Please see the CrowdStrike Statement here for additional information: https://www.crowdstrike.com/blog/statement-on-windows-sensor-update/
Zip Support is available at info@zipsecinc.cc
Time of last update: 2:32pm EDT July 19, 2024
This will likely be the last update today. The resolution paths have stabilized. We have been in contact with all impacted Zip customers and have resolved all open cases. We will continue to be available and support any additional recovery as needed — please reach out to info@zipsecinc.cc if you need any additional assistance.
Time of last update: 10:52am EDT July 19, 2024
We have published more detailed recovery steps for our customers below.
Time of last update: 10:15am EDT July 19, 2024
The recent CrowdStrike Windows Update is causing Windows Devices around the world to fail to start (further information reported in the news). As a result of this faulty update from CrowdStrike, many systems experienced critical failures (including the Blue Screen of Death (BSOD) errors) significantly disrupting operations. This is an on-going situation that we are actively working on in order to support our affected customers. We will provide updates on this page throughout the day.
Below, you will find some remediation steps that may help address this issue. If any new information or instructions surface, we will update the below instructions.
Remediation Options for Users to Follow
Please try each of these in order. If you are successful, you do not need to proceed to the next step. If you are unsuccessful, please proceed to attempt the next step.
Method #1
Reboot your machine (up to 20 times).
We know this sounds silly. Users around the world have reported success with this method. Every time you start your computer, it tries to pull the updated file from the internet, which will fix your computer. Unfortunately because of the timing of this sequence, it only seems effective about 1 in 20 restarts. But this is likely the easiest method if you’re not comfortable booting your computer into safe mode.
The community has reported more success with computers connected to the internet via an ethernet cable. If you can, connect to an ethernet cable (instead of connecting to the internet via Wi-Fi) to increase the chances of success.
Method #2
CrowdStrike has provided the following instructions (you can also find them under the Official CrowdStrike Statement at https://www.crowdstrike.com/blog/statement-on-windows-sensor-update/ under the heading “Workaround Steps for Individual Hosts”)
- Reboot the computer to give it an opportunity to download the reverted channel file. If the computer crashes again, then:
- Boot Windows into Safe Mode or the Windows Recovery Environment. You will be prompted for this option on the third boot after 2 blue screen reboots.
- NOTE: Connecting the computer to a wired network (as opposed to WiFi) and using Safe Mode with Networking can help remediation.
- Navigate to the %WINDIR%\System32\drivers\CrowdStrike directory (Most likely C:\Windows\System32\drivers\CrowdStrike, which you can open from File Explorer)
- Locate the file matching
C-00000291*.sys, and delete it. The*means there may be additional characters after291. - Boot the computer normally.
Note: BitLocker-encrypted hosts may require a recovery key.
Where Do I Get My BitLocker Recovery Key?
- Try to find your Recovery Key by following these instructions from Microsoft https://support.microsoft.com/en-us/windows/finding-your-bitlocker-recovery-key-in-windows-6b71ad27-0b89-ea08-f143-056f5ab347d6
- If your key is not available there, and you did not write it down when you set up your computer, contact your IT manager.
Method #3
If you cannot recover through the methods above, you will likely need to reinstall Windows on your device.
Reset windows by following the below instructions (will require Bitlocker Recovery Key):
Reinstall windows by following the below instructions: