Very good explanation at the end about understanding 'AND' and 'OR' search filters. Thank you!
@PaulOfford
2 жыл бұрын
Glad it was helpful!
@niro1960
7 жыл бұрын
Thanks Paul, very good explaining
@PaulOfford
2 жыл бұрын
No problem.
@cryptoniteclark
3 жыл бұрын
Thanks for uploading these informative videos. Every now and again on my Win10 system, a process utilises 100% of the CPU, and the system becomes completely unresponsive. Is there a way to log all high CPU usage processes to a text file, so that, when it fails, I can review it to work out the misbehaving app?
@PaulOfford
3 жыл бұрын
Hi, I recommend that you use a different tool to log CPU load by process over a long period, The tool you want is Performance Monitor or perfmon which is used to collect capacity and performance statistics over a long period. It’s a standard Windows utility and so nothing to install. Look at the Process counters which include a counter for CPU % by process. Make sure you use the Process counters rather than the Processor counters. Although the Processor counters include CPU % the numbers are not split by process. Could you just use Task Manager or is the PC totally unresponsive? To get into Task Manager use Ctl-Alt-Del when the PC CPU goes high and then choose Task Manager.
@Ravencrowwise
2 жыл бұрын
Hi Paul, the reason why you are still showing events being dropped is because you are using Procmon in Basic Mode. If you enable advanced mode no events are going to be dropped whatsoever when in capture mode. ;) Enable "Advanced Mode" and "Drop filtered Events". :P Notice the difference on the Filters dialog box between the filters in Advanced Vs Basic Mode for an explanation. hehe
@PaulOffordRacing
2 жыл бұрын
Thanks for the tip.
@PaulOfford
2 жыл бұрын
I've never tried Advanced Mode - thanks.
@carlallison9530
7 жыл бұрын
what is wireshark you should explain in more detail what and why you are using wireshark and how you displayed it
@PaulOfford
6 жыл бұрын
Hi Carl, Thanks for the feedback. Wireshark is network protocol analysis software. You can use it to study the flow of data across a network. Wireshark can capture messages in the flow (often called packets) and analyze them, in much the same way as procmon allows you to capture and study OS interactions. Wireshark is open source, free and the world's most used software of its kind. See www.wireshark.org for more details. Best regards...Paul
@tyroneslothdrop9155
5 жыл бұрын
Can you direct me to any information about how to diagnose slow start-up times? I recently installed a new Nvidia gpu and everything works great except for the time it takes to boot my computer. Boot times on my SSD are now slower than a 7200 RPM HDD.
@PaulOfford
5 жыл бұрын
Hi Tyrone, Record the startup, export the trace entries to CSV (don't include profiling events), open the CSV in a spreadsheet program (e.g. Excel), change the Time of Day column to a custom format of hh:mm:ss.000 and check three things. First try ordering the rows by Duration descending. Do you have any long running system calls that might make up the additional delay you are experiencing? Next, use an additional row to contain the difference between the timestamps of each entry and add a formula to calculate the delta e.g. =a3-a2. Copy the formula down the sheet. Check if you have big gaps between entries. The third method requires a comparative trace of your system without your Nvidia upgrade. Open the before and after upgrade traces side-by-side. Add the Relative Time column. Now look to see if you see big changes in Relative Time for the same events in each trace. To get a high level view try top menu > Tools > Process Tree which produces a bar chart that shows execution start times.
@tyroneslothdrop9155
5 жыл бұрын
Thank you for the detailed reply. As for the third method, should I remove the GPU from the motherboard or simply uninstall the drivers?
@PaulOfford
5 жыл бұрын
@@tyroneslothdrop9155 Uninstalling the driver is good enough for the analysis but only if that restores performance back to normal (pre-upgrade).
@Ravencrowwise
2 жыл бұрын
You need to go to Options > Enable Boot Logging in Procmon if you want to use it to diagnose Slow Boot or Logon issues with Procmon.
Пікірлер: 18