Windows version Archives

Winsage

June 17, 2026

Windows SprySOCKS Malware: Advanced Kernel-Level Rootkit Targets Government Organizations via Supply Chain Vulnerabilities

The Windows variant of SprySOCKS malware, developed by the Chinese threat group Earth Lusca, targets government entities globally and features advanced capabilities such as rootkit-level stealth and extensive command-and-control (C2) functionalities. It operates on Windows systems, utilizing two main variants: WINDRV, which includes kernel drivers for stealth operations, and WINPLUS, a streamlined backdoor. The malware can communicate over TCP, UDP, and WebSocket, offering over 30 C2 commands for various operations, including system information gathering and keystroke logging. WINDRV loads a driver named ‘RawWNPF’ into memory using another signed kernel driver, allowing it to conceal processes and achieve persistence. The malware's design incorporates open-source elements and exploits vulnerabilities in the software supply chain, notably using a leaked certificate for driver signing. To combat SprySOCKS, organizations are advised to implement advanced endpoint detection and response (EDR) solutions, maintain regular patching, and manage supply chain risks vigilantly. The malware's adaptability and reliance on legitimate certificates complicate detection efforts, necessitating continuous refinement of security practices.

Winsage

June 16, 2026

China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth

Cybersecurity researchers have identified two new Windows variants of the SprySOCKS backdoor, named WINDRV and WINPLUS, which were previously thought to be exclusive to Linux systems. Both variants feature hard-coded command-and-control configurations and can communicate via TCP, UDP, and WebSocket protocols. They support over 30 commands for operations such as system information collection and file management. WINDRV employs kernel drivers for stealth, obscuring network connections and allowing TCP traffic diversion. SprySOCKS was first documented by Trend Micro in September 2023, linked to the Chinese state-sponsored threat actor Earth Lusca, also known as FishMonger. The Windows variants belong to version 1.8 of SprySOCKS and utilize a kernel driver named RawWNPF for enhanced stealth. The attack chain begins with an initial access method that drops a batch script, leading to the installation of the backdoor. Evidence suggests these variants may have been used in attacks against government organizations in Honduras, Taiwan, Thailand, and Pakistan between 2023 and 2024. The WINPLUS variant was first detected in July 2024 in Pakistan. There are indications of a potential UEFI bootkit involvement exploiting CVE-2023-24932, a vulnerability in the Windows Boot Manager.

Winsage

June 16, 2026

Windows 11 KB5094126 BSODing, freezing, forcing BitLocker lockout, breaks OneDrive, and more

Microsoft rolled out Patch Tuesday updates for Windows 11, specifically KB5094126 and KB5093998, along with dynamic updates KB5094149, KB5095971, and KB5094156. Users have reported various issues post-update, including access difficulties with OneDrive and Dropbox, BitLocker recovery lockouts, and blue screens of death (BSOD), particularly the 0xc0430001 error on HP systems. This error may be linked to a previous bug affecting HP devices related to Secure Boot certificate updates. Users experiencing this error are advised to verify the presence of the boot.stl file on their installation media, as it is essential for Secure Boot. Microsoft recommends using the Update WinPE script to ensure the boot.stl file is included or manually transferring it from the WindowsBootEFI directory. Additionally, some Lenovo PC users have reported system freezes after the update. One user identified a conflict between KB5094126 and User Account Control (UAC) that affects OneDrive and Dropbox access in Explorer, noting that enabling UAC resolves the issue.

Tech Optimizer

June 11, 2026

Avast One: Security and privacy suite under the microscope

Avast One is the flagship consumer security suite from Avast (Gen Digital), combining antivirus, firewall, VPN, and privacy utilities into a single subscription for Windows, macOS, Android, and iOS. It offers four primary areas: device security, online privacy, identity protection, and performance tools. Device security includes real-time antivirus, Web Shield, Mail Shield, and Ransomware Shield. The online privacy component features a full VPN service with bank-grade encryption and a no-logs policy. Identity protection includes data breach monitoring and, in some markets, credit monitoring. Performance tools assist with disk cleanup and system optimization. Avast One has three plan tiers: Avast One Essential (free), Avast One Individual (paid, supports multiple devices), and Avast One Family (paid, supports up to 30 devices). Pricing varies based on promotions, with Avast One Individual typically around per year and Avast One Family ranging from to 0 per year. The suite can be downloaded directly from Avast's website, with installers available for various platforms. Avast One includes automatic updates and is designed to operate lightly on modern hardware, with options to minimize system impact during scans. Customer support includes self-help documentation, community forums, and direct support for paying customers. Avast One aims to appeal to both non-technical users and power users, providing a user-friendly interface while allowing for advanced configurations. The product is positioned as a comprehensive solution for households looking to secure multiple devices with a single subscription.

Winsage

June 11, 2026

ReactOS “Open-Source Windows” Reaches The Milestone Of Being Able To Run Half-Life

ReactOS has successfully executed the classic game Half-Life, marking a significant milestone in its goal of achieving binary compatibility with Microsoft Windows applications. This is the first documented instance of Half-Life running smoothly on ReactOS, allowing for gameplay. The successful execution was achieved by a user named "Zombiedeth" on a Dell OptiPlex with a Core i5 2400 processor and an NVIDIA GeForce 8400GS graphics card.

