Was a long time project, an update to the Windows 10 book Manuel, Richard and I wrote a few years ago. Hopefully it’s well received. Been a journey, that’s for sure. Jeff
Category: blog
How to very easily capture a kernel dump in Windows 11 – no tools required
You need to collect a kernel dump from Windows 11 for a support professional, etc
Windows 11 task manager appears to have added this in, simply go to details and right click System and select Create live kernel memory dump file and then select Full live kernel memory dump.
Win11 and Edge – I zip bombed myself
Scenario: I had the pleasure recently of downloading two memory dumps on a Windows 11 machine using normal channel Edge. The ‘problem’ was that these two zip files (both 11 GB in size) were compressed memory dumps (uncompressed size 110GB and 153GB respectively). I started downloading both at the same time, not thinking of it,… Continue reading Win11 and Edge – I zip bombed myself
A conversation with ChatGPT 4.0 and I.
For the record, the SDK for the Windows Performance Toolkit is in Github: https://github.com/microsoft/microsoft-performance-toolkit-sdk Enjoy User Are you familiar with ETL files and Windows Performance Toolkit’s SDK? ChatGPT Yes, I’m familiar with both ETL files and the Windows Performance Toolkit’s SDK. ETL stands for Event Trace Log. It is a generic, event-driven recording file… Continue reading A conversation with ChatGPT 4.0 and I.
How to analyze Windows minifilter performance impact
A question was brought to me, of how can one analyze minifilter driver impact on Windows clients? For the answer, I went back to my roots. Because, with agents from security and management tools enterprises use, like AV, SCCM, Tanium, BigFix, etc, generally you don’t know what its doing at a specific time, and then… Continue reading How to analyze Windows minifilter performance impact
Why does @battlenet Agent.exe scan for all running processes in WMI every 4 seconds?
Why does Battlenet’s agent.exe scan for all my processes on my system every 4 seconds?!
PSA: Corsair iCUE has a handle leak and makes Windows explorer slower over time
Impacted version is current plus several previous: 4.21.173 and below Handle leak is pretty obvious: Over time, a day or two, it’ll climb into the several hundred thousands. Process Explorer shows the handles are to drive resources (including Xbox/Store games that install xhd) Disabling the storage widget and restarting the service shows handles stay… Continue reading PSA: Corsair iCUE has a handle leak and makes Windows explorer slower over time
Elite:Dangerous – Mining Lasers vs Deep Core Mining
Non-authoritative list for me to keep track of what is mined how. Elite Dangerous Odyssey etc. The following can be mined using mining lasers: Low Temperature Diamonds Platinum Osmium Cobalt Gold Silver Palladium Samarium Coltan Indite Lepidolite Lithium Hydroxide Methane Clathrate Methanol Monohydrate Crystals Painite Rutile The following can be mined… Continue reading Elite:Dangerous – Mining Lasers vs Deep Core Mining
How to collect a boot trace on Windows 10 with Windows Performance Recorder from the Microsoft ADK
For: Windows 10 (any x64 build) Requirements: Windows Performance Toolkit from the Microsoft ADK Launch WPRUI as administrator (aka Windows Performance Recorder) by clicking Start and searching for WPRUI. Right-click/click run as administrator Check boxes that are important in your scenario. My recommendation is check First Level Triage Expand Resource Analysis check CPU check… Continue reading How to collect a boot trace on Windows 10 with Windows Performance Recorder from the Microsoft ADK
Everything you do for someone else, matters. (no pressure)
I didn’t have the easiest path into my eventual career in IT. As a result, I think perhaps I recognize that ‘no man is an island’ concept more than some others. I didn’t get here on my own. As Isaac Newton would say, I got here on the shoulders of giants. A post on LinkedIn… Continue reading Everything you do for someone else, matters. (no pressure)