Using wevtutil command under Windows – part 002.

In this tutorial I make a script for clean all events.
The script is very simple and is just a run of wevtutil command and some printing messages.
Open your editor and save the script with the extensions bat or cmd.
Also you need to have Administrator rights to run the script.
The script run FOR ,IF and GOTO selections to run well with the admin.
First and second lines of code is for to run the batch file and throw up admin rights.
Lets see the source code.

Windows 10 – Can you delete the $WINDOWS.~BT folder ?

First the $WINDOWS.~BT folder are associated with the Windows 10 and Windows 8 upgrade process.
The advice is: Do not delete it.
The folder may using gigabytes of disk space.
If you really want to delete it then you can try to use Disk Cleanup tool.
This included with whatever version of Windows you’re using bu click right on C:\ then select Properties.
On Disk Cleanup tool and click Clean Up System Files.
Select this:

  • Previous Windows installation(s) on Windows 10;
  • Temporary Windows installation files on Windows 7 and 8;

Press the OK button to remove the files.
If don’t see one of this selection then don’t try to remove it.

PowerShell tips – part 008.

This tutorial is about PowerShell and running script to disable some Services in Windows.
The Windows PowerShell execution policy is allow your scripts to run on your computer.
If you want to see the Windows PowerShell execution policy, use the Get-ExecutionPolicy command.
To change the Windows PowerShell execution policy on your computer, use the Set-ExecutionPolicy command.
You can see all of the execution policies that affect the current session by using Get-ExecutionPolicy -List command.
To run my script is need to have a command shell administrator rights and select a policy that allov to run the script ( example: Unrestricted) .

After running the script the output is this:

Windows 10 – Microsoft Network Monitor tool .

This tool from Microsoft come with this information :
Microsoft Network Monitor is a tool for viewing the contents of network packets that are being sent and received over a live network connection or from a previously captured data file. It provides for complex analysis of network data through filtering options.
Is a tool for expert user into network issues, not for common user.
This will help you to recognize the signs that something on your network is compromised.
This will not help with Monitoring and Maintaining IP Multicast issues (is a more complex subject and I will not present it in this tutorial).
This tutorial is just about this tool.
Download the tool, I select the NM34_x64.exe – because I have a x64 CPU.
Install the tool , select Capture1 and press Start button.
If the tool need to install something with log out and log in, just do it.
The you can capture the network traffic and parse all infos.
The development team come also with this feature:
Network Monitor 3.3 introduces the Experts menu. This feature allows you to run external analysis tools on an open capture file.
Take a look at this screenshot :

Windows 10 – Clear all event logs in Event Viewer with PowerShell .

Run cmd command shell into administrator mode.
Type Powershell command to start the Powershell shell.
Run the next Powershell command to clear all event logs in Event Viewer: