Event Viewer Archives

Winsage

March 2, 2025

Learn Windows PowerShell and automation scripting with this $20 bundle

Automation is increasingly important for businesses, and mastering Windows PowerShell can enhance productivity. A certification training bundle for PowerShell is available for .99, originally priced higher, led by IT professional Vijay Saini. The bundle includes six courses totaling 18 hours of content, providing lifelong access. Courses cover basic scripting, advanced scripting techniques, and GUI automation using Python, along with system management tools. Participants receive certificates upon completion, which can be added to LinkedIn profiles or resumes. The offer is time-sensitive and subject to price changes.

Winsage

February 25, 2025

Windows 10 KB5052077 update fixes broken SSH connections

Microsoft has released the optional KB5052077 preview cumulative update for Windows 10 22H2, which includes nine bug fixes and enhancements, notably addressing an SSH connection issue acknowledged in November. This issue affects a limited number of devices on Windows enterprise, IoT, and education editions, with ongoing investigations into potential impacts on Windows Home or Pro editions. The update elevates Windows 10 22H2 systems to Build 19045.5555 and includes fixes for the Desktop Window Manager, Chinese IME responsiveness, and color contrast issues. Two known issues are associated with KB5052077: one involving Citrix components that may obstruct the installation of the January 2025 Windows security update, and another related to a System Guard Runtime Monitor Broker services issue generating 'Event 7023' errors. Over 60% of Windows systems globally still run on Windows 10, despite its approaching end of support, while certain Long-Term Servicing Channel and Long-Term Servicing Branch releases will continue to receive updates beyond October 2025.