AppWizard

June 5, 2026

NetEase Games’ Eggy Party PC version goes live today

NetEase Games has launched a Windows version of its party game, Eggy Party, allowing for cross-platform account and data synchronization between mobile and PC. The PC version includes existing game modes such as Peak Party, Casual Party, and Eggy Farm, along with a new PC-exclusive map editor that enables users to create custom maps using keyboard-and-mouse controls. A Mac version of Eggy Party is also planned for future release.

Winsage

June 1, 2026

Microsoft confirms Windows 11 update is failing on some PCs, explains if you need a workaround

Microsoft has identified the root cause of installation issues related to the May 2026 update for Windows operating system and is rolling out a solution through an optional update, KB5089573. The May 12, 2026, Patch Tuesday update (KB5089549) introduced enhancements but many users faced installation failures due to error code “0x800f0922,” indicating insufficient space on the EFI System Partition (ESP). The ESP is critical for boot files and typically occupies around 256MB. Users can check ESP storage using a specific command. Low ESP space can lead to update failures, particularly when it drops below 10MB. Microsoft has rolled back problematic code and provided a fix in the optional update KB5089573, which resolves ESP space issues and ensures future updates will proceed smoothly. Users are encouraged to install this update or wait for the next scheduled Patch Tuesday update on June 9, 2026.

Winsage

May 31, 2026

Windows won the desktop by being compatible with everything, but that’s starting to look like a drawback

Windows has a 99.9% compatibility rate with PC applications, making it the most compatible operating system compared to macOS and Linux. Windows is unlikely to become an atomic or immutable operating system due to its reliance on its current architecture and the challenges of modifying the Registry, which supports many legacy applications. Microsoft aims to create a versatile operating system with Windows 11, which will also be used in the upcoming Xbox console, but this approach may lead to inefficiencies. Alternatives like Bazzite, a streamlined Linux OS, are gaining popularity for gaming performance. Microsoft is addressing the issue of poor driver quality through its Driver Quality Initiative, which may make some legacy hardware incompatible. As competitors innovate, Windows risks stagnation if it does not make necessary changes.

Winsage

May 31, 2026

First Windows PCs powered by Nvidia chips expected next week: Report

Nvidia is set to reveal its first Windows computers powered by its own chips at the Computex trade show in Taiwan and Microsoft’s Build developer conference in San Francisco. The initial models are expected to come from Microsoft’s Surface brand and Dell. Alongside the hardware launch, Microsoft plans to introduce software to simplify AI operations on Windows machines. Nvidia has been working to enter the PC processor market, previously known for its graphics chips. Microsoft aims to realign Windows with AI, following challenges with its initial AI PC initiative, Copilot+ PC. The company is now focusing on AI agents for local PCs and has established a team called OpenClaw for this purpose. Nvidia's entry into the PC market could benefit both itself and Microsoft, as well as Qualcomm, which has struggled to gain a significant share of the PC market despite its advantages.

Winsage

May 30, 2026

How to Free Up Disk Space on Windows 11

Your C: drive may be full, causing Windows to send reminders about low disk space or updates failing to install. Windows 11 includes built-in tools to help reclaim disk space. The guide outlines methods for recovering space, starting with the quickest techniques. 1. Cleanup Recommendations: Navigate to Start > Settings > System > Storage > Cleanup recommendations to review and remove temporary files, large or unused files, and apps. Deleting the previous Windows installation can recover several gigabytes but is irreversible. 2. Clear Temporary Files Manually: Go to Start > Settings > System > Storage > Temporary files to manually select and remove temporary files. 3. Empty the Recycle Bin: Right-click the Recycle Bin and select Empty Recycle Bin to reclaim space from deleted files. 4. Find and Move Large Personal Files: Use File Explorer to locate and move large files from Videos, Music, Pictures, or Downloads to an external drive. 5. Uninstall Unused Apps: Uninstall applications via Start > Settings > Apps > Installed apps, the Start menu, or Control Panel. 6. Turn On Storage Sense: Activate Storage Sense in Start > Settings > System > Storage to automate cleanups. 7. Configure Storage Sense Schedule: Adjust the schedule for Storage Sense cleanups in Start > Settings > System > Storage > Storage Sense. 8. Use Classic Disk Cleanup: Access the classic Disk Cleanup tool by typing "disk cleanup" in the search box to remove system files and items overlooked by the Settings scan. 9. Free Up Local Space with OneDrive Files On-Demand: Enable Files On-Demand in OneDrive settings to keep files in the cloud and free up local space. 10. Redirect Where New Content Is Saved: Change the default save location for new files in Start > Settings > System > Storage > Advanced storage settings. 11. Use External Storage to Install a Stuck Update: Connect an external USB drive with at least 10 GB of free space to assist with installing updates. 12. Rule Out Malware: Run a Windows Security antivirus scan if disk space continues to disappear unexpectedly. Deleting files in File Explorer moves them to the Recycle Bin, and space is not reclaimed until it is emptied. Deleting the previous Windows installation is irreversible and can only be done within 10 days of an upgrade. The KB5074105 update changed the scan context for Temporary files, preventing certain admin-restricted items from being detected. Storage Sense operates only on the system drive and does not automatically delete files in Downloads or OneDrive unless configured.