WCAB401 Channel 9 Defrag Tools httpchannel9msdncomShowsDefragTools The IT Help Desk call Production is acting a bit weird can you help Does it have any developer tools installed ID: 629861
Download Presentation The PPT/PDF document "Hardcore Debugging Andrew Richards" is the property of its rightful owner. Permission is granted to download and print the materials on this web site for personal, non-commercial use only, and to display it on your personal computer provided you do not modify the materials and that you retain all copyright notices contained in the materials. By downloading content from our website, you accept the terms of this agreement.
Slide1Slide2
Hardcore Debugging
Andrew Richards
WCA-B401Slide3
Channel 9 – Defrag Tools
http://channel9.msdn.com/Shows/Defrag-ToolsSlide4
The IT Help Desk call…
“Production is acting a bit weird – can you help?”
“Does it have any developer tools installed?”
“No. And you can’t stop it – it’s live!
BTW, I saw this another time – about 6mths ago.”
“OK, Let’s gather some data while it is still happening.We’ll use low impact ‘
xcopy’ tools so it stays responsive.”“How big are these tools? Do we need a license?”“Just a few Mb; we can copy them via RDP. They are all free.”“Cool, let’s do it!”Slide5
Hardcore Debugging
Debugging without:
Visual Studio
Source Code
Private Symbols
High ImpactDebugging with:Debugging Tools for WindowsWindows Performance ToolkitSysinternals UtilitiesPublic Symbols
Low ImpactSlide6
Scenarios
Crash
Event Viewer
Sysinternals ProcDump
Post Mortem Dumps
Unhandled Exception DumpsWindows Error Reporting (WER)Bugcheck
(Blue Screens)Debugging Tools for WindowsUser Mode (Dump) AnalysisKernel Mode (Dump) AnalysisWindows Performance Toolkit
Kernel ETW BuffersSlide7
Scenarios
Hangs
Sysinternals ProcDump
Manual/Timed Dumps
Triggered Dumps (CPU & Performance Counter)
Hung Window DumpsSysinternals Process ExplorerSysinternals Process
MonitorDebugging Tools for WindowsWindows Performance ToolkitCPU AnalysisWait AnalysisDPC AnalysisInterrupt (ISR) Analysis
Driver AnalysisSlide8
Scenarios
Performance Analysis
Task Manager
Resource
Monitor
Performance MonitorSysinternals Process ExplorerSysinternals Process MonitorWindows Performance Toolkit
CPU AnalysisWait AnalysisDPC AnalysisInterrupt (ISR) AnalysisDisk AnalysisMemory Analysis
Network Analysis
Driver AnalysisSlide9
Scenarios
Tracing Analysis
Event Viewer
Sysinternals Process Monitor
File System
RegistryNetwork
ProcessProfilingSysinternals ProcDumpException Tracing, Filtering and DumpingWindows Performance ToolkitFile Analysis
Registry Analysis
Disk Analysis
Network AnalysisSlide10
Debugging Tools for Windows
Install or Copy
Install or Copy the
x64
version on
x64 machines to C:\Debuggers (Magic Folder Name)Install or Copy the x86 version on
x64 machines to C:\Debuggers_x86Install or Copy the x86 version on x86 machines to C:\Debuggers (Magic Folder Name)DbgHelp.DLLOnly
the
Debugging Tools for Windows
version of
DbgHelp.dll
supports
SRV
*
Sysinternals
Tools will
automatically use
C
:\Debuggers
instead of
C
:\
Windows\System32
Channel 9 - Defrag Tools
Episode #1
- Building your USB
thumb drive (Windows 7 SDK)
Episode #13..#
29 - WinDbg
series
Episode
#23 -
Building
your USB thumb drive
(Windows
8
SDK)Slide11
Windows Performance Toolkit (WPT)
Install or Copy
Install or Copy the
x64
version
on x64 machinesInstall or Copy the x86 version on x86
machinesThe MSI will add it to the PATHChannel 9 - Defrag ToolsEpisode #29 - WinDbg - ETW LoggingEpisode #39 - Windows Performance ToolkitEpisode #40 - WPT - WPA & WPR
Episode
#41 - WPT
- Command Lines
Episode
#42
-
WPT - CPU
Analysis
Episode #43 - WPT -
Wait
Analysis
Episode #
44
- WPT -
Disk Analysis
Episode #
45
- WPT -
File Analysis
Episode #
46
- WPT -
Driver Analysis …Slide12
Debugging Environment
Environment Variables
Microsoft Public Symbol Server
(Windows Performance Toolkit) Symbol Cache
md
c:\My
md c:\My\Symmd c:\My\SymCachesetx /m _
NT_SYMBOL_PATH
SRV*
C:\My\
Sym
*
http://msdl.microsoft.com/download/symbols
setx
/m _
NT_SYMCACHE_PATH
C:\
My\SymCacheSlide13
Demo
User Mode Crash Analysis with:
Sysinternals ProcDump
Debugging Tools for WindowsSlide14
Demo
User Mode Hang Analysis
with:
Sysinternals ProcDump
Debugging Tools for
WindowsWindows Performance ToolkitSlide15
:(
Your PC ran into a problem and needs to restart. …
BugCheck
0x133
:
DPC_WATCHDOG_VIOLATIONKernel Mode Crash Analysis with:Debugging
Tools for WindowsWindows Performance ToolkitSlide16
Related content
Defrag Tools Live @ C9
Live
- Thurs
.
12:00pm
Case of the Unexplained 2013 (WCA-B306) –
1:00pm
Sysinternals Primer (ATC-B313) - Thurs.
2:45pm
Channel 9 - Defrag Tools – defragtools@microsoft.com
http://channel9.msdn.com/Shows/Defrag-ToolsSlide17
Windows Track Resources
Windows Enterprise:
windows.com/enterprise
Windows Springboard:
windows.com/
ITpro
Microsoft Desktop Optimization Package (MDOP):
microsoft.com/
mdop
Desktop Virtualization (DV):
microsoft.com/dv
Windows To Go:
microsoft.com/windows/
wtg
Outlook.com:
tryoutlook.comSlide18
System Center 2012 Configuration Manager
http://technet.microsoft.com/en-us/evalcenter/hh667640.aspx?wt.mc_id=TEC_105_1_33
Windows Intune
http://www.microsoft.com/en-us/windows/windowsintune/try-and-buy
Windows Server 2012
http://www.microsoft.com/en-us/server-cloud/windows-server
Windows Server 2012 VDI and
Remote Desktop Services
http://technet.microsoft.com/en-us/evalcenter/hh670538.aspx?ocid=&wt.mc_id=TEC_108_1_33
http://www.microsoft.com/en-us/server-cloud/windows-server/virtual-desktop-infrastructure.aspx
More Resources:
microsoft.com/
workstyle
microsoft.com/
server-cloud/user-device-management
For More InformationSlide19
msdn
Resources for Developers
http://microsoft.com/msdn
Learning
Microsoft Certification & Training Resources
www.microsoft.com/learning
TechNet
Resources
Sessions on Demand
http://channel9.msdn.com/Events/TechEd
Resources for IT Professionals
http://microsoft.com/technet Slide20
Complete an evaluation on CommNet and enter to win!Slide21
Evaluate this session
Scan this QR code
to evaluate this session and be automatically entered in a drawing to
win a prize
Required Slide
*delete this box when your slide is finalized
Your MS Tag will be inserted here during the final scrub. Slide22
© 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.
The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.