Stack Overflow
Stack Overflow

Questions tagged [procdump]

ProcDump is a command line tool that can be used to capture a memory dump of an application when the application crashes, hangs or you can also use it to capture a memory dump for performance reasons.

ProcDump is a process utility originally developed for Microsoft Windows, as part of the Sysinternals web site. It's primary purpose is monitoring an application for CPU spikes and creating crash dumps so the cause of the spike can be investigated, but it can also be used to monitor for hung windows, unhandled exceptions, or excessive use of system resources (by monitoring system performance counters).

A version for Linux has also been created.

Documentation (including a download link) for the Windows version is available on the Microsoft documentation web site.

The Linux version is available on GitHub.

59 questions
0
votes
1 answer

Memory usage of a process increases while taking a dump, using procdump. Is this even possible?

Good afternoon, In my company regularly we are dealing with memory leaks, and therefore every installation has a procdump installed, in order to be able to take memory dump for investigation purposes. Now my customer is complaining about a process,…
Dominique
  • 16,450
  • 15
  • 56
  • 112
0
votes
1 answer

Procdump to capture service hangs

I am using below command to obtain procdump dump file when a service hangs but it not doing anything procdump -64 -ma -t -n 2 -s 10 MyProcess.exe C:\myprocess.exe.dmp
Karamzov
  • 343
  • 1
  • 4
  • 12
0
votes
0 answers

ProcDump to catch high cpu of IIS website, need site name

I am using ProcDump to catch high cpu on server. I suspect its cause by one of the iis websites. $processes = Get-Process -Name w3wp foreach ($process in $processes) { D:\Server_Tools\Procdump\procdump.exe -c 30 -s 15 -ma $process.ID } From what I…
Shraga
  • 23
  • 5
0
votes
1 answer

Dump process memory on exit linux

I want to dump a process' memory when it exits. All the solutions I've seen using gcore, gdb or even procdump for linux dump the core in the middle of the execution and not exactly when it terminates Procdump for windows has a very elegant solution…
Karan Jit Singh
  • 595
  • 7
  • 25
0
votes
0 answers

Avoid "Unknown" in heap_stat.py Windbg dump analysis

I'm using the heap_stat.py Python script for analysing memory dumps, in order to detect memory leaks, but I'm having following issue: regularly the "statistics" part contains following kind of "information": Type name Count Size …
Dominique
  • 16,450
  • 15
  • 56
  • 112
0
votes
1 answer

how to analyse call stack info of c# app where my database say access exception, attempt to read or write memory is corrupt

My C# WPF app runs on regular basis and every now and then i keep getting this error attempt to read or write protected memory, this is often indication that other memory is corrupted c# this is my code. Initially I thought some external app is…
Anil Gadiyar
  • 399
  • 1
  • 2
  • 16
0
votes
2 answers

How to decipher dump file names generated by procdump

I setup procdump to collect crash dump using following command procdump -ma -i c:\dumps I now see following dump…
whoami
  • 1,689
  • 3
  • 22
  • 45
0
votes
0 answers

analyzing dump file with VS from a different pc

I am trying to analyze a dump file generated in a testing environment pc , on my pc with VS. When I create a dump file ( using procdump ) on my pc and open it in VS I can see my code in the threads window. But when running the same binaries on a…
jacob
  • 1,397
  • 1
  • 26
  • 53
0
votes
1 answer

What is the meaning of exceptions shown by procdump.exe?

I tried to get a dump file of my application using the ProcDump command as follows: c:\dump>procdump.exe -e -h -ma -o -w myapp.exe c:\dump ProcDump v6.00 - Writes process dump files Copyright (C) 2009-2013 Mark Russinovich Sysinternals -…
TDBao
  • 9
  • 4
0
votes
0 answers

Interpreting Procdump Exception code 00000006, and the difference between E06D7363.J and E06D7363.msc

I am analyzing a dump file of a c++ application, generated by ProcDump. The log file generated by ProcDump contains tons of Exception: C0000005.ACCESS_VIOLATION which are easily understandable as Access Violations. However I have not managed to…
Stephane Rolland
  • 38,876
  • 35
  • 121
  • 169
0
votes
2 answers

Creating a dump file is excruciating slow

Brief Creating a dump file using any of the following methods is way to slow (> 2 minutes) to be usable for our current scenario. procdump -ma notepad procdump notepad Open task-manager, select notepad, create dump file Does anyone have any idea…
Lieven Keersmaekers
  • 57,207
  • 13
  • 112
  • 146
-1
votes
2 answers

Program execution continues after procdump created a dump on an exception

I am throwing an exception throw std::exception("dummy") (as a test) which is not being caught anywhere. Without ProcDump attached this immediately crashes the process as it should. When I attach ProcDump with -e to a debug build, ProcDump properly…
Ramon
  • 424
  • 2
  • 9
  • 24
-1
votes
2 answers

procdump usage for visual C++ application 2010 for creating crash dump

I tried installing procdump tool from https://technet.microsoft.com/en-us/sysinternals/dd996900.aspx when i open the command window and run procdump exe as: procdump.exe -g -e -w -ma test.exe it just shows waiting for process names test.exe it…
KaushikV
  • 21
  • 5
-2
votes
1 answer

Creating a proccess dump via CMD or Powershell

Welcome i have ran into a small issue. So basically i have been coding a program to open up power-shell and run proc dump and dump a process. Using Proc Dump. I keep getting multiple processes running. And there is no way i can get the PID, So its…
Best Exploits
  • 15
  • 5
1 2 3
4