In July 2024, a faulty update from CrowdStrike’s (an American cybersecurity technology company) endpoint security software caused a widespread outage for many Windows users, and the following screen appears afterwards:
Here’s how to address a Microsoft Windows outage caused by a faulty CrowdStrike update:
Important Note: These steps involve modifying system files and could potentially cause further issues if not done correctly. Proceed with caution, especially if you’re not comfortable with technical procedures. It’s recommended to back up your data before attempting these steps.
Workaround for Individual PCs in 4 Easy Steps:
Step1: Boot into Safe Mode or Windows Recovery Environment (WRE):
This will load Windows with minimal drivers and programs.
Specific instructions on entering Safe Mode or WRE for Windows 11
OR
Specific instructions on entering Safe Mode or WRE for Windows 10
Step 2: Navigation to the file:
Once in Safe Mode/WRE, use the File Explorer to go to the following directory:C:\Windows\System32\drivers\CrowdStrike
Step 3: Delete the Faulty Channel File:
Look for a file named “C-00000291.sys” (the asterisk represents wildcard characters). Delete this specific file after investigating the following:
- Channel file “C-00000291*.sys” with timestamp of 0527 UTC or later is the reverted (good) version.
- Channel file “C-00000291*.sys” with timestamp of 0409 UTC is the problematic version.
Step 4: Restart your PC:
Reboot your computer normally. This should remove the problematic CrowdStrike file and hopefully resolve the outage.
For Cloud Environments or Virtual Machines:
The process is more involved for cloud environments or virtual machines. It’s recommended to consult a system administrator or refer to CrowdStrike’s official documentation for detailed instructions which you can find on their website: crowdstrike statement on falcon content update for windows hosts
Remember, these are temporary workarounds. It’s advisable to stay updated on the situation and follow any official guidance from Microsoft or CrowdStrike for a permanent fix.
Call us for our No Fix No Fee service of $120.