Winsage

February 18, 2025

100+ run commands that can help you work efficiently on Windows

Windows 11 and 10 provide run commands that streamline workflow by allowing quick access to various system tools, applications, settings, and diagnostic features. Administrative Tools: - compmgmt.msc: Opens Computer Management. - devmgmt.msc: Launches Device Manager. - diskmgmt.msc: Opens Disk Management. - services.msc: Manages background services. - eventvwr.msc: Opens Event Viewer. - secpol.msc: Opens Local Security Policy. - regedit: Opens Registry Editor. - taskschd.msc: Opens Task Scheduler. - gpedit.msc: Opens Group Policy Editor (Pro & Enterprise). System Diagnostics and Troubleshooting: - msinfo32: Opens System Information. - dxdiag: Launches DirectX Diagnostic Tool. - verifier: Opens Driver Verifier Manager. - resmon: Opens Resource Monitor. - perfmon: Opens Performance Monitor. - mdsched: Runs Windows Memory Diagnostic. - msdt: Opens Microsoft Support Diagnostic Tool. - dism /online /cleanup-image /restorehealth: Repairs Windows image. - sfc /scannow: Scans and repairs system files. - chkdsk: Runs Check Disk. - winver: Checks Windows version. - cleanmgr: Opens Disk Cleanup. File and Storage Management: - cleanmgr: Launches Disk Cleanup. - dfrgui: Opens Disk Defragmenter. - chkdsk: Checks and repairs disk errors. - diskpart: Opens Disk Partition utility. - onedrive: Opens OneDrive folder. - shell:AppsFolder: Opens all apps folder. - wab: Opens Windows contacts folder. - explorer: Opens File Explorer. - recent: Opens recent files and folders. - documents: Opens Documents folder. - downloads: Opens Downloads folder. - favorites: Opens Favorites folder. - pictures: Opens Pictures folder. - videos: Opens Videos folder. - %AppData%: Opens App Data folder. - debug: Accesses Debug folder. - backup: Opens backup folder. - %systemdrive%: Opens system drive. Security and Maintenance: - firewall.cpl: Opens Windows Defender Firewall. - wf.msc: Launches Firewall with advanced security. - ms-settings:windowsdefender: Opens Windows Security. - sigverif: Verifies file signatures. - verifier: Checks driver integrity. - msconfig: Opens System Configuration. - sfc /scannow: Runs system file checker. - dism /online /cleanup-image /restorehealth: Repairs Windows image. Launching Apps: - notepad: Opens Notepad. - calc: Launches Calculator. - snippingtool: Opens Snipping Tool. - mspaint: Opens Microsoft Paint. - winword: Starts Microsoft Word. - excel: Opens Microsoft Excel. - chrome: Launches Google Chrome. - msedge: Opens Microsoft Edge. - control: Opens Control Panel. - explorer: Opens File Explorer. - powerpnt: Opens Microsoft PowerPoint. - firefox: Opens Mozilla Firefox. - wmplayer: Opens Windows Media Player. - msra: Opens Windows Remote Assistance. - outlook: Opens Microsoft Outlook. Navigating Settings: - ms-settings: Opens main Settings app. - ms-settings:network: Opens network & internet settings. - ms-settings:display: Opens display settings. - ms-settings:personalization: Opens personalization settings. - ms-settings:windowsupdate: Opens Windows Update settings. - ms-settings:privacy: Opens Privacy settings. - ms-settings:bluetooth: Opens Bluetooth settings. - ms-settings:devices: Opens Devices settings. - ms-settings:system: Opens System settings. - ms-settings:accounts: Opens Accounts settings. - ms-settings:timeandlanguage: Opens Time & Language settings. - ms-settings:gaming: Opens Gaming settings. - ms-settings:region: Opens Region settings. - ms-settings:optionalfeatures: Opens Optional Features settings. - ms-settings:storage: Opens Storage settings. - ms-settings:notifications: Opens Notifications settings. - ms-settings:taskbar: Opens Taskbar settings. - ms-settings:start: Opens Start Menu settings. - ms-settings:lockscreen: Opens Lock Screen settings. Network and Connectivity: - ncpa.cpl: Opens Network Connections. - ipconfig: Displays IP configuration. - ping: Tests network connectivity. - control netconnections: Opens Network and Sharing Center. - ms-settings:network-wifi: Opens Wi-Fi settings. - ms-settings:datausage: View data usage. - ms-settings:network-vpn: Manage VPN. - ms-settings:network-proxy: Configures proxy settings. Display and Appearance: - desk.cpl: Opens Display Settings. - control color: Customizes window colors. - dpiscaling: Opens display scaling settings. - ms-settings:personalization: Opens Personalization settings. - ms-settings:themes: Changes desktop themes. - ms-settings:display-advanced: Adjusts advanced display settings. Accessibility: - magnify: Opens Magnifier. - narrator: Launches Narrator. - osk: Opens on-screen keyboard. - utilman: Opens Ease of Access Center. - ms-settings:easeofaccess-display: Opens display accessibility settings. - ms-settings:easeofaccess-cursor: Opens cursor accessibility settings. - ms-settings:easeofaccess-mouse: Opens mouse accessibility settings. - ms-settings:easeofaccess-keyboard: Opens keyboard accessibility settings. - ms-settings:easeofaccess-narrator: Opens narrator accessibility settings. - ms-settings:easeofaccess-magnifier: Opens magnifier accessibility settings. - ms-settings:easeofaccess-colorfilter: Opens color filter accessibility settings. - ms-settings:easeofaccess-highcontrast: Opens high contrast accessibility settings. - ms-settings:easeofaccess-closedcaptioning: Opens closed captioning accessibility settings. - ms-settings:easeofaccess-audio: Opens audio accessibility settings. - ms-settings:easeofaccess-eyecontrol: Opens eye control accessibility settings. - ms-settings:easeofaccess-mousepointer: Opens mouse pointer accessibility settings. Power Management: - powercfg.cpl: Opens Power Options. - ms-settings:powersleep: Adjusts power and sleep settings. - powercfg /batteryreport: Generates a battery report. - powercfg /energy: Creates an energy efficiency report. - powercfg /hibernate: Enables or disables hibernation. - powercfg /deviceenablewake: Enables a device to wake the computer. - powercfg /devicedisablewake: Disables a device from waking the computer.

