds writes in the ScanOperation::AlphaDivide_sRGB function, affecting Windows 10/11 without requiring privileges. - CVE-2025-47984: Rated Important with a CVSS score of 7.5, it exploits a flaw in handling EMR_STARTDOC records, leading to information disclosure by exposing adjacent heap memory. Microsoft has released patches to address these vulnerabilities, and users are advised to apply them promptly. Recommendations include disabling EMF rendering in untrusted contexts and using sandboxed viewers for document access.

Winsage

November 2, 2025

Windows Task Manager is fine, but this is the tool I actually use

Windows Task Manager has evolved to align with Windows 11's aesthetics while improving functionality, but some users find it frustrating when processes won't terminate. Process Explorer is an alternative that offers a clearer interface, real-time monitoring, and detailed statistics. It displays hardware graphs at the top and consolidates key metrics into a single view, including the total number of active processes. Users can hover over processes for quick information and access a comprehensive properties view by double-clicking. Process Explorer allows adding columns for process paths and related services, provides graphical views of resource usage, and enables the termination of stubborn processes. It also offers a refresh rate as low as 0.5 seconds and displays comprehensive graphical statistics since system boot-up. Additionally, it integrates with Virus Total to verify processes against a database, includes a tool for searching processes online, and features a lens tool for identifying process names. Process Explorer is considered a superior alternative for advanced users due to its rich features and security integration.

AppWizard

October 24, 2025

New Python Remote-Access Trojan Disguised as Minecraft App Steals Files

A new Python-based remote-access trojan (RAT) has been discovered, targeting gamers by impersonating the legitimate “Nursultan Client” application used by Eastern European Minecraft players. It utilizes the Telegram Bot API for command-and-control operations, allowing attackers to exfiltrate sensitive data and control systems on Windows, Linux, and macOS. The malware employs deceptive installation screens and manipulates the Windows registry to appear as legitimate software, but its persistence mechanism is flawed, failing to survive system reboots. It contains hardcoded credentials, enabling specific attacker control, and can perform functions like system reconnaissance, data theft, and remote surveillance, particularly targeting Discord authentication tokens. The RAT can capture screenshots and activate webcams, sending this information through the Telegram API, which complicates detection. It also has adware-like features that display URLs and images on victims' systems. Researchers believe this malware is part of a Malware-as-a-Service ecosystem, and its signature is identified as QD:Trojan.GenericKDQ.F8A018F2A0 by Netskope’s Advanced Threat Protection.

AppWizard

October 15, 2025

This mini gaming PC is actually a new Edifier computer speaker in disguise

Edifier has introduced the Huazai New Cyber, a computer speaker designed to resemble a high-end gaming PC, featuring a fishtank case, wraparound window panel, and a 2.8-inch LCD screen. The speaker includes light-up bars that mimic RGB RAM sticks and illuminated rings that resemble RGB fans. It has a 2.1 configuration with a total output of 60W, consisting of a 40W subwoofer and 10W side speakers. The mock graphics cards house essential components, with the top card containing a signal processing module and the bottom card managing power. The LCD screen can display song lyrics and system information when connected via USB. It also functions as a charging station with USB-C and USB-A ports. The dimensions of the speaker are 293.6 x 150.7 x 213.6mm, and it is priced at 1,499 yuan in China.