Two Minute Drill: Using PROCDUMP

-
Two Minute Drill: Using PROCDUMP

ParameterInformation
-64If you are running ProcDump on a x64 system, then by default ProcDump captures a 32-bit dump of a 32-bit process.  The –64 switch overrides this and creates a 64-bit dump
-cDefines the CPU threshold for the process
-eWrites a dump when the process encounters an unhandled exception
-hWrites a dump if the process has a hung window
-maWrites a dump file with all process memory.  The default includes thread and handle information
-nNumber of dumps to create.  Those of you that have worked with us in the past may have used ADPlus to capture a series of process dumps for high CPU issues – it’s the same concept
-oOverwrite an existing dump file
-rReflect (clone) the process (Windows 7 and higher only) – this helps to minimize the time required to suspend the process while the dump is written
-sNumber of consecutive seconds that the process has to be over the CPU threshold before the dump is written.  This helps to differentiate between what may be a normal spike and sustained high CPU
-uTreat CPU usage relative to a single core
-xLaunch the specified image with optional arguments
Now let’s examine some common scenarios and the appropriate Procdump command for each one:
Scenario: Wait for the Spooler to spike the CPU for 30 seconds at 90%.  When this occurs, we need to create 5 dump files named SPOOLSV_date_time.dmp in the c:\dumps folder with all process memory:
Procdump.exe –c 90 –n 5 –ma –s 30 spoolsv.exe c:\dumps
Scenario: Create a simple dump (thread and handle only) of Calculator in c:\temp:
Procdump.exe calc.exe c:\temp
Scenario: Capture a dump of Outlook called Outlook_hang.dmp when one of its windows is unresponsive:
Procdump.exe –h outlook.exe c:\dumps\Outlook_hang.dmp
Scenario: Start a process and then monitor it for high CPU usage over 50% for 20 seconds
Procdump.exe –c 50 –s 20 –x notepad.exe c:\dumps\notepad.dmp
As you can see, there are many powerful features in ProcDump.  It is definitely a useful tool to have in your troubleshooting toolkit.  With that, we’ve reached the end of our post.  Enjoy the rest of your week!
Additional Resources:

Comments

Post a Comment

Popular posts from this blog

altiris software key

-
Image
I think a lot of people, like me, spend a lot of time try finding how to get those download: Latest Symantec workspace Virtualization , SWV 6.1, that is advanced SVS version, is integrated with the Altiris client management suite CMS 7.  (Yes, it was also named "SVS PRO") Notice 1: This package includes the "Wise Virtual Composer", and both x86+x64 versions. Notice 2: This link currently also includes SWS (Streaming) and SWC (Corporate) [please vote my post if you use it ;-] Story : I was thinking only SVS 2.1 (Software Virtualization Solution) was integrated into the "Client Management Suite 7". But this is not the case and SWV 6.1 (Symantec Workspace Virtualization) must not be paid in addition . Free home license : Both SVS 2.1 "light" version & SWV are still free personal use. I suggest you use now the latest SWV 6.4 (That is SWV 6.1 SP7 or following! Yes Symantec do this version naming - vote here also to a...
Read more

Service Principal Names (SPNs) SetSPN Syntax (Setspn.exe)

-
Image
Service Principal Names (SPNs) SetSPN Syntax (Setspn.exe) Table of Contents SPN Purpose SPN Format SetSPN Viewing or Checking SPN Registrations SPN Registration Errors Related to SPN Registration or Configuration Manually Registering SPNs Troubleshooting SPN Issues Resolving SPN Registration Issues SPN Lookup Errors Delegation External Articles SPN Purpose A service principal name (SPN) is the name by which a Kerberos client uniquely identifies an instance of a service for a given Kerberos target computer. If you install multiple instances of a service on computers throughout a forest, each instance must have its own SPN. A given service instance can have multiple SPNs if there are multiple names that clients might use for authentication. For example, an SPN always includes the name of the host computer on which the service instance is running, so a service instance might register an SPN for each name or alias of its host. ↑  Return to T...
Read more

Troubleshooting Netlogon Error Codes

-
Image
Quick Reference: Troubleshooting Netlogon Error Codes ★ ★ ★ ★ ★ ★ ★ ★ ★ ★ ★ ★ ★ ★ ★ January 28, 2013   by  Mark Morowczynski [MSFT]   //   24 Comments 0 0 Hi this is Brandon Wilson and today I will be providing you with a quick reference for troubleshooting Netlogon error codes. I say “quick reference” very loosely here, because this is one of those sticky subjects that can easily expand into many more areas and become a very long discussion. So, I’m going to do my best to focus on just the codes and possible solutions for the error codes that are more common to see. Anyone who has dealt with some of these issues knows that some of these outlined areas can lead to huge revenue loss for a business, or at the very least an annoying authentication prompt J I welcome you to leave comments and questions, or suggestions for articles that you as the reader would be interested in seeing us do on AskPFE Platforms ( http://blogs.tech...
Read more