Increase in I/O on Hidden TCC Processes

cgunhouse

cgunhouse

Dec 2, 2008
228
2
Canada
When I run the following:

activate "My TCC Process" hide
Where is a detach TCC Process called "My TCC Process", the I/O jumps up to about 16.2 KB and stays there.

2016-03-15_13-47-41.png

If I do:

activate "My TCC Process" restore
It drops back to zero.
 
vefatica

vefatica

May 20, 2008
12,170
133
Syracuse, NY, USA
I can't reproduce it. I only see the beginning and the end.
Code: 
v:\> activate "TCC test" hide & delay 30 & activate "TCC test" restore

upload_2016-3-16_10-47-0.png
 
cgunhouse

cgunhouse

Dec 2, 2008
228
2
Canada
Thread.png

I narrowed it down to the following thread, if I suspend this thread the I/O goes away.
The Stack for this thread is:

Stack.png

and module is:
ModuleThread.png


One other thing that is strange is when I attach Process Monitor (not Process Explorer) to the PID or TID, I get nothing.

I see this on both my Windows 7 and Windows 10 systems.
 
vefatica

vefatica

May 20, 2008
12,170
133
Syracuse, NY, USA
What happens if you use "tcc.exe /iisp" when you start the TCC which will be hidden? That's no inifile, no tcstart file, and no plugins. You can test them independently with "/ii", "/is", and "/ip".
 
vefatica

vefatica

May 20, 2008
12,170
133
Syracuse, NY, USA
Do you use something called "Fallout"? When I google "SfmDxSetSwapChainStats" nearly all hits refer to "Fallout". TCC does not import that function from user32.dll. Perhaps another process is injecting code, or setting an "in-context" hook. Can you see the DLLs loaded by TCC ... anything suspicious there?
 
cgunhouse

cgunhouse

Dec 2, 2008
228
2
Canada
Fallout is a game, and on my Windows 10 system, SfmDxSetSwapChainStats isn't there.

Tried TCC /iisp and no difference.

Thread 9128.png


I was trying to think of what was common between machine but maybe no one else here uses.

Maybe Process Lasso, https://bitsum.com/?inproduct, it could mess with process, but I tried disabling it no difference too.
 
cgunhouse

cgunhouse

Dec 2, 2008
228
2
Canada
Here is what is loaded for one of the TCC doing I/O:

Image:
Modules.png


Mapped files:

Mapped Files.png

I'm not sure what is causing it.

I have something similar with UltraEdit, the licensing module does something similar. Maybe trying to call home but the firewall prevents it and so it keeps trying.
 
vefatica

vefatica

May 20, 2008
12,170
133
Syracuse, NY, USA
I only found "Fallout" because Google had changed my "SfmDxSetSwapChainStats" to "SfmDxGetSwapChainStats".

The only DLL or EXE in my System32 directory that uses "SfmDxSetSwapChainStats" is DWMCORE.DLL (DWM = DesktopWindowManager) which is, no doubt, injected into every app that interacts with the desktop.

I'm out of ideas.
 
You must log in or register to reply here.