Winsage

February 11, 2025

Windows 10 KB5051974 update force installs new Microsoft Outlook app

Microsoft has released the KB5051974 cumulative update for Windows 10 versions 22H2 and 21H2, which includes the new Outlook for Windows app and addresses a memory leak issue. This mandatory update provides essential security updates for January 2025 and can be installed via Windows Update. After installation, version 22H2 will be updated to build 19045.5487, and version 21H2 to build 19044.5487. Users can also manually download the update from the Microsoft Update Catalog. The update includes several fixes, such as the introduction of the new Outlook app, resolution of issues with the Capture Service and Snipping Tool, disabling automatic suggestions from Bing in the Chinese Pinyin IME, fixes for USB audio device driver issues, and a solution for virtual memory depletion. Three known issues from previous updates include potential failures in OpenSSH connections, installation failures due to the Citrix Session Recording Agent, and an Event 7023 error related to SgrmBroker.exe, which does not affect device functionality. Microsoft plans to address these issues in future updates.

Winsage

February 11, 2025

9 SysInternals tools that should be built into Windows

Windows is a popular operating system known for its versatility but often lacks advanced troubleshooting and system monitoring tools. SysInternals is a suite of utilities developed by Microsoft for power users and IT professionals, offering enhanced control over systems. Key tools in the SysInternals suite include: - Process Explorer (procexp.exe): Provides a detailed overview of running processes, including resource usage and file access, and allows users to identify locked files and potential malware. - Process Monitor (procmon.exe): Records file system, registry, and process activities in real-time, with filtering options to diagnose performance issues and application errors. - Autoruns (autoruns.exe): Displays all startup programs and processes, allowing users to disable or delete unnecessary entries to improve performance and security. - TCPView (tcpview.exe): Shows active TCP and UDP connections, detailing which processes are using network connections, enabling users to manage network activity. - SDelete (sdelete.exe): A command-line tool for secure file deletion that overwrites data to prevent recovery, useful for safeguarding sensitive information. - ZoomIt (zoomit.exe): Enhances presentations by allowing users to zoom in on screen areas and annotate, beneficial for educators and IT professionals. - RamMap (rammap.exe): Analyzes physical memory allocation, helping identify memory leaks and inefficient usage. - PendMoves (pendmoves.exe): Lists files scheduled for movement or deletion upon reboot, aiding in troubleshooting file modification issues. - BgInfo (bginfo.exe): Generates a desktop background displaying vital system information, customizable for user needs. The integration of these tools into Windows would enhance its diagnostic and troubleshooting capabilities, benefiting both everyday and power users.

Winsage

February 10, 2025

5 built-in tools to use when troubleshooting Windows problems

Windows 11 is known for its stability and secure upgrade process, allowing seamless rollback to previous versions if issues occur. It includes troubleshooting tools like Event Viewer, which consolidates system event logs and helps identify causes of failures; Task Manager, which displays active applications and performance metrics; Resource Monitor, providing real-time data on resource usage; Command Prompt, enabling execution of diagnostic commands; and PowerShell, offering advanced scripting and automation capabilities. These tools assist users in diagnosing and resolving Windows-related issues effectively.

Winsage

December 26, 2024

ACPI wake alarm does not disable; How to disable it?

If your Windows system is waking up at night due to an ACPI Wake Alarm, you can try several solutions to resolve the issue: 1. Adjust Hibernate Settings: Change the Hibernate after Sleep feature in Power Options to a higher value or disable it by setting it to 0 (Never). 2. BIOS/UEFI Configuration: Access the BIOS/UEFI setup and disable the Wake on RTC Alarm if enabled. 3. PowerShell and Command Line for Wake Timers: Use commands like PLACEHOLDERd65d9fd27963b5bd to review power settings and PLACEHOLDER0384fd2e90496902 to disable specific devices from waking the computer. 4. Disable Wake Timers: In Power Settings, set Allow wake timers to disable for both On Battery and Plugged In states. 5. Check Security and Maintenance Settings: Uncheck the option for Allow scheduled maintenance to wake up my computer in the Security and Maintenance settings. 6. Task Scheduler Settings: Review scheduled tasks and uncheck the “Wake the computer to run this task” option in the Conditions tab. 7. Event Viewer Analysis: Check the Event Viewer under Windows Logs > System to identify the Wake Source, which may indicate the ACPI Wake Alarm. The issue often arises from ACPI wake alarms that can override wake timer settings, necessitating a thorough examination of all related configurations to fully disable them.

Winsage

December 5, 2024

Acquisition of End User License failed, Event ID 1014 [Fix]

Event ID 1014 indicates that the Acquisition of End User License failed, which can occur during Microsoft 365 deployment or the activation of a new Windows computer. Solutions to address this issue include: 1. Disable Automatically detect settings in LAN settings. 2. Ensure a consistent network during activation. 3. Disable Proxy or VPN connections. 4. Reset the Activation Timer using the command slmgr /rearm. 5. Activate the Windows machine to a Key Management Services (KMS) using the command PLACEHOLDER5852eabe88a412c9 followed by PLACEHOLDER223497629b2020eb. 6. Repair Office or Microsoft 365 through the Apps settings. Event ID 4625 pertains to failed logon attempts in the Windows event log.

Winsage

November 30, 2024

9 Windows utilities every power user should know about

Windows 11 includes various tools for system management, catering to both novice and advanced users. 1. Task Manager: Allows users to manage applications, monitor CPU, RAM, and disk usage, manage startup applications, and create memory dump files for troubleshooting. 2. Device Manager: Helps resolve hardware issues by identifying malfunctioning components, rolling back problematic drivers, and manually installing drivers. 3. Resource Monitor: Provides detailed graphs of CPU, disk, and memory usage, along with specific process details for diagnosing performance issues. 4. System Configuration: Useful for booting into Safe Mode for diagnostics and troubleshooting driver-related issues. 5. Task Scheduler: Automates tasks based on triggers, allowing users to launch programs simultaneously and set up recurring tasks. 6. Windows Terminal: A powerful interface for power users that provides access to system maintenance tools and allows application installation and user account management. 7. Registry Editor: Enables advanced users to modify system settings that are otherwise inaccessible, with caution advised due to potential system instability. 8. Event Viewer: Monitors system events, logs blue screen errors (BSODs), and provides critical information for diagnosing system failures. 9. Disk Management: Oversees connected drives and manages partitions, allowing users to create, delete, format volumes, and attach virtual hard drives.

Winsage

November 3, 2024

Microsoft confirms issues in Windows 10 KB5045594, KB5044273 (mandatory update)

Windows 10 users are experiencing new bugs as the operating system nears its end of support, scheduled for less than a year from now. Microsoft has acknowledged at least three issues related to recent updates KB5044273 and KB5045594. Users have reported installation problems with error code 0x800f0805 and significant challenges with applications failing to launch after the updates. Specific issues include: 1. Applications, such as those on Lenovo 20WE computers, fail to open after the KB5044273 update, with a workaround involving uninstalling the update. 2. Certain apps, including Wallpaper Engine and TranslucentTB, do not start automatically upon logging in. 3. Microsoft confirmed that applications like Teams, Narrator, and Quick Assist may crash when accessed by non-administrator users, particularly if launched with non-admin rights. 4. Enterprise customers using Azure Virtual Desktop (AVD) may encounter a black screen upon login and issues with logging out, along with potential crashes of the Start menu. 5. Another black screen issue during the AVD login process can last from 10 to 30 minutes. Microsoft is working on fixes, expected to be released on November 12, and has announced an option to extend security updates for Windows 10 until October 14, 2026.