Create a Disk Space Health Check Routine with PowerShell and Task Scheduler
Difficulty: Intermediate | Time Required: 15-25 minutes
Introduction
Keeping an eye on disk space is a simple but effective way to prevent performance slowdowns and unexpected outages. A small routine that runs...
Windows 10 keeps a running flight recorder of system events — and the built‑in Event Viewer is the single most powerful tool for reading that record, diagnosing crashes, tracing service failures, and building a repeatable troubleshooting workflow that works for both home power users and IT...
Windows Server 2019 ships with Remote Desktop (RDP) capability turned off by default for safety; enabling it is simple but needs care. This feature piece walks through three reliable methods to enable Remote Desktop on Windows Server 2019 — PowerShell, Server Manager GUI, and the System...
Diagnose App Crashes & Startup Issues with Event Viewer and Custom Views (Win10/11)
Difficulty: Intermediate | Time Required: 20-30 minutes
Introduction
When an app crashes or Windows takes forever to start, the first place to look is the Event Viewer. Event Viewer records system, application...
Knowing who is logged into a Windows Server at any given moment is an admin’s basic toolkit — it helps you troubleshoot resource contention, track unauthorized access, and clean up idle or orphaned Remote Desktop sessions quickly and safely.
Background
Windows Server exposes multiple...
Microsoft and Phison have pushed back hard against a wave of social-media claims that the latest Windows 11 cumulative update is “bricking” NVMe SSDs — but the episode exposes a brittle edge case in modern storage stacks, a gap between telemetry and forensic proof, and practical steps every...
Title: CVE‑2025‑53148 — What Windows admins need to know about the RRAS “uninitialized resource” information‑disclosure issue (analysis, risk, detection and remediation)
Short summary for busy admins
You sent the MSRC link for CVE‑2025‑53148 (Routing and Remote Access Service / RRAS). I could...
cve-2025-53148
detection
eventlog
firewall
incident response
information disclosure
infosec
network security
patch tuesday 2025
powershell
remediation
routing and remote access service
rras
security patch
uninitialized resource
vpn
vulnerability
windows security
windows server
windows update
Title: CVE-2025-50171 — Remote Desktop "Missing authorization" (spoofing) vulnerability — what admins must know and do now
TL;DR (quick action checklist)
This CVE (CVE-2025-50171) is a Microsoft-reported vulnerability in Remote Desktop Server described as a “missing authorization” that allows...
Hello,
I have a computer that is not a member of a Windows domain and I access a folder on the file server through a shortcut and username defined in Active Directory. When I check the Event Viewer, there are a lot of ID 4648 and the username is locked in Active Directory:
I unlock the...
Windows 11 continues its relentless pace of refinement and stability improvements, and the release of build 26100.4767 (KB5062663) to the Release Preview Channel is a clear testament to Microsoft’s commitment. While it arrived quietly—serving as a follow-up to build 26100.4762, which debuted...
build 26120
chinese ime
egpu recognition
enterprise windows
eventlog
firewall
graphics card
group policy
group policy editor
ime fix
indic languages
input method editor
kb5062663
security logs
system stability
thunderbolt external gpu
windows 11
windows stability
windows update
Here’s a summary of the recent Windows 11 Firewall (with Advanced Security) issue and its resolution:
What happened?
In Windows 11 24H2’s preview updates, some users noticed repeated error messages in the Windows Event Log, reading “Config Read Failed” and “More data is available”. These errors...
advanced security
error logs
eventlog
extended security updates
firewall
firewall error
kb5062553
repetitive error messages
security fixes
system update
troubleshooting
windows 11
windows 11 24h2
windows central
windows defender
windows error
windows security
windows troubleshooting
Microsoft's recent release of Windows 11 update KB5060829 has introduced a notable issue concerning the Windows Firewall. Users have reported encountering a recurring error in the Security event log, specifically Event ID 2042 labeled "Config Read Failed" with the message "More data is...
config read failed
error logs
event filter
event id
eventlogevent viewer
event viewer customization
firewall
firewall error
kb5060829
logs
powershell
softwareupdateproblems
windows 11
windows 11 troubleshooting
windows error
windows firewall fix
windows forum
windows logs
windows security
windows troubleshooting
windows update
Windows 11 users are no strangers to regular updates that promise security, performance improvements, and new features, but occasionally, these updates introduce unforeseen complications. Microsoft’s June preview update, KB5060829 (Build 26100.4484) for Windows 11 24H2, is a textbook example...
enterprise security
event id
eventlogevent viewer
firewall
firewall error
kb5060829
log filtering
microsoft
microsoft patch
preview
security
tech support
troubleshooting
update issues
windows 11
windows administration
windows bugs
windows security
windows update
Hello, I'm having a lot of problems with my newly upgraded pc recently. After playing a game for a bit it crashes and sometimes my pc crashes too. In the event viewer I get a lot of different errors when I look at it after I crashed. These are as followed:
The server {} did not register with...
For enterprises and educational institutions determined to minimize disruption while staying ahead of cyber threats, the new hotpatch feature for Windows 11 Enterprise and Education, version 24H2, represents a compelling evolution in update management. As Microsoft introduces this technology to...
arm64
cybersecurity
enterprise security
eventlog
forensics
hotpatching
intune
it administration
microsoft education
patch cycle
patch management
patch testing
security updates
system reliability
system uptime
update management
vbs
windows 11
windows 11 enterprise
windows compatibility
Microsoft’s history with Windows updates has often been punctuated by instances where critical security patches—introduced to defend against real-world threats—have triggered unexpected issues in enterprise environments. The April 2025 Patch Tuesday release is one such event, and its fallout has...
active directory
authentication
certificate validation
certificate-based logon
domain controller
enterprise security
eventlog
kerberos authentication
kerberos vulnerabilities
ntauth store
patch
pki
pkinit
registry tweaks
security best practices
security updates
windows security
windows server
windows troubleshooting
windows update
In October 2022, Microsoft introduced significant security enhancements to the domain join process through update KB5020276, aiming to mitigate vulnerabilities associated with computer account reuse in Active Directory environments. These changes, while bolstering security, have necessitated...
I am just about finished with a new Windows Server 2022 Standard build using an ASUS P12R-E/10G-2T motherboard.
It has a provision to add a TPM module, however, it works fine without it aside from an Event Log error at every startup.
Wondering what the thoughts are regarding adding the TPM...
asus p12r-e
bitlocker
data protection
eventlog
hardware compatibility
hardware upgrade
security best practices
server build
server management
server security
startup issues
system lockup
tpm
tpm risks
windows server 2022
Corrupted event log files can be as vexing as a grumpy neighbor knocking on your door at 3 a.m. Except when Windows starts complaining with error messages like “The handle is invalid” or “Remote Procedure Call failed,” you know something’s gone awry. When event logs become corrupt...