A question was brought to me, of how can one analyze minifilter driver impact on Windows clients? For the answer, I went back to my roots. Because, with agents from security and management tools enterprises use, like AV, SCCM, Tanium, BigFix, etc, generally you don’t know what its doing at a specific time, and then… Continue reading How to analyze Windows minifilter performance impact
Tag: Windows Performance Toolkit
How to collect a boot trace on Windows 10 with Windows Performance Recorder from the Microsoft ADK
For: Windows 10 (any x64 build) Requirements: Windows Performance Toolkit from the Microsoft ADK Launch WPRUI as administrator (aka Windows Performance Recorder) by clicking Start and searching for WPRUI. Right-click/click run as administrator Check boxes that are important in your scenario. My recommendation is check First Level Triage Expand Resource Analysis check CPU check… Continue reading How to collect a boot trace on Windows 10 with Windows Performance Recorder from the Microsoft ADK
How To: Collect ETL/WPT tracing diagnostics when you can never logon to the host.
First, guess who's back?! Me! I left Microsoft of my own accord last year. I came back. I wrote this about my experience, I hope you enjoy it. There and back again, an IT tale… Anyways, I was asked a few times recently, Dude, how do you collect an ETW trace for boot/logon if the… Continue reading How To: Collect ETL/WPT tracing diagnostics when you can never logon to the host.
Xperf for the layman, performance analysis unchained, Windows Assessment Toolkit revealed.
If you have been following along in performance land the last year or three, you’d hear about xperf and the WPT (Windows Performance Toolkit). Mayhap you’ve had some time to practice and you know what you are doing. Cool. This tool might still interest you. If you, on the other hand, haven’t heard of these,… Continue reading Xperf for the layman, performance analysis unchained, Windows Assessment Toolkit revealed.
What does a good boot look like (aka, what should I be happy with)?
It’s a question I wasn’t prepared for in class last week, but one that made sense really. For the IT Pro that doesn’t eat breath and sleep this stuff, what does a good or ‘fair’ trace look like? Something like this: What we are looking at here is a boot up that finishes before 45… Continue reading What does a good boot look like (aka, what should I be happy with)?
How to collect a trace for audio or video problems in Windows 7
Assume the following: You have a Windows 7 host that you want to collect a trace from. The user complains of audio issues, stuttering, latency, etc…or video frame rate is low. Something annoying. Like my previous post, lets cover a few basic rules here as we get started: 1. If host = Windows 7 AND… Continue reading How to collect a trace for audio or video problems in Windows 7
How to collect a good boot trace on Windows 7
Assume the following: You have a Windows 7 host that you want to collect a trace from. A good trace. One that you know other people will be able to decipher as well as yourself. Maybe I’ve asked you to collect a boot trace so I can look at it and pointed you to this… Continue reading How to collect a good boot trace on Windows 7
Welcome to the Windows Assessment Server from the Windows 8 ADK. Part 1 of X
Fa-La…It’s the magical mystery tour….. Well, not really, but it is the Windows Assessment Server brought to us by the Windows 8 ADK! Lets fire this bad boy up and play around with it. Step 0. Prepare your environment. You need DHCP and DNS and a Server running 2008 R2 SP1 or Windows… Continue reading Welcome to the Windows Assessment Server from the Windows 8 ADK. Part 1 of X
Windows 8 ADK solves GPO Logon Delay questions, film at 11….
Symptoms: Logons take forever and you’ve collected an xbootmgr/WPR/xperf123/xperfui trace. What GPO can it be? Easy! Open Windows Performance Analyzer from the Windows 8 ADK: Open Said Offending Trace: Expand…System Activity and then find the Generic Events, click and drag the windows so its under “Analysis” tab… AR me eyes! Relax, its ok,… Continue reading Windows 8 ADK solves GPO Logon Delay questions, film at 11….
What is Windows Performance Analyzer all about and why should you use it instead of xperfview?
Consider the following trace in xperfview: This should be familiar to you, it’s the DPC storm / storport doorbell that looks like this: So how does this trace look in WPA from the Windows 8 ADK (RP edition)? A little different, but the Dude isn’t closed minded here, so lets give it a whirl: Observe. … Continue reading What is Windows Performance Analyzer all about and why should you use it instead of xperfview?