Similar threads

Alpengreis
TCMD.INI: The "super hidden" problem ...
Replies
6
Views
2K
Support
Alpengreis
Alpengreis
R
Debugsession must not turn hidden objects on.
Replies
11
Views
2K
Support
Alpengreis
Alpengreis
vefatica
Tabbed toolbar hidden ... not remembered!
Replies
11
Views
2K
Support
rconn
rconn
I
Hidden files on USB Drive
Replies
4
Views
2K
Support
IONx64
I
C
Screens of different size and hidden console
Replies
8
Views
2K
Support
Christian Albaret
C
A
How to? Can't change directory ("cd") into system hidden files
Replies
13
Views
10K
Support
aliteralmind
A
R
WAD issue with filename completion with system and hidden files
Replies
8
Views
2K
Support
Rodolfo
R
D
WAD New envars for @LINES are not hidden
Replies
8
Views
2K
Support
Steve Fabian
S
rps
Documentation Help file revision - Copying hidden DESCRIPT.ION files
Replies
19
Views
3K
Support
Just Another Joe
J
D
Take Command Prevents Seeing Hidden Files
Replies
2
Views
2K
Support
Dnison Penndragon
D
vefatica
Hidden console doesn't close
Replies
34
Views
5K
Support
rconn
rconn
R
Delete command sets directory attributes to hidden & system
Replies
46
Views
9K
Support
Ulrich
U
D
copy /w deletes hidden files and excluded files
Replies
13
Views
4K
Support
David Marcus
D
J
hidden directory copy bug
Replies
1
Views
3K
Support
rconn
rconn
S
OPTION dialog for transient or hidden sessions
Replies
1
Views
3K
Support
vefatica
vefatica
cgunhouse
DEPUPE Crashes and Takes Out The Current TCC Session With It
Replies
2
Views
34
Support
vefatica
vefatica
aedthuio
TCC Bug??
Replies
6
Views
117
Support
vefatica
vefatica
K
How to? TCC 29 slow switching between tab windows.
Replies
15
Views
256
Support
K1EA
K
vefatica
Wrapped text - mouse\mark\copy\paste in a TCC console?
Replies
0
Views
82
Support
vefatica
vefatica
Charles Dye
Quote mangling in TCC
Replies
1
Views
118
Support
vefatica
vefatica
Joe Caverly
Sharing CLIP1 to CLIP9 with another TCC
Replies
4
Views
157
Support
vefatica
vefatica
rconn
  • Locked
News Take Command / TCC / CMDebug / TCC-RT 29.0.17 Uploaded
Replies
0
Views
152
Support
rconn
rconn
R
TCC 29 has its own keyboard buffer?
Replies
2
Views
139
Support
vefatica
vefatica
J
Bug dotnet watch run in TakeCommand with a tcc or cmd prompt
Replies
17
Views
330
Support
vefatica
vefatica
fishman@panix.com
Fixed Can't install TC/TCC 29
Replies
2
Views
238
Support
fishman@panix.com
fishman@panix.com
M
TCC 29: German special characters öäüÖÄÜß are not shown at all
Replies
19
Views
463
Support
K_Meinhard
K_Meinhard
S
TCC debugger throws message on end of attrib
Replies
27
Views
524
Support
sg08234
S
vefatica
Something in my INI file is slowing TCC down
Replies
9
Views
323
Support
Alpengreis
Alpengreis
A
TCC is now starting inside Windows 11 PowerShell
Replies
5
Views
371
Support
ohenryx
O
D
Disable line wrap in TCC window?
Replies
14
Views
560
Support
David_Wolfe
D
O
TCC does not pass focus to applications launched by TCC from Windows Terminal
Replies
25
Views
882
Support
ohenryx
O
D
Wacky console messages being dumped into TCC
Replies
1
Views
273
Support
Charles Dye
Charles Dye
Joe Caverly
RECORDER - TCC: (Sys) A resource required for this operation is disabled.
Replies
1
Views
285
Support
Joe Caverly
Joe Caverly
D
tcc.exe /c whatever/... triggers debug messages
Replies
2
Views
373
Support
Daniel Dittmar
D
S
TCC: C:\TC28\TCSTART.btm Take Command is not loaded
Replies
5
Views
701
Support
rconn
rconn
A
Can you set an image file 'tag' with TCC/4NT?
Replies
2
Views
421
Support
vefatica
vefatica
P
PSHELL not working in TCC 26
Replies
11
Views
714
Support
AnrDaemon
A
vefatica
SCRIPT makes TCC disappear.
Replies
16
Views
728
Support
Joe Caverly
Joe Caverly
MickeyF
TCC suddenly crashing (not TCC's fault)
Replies
2
Views
425
Support
MickeyF
MickeyF
Z
CMDDebug - TCC unknown command
Replies
2
Views
406
Support
Joe Caverly
Joe Caverly
rconn
  • Locked
News Take Command / TCC / CMDebug / TCC-RT 28.02.17
Replies
0
Views
403
Support
rconn
rconn
vefatica
TCC startup: /IP not honored after /K
Replies
1
Views
378
Support
Charles Dye
Charles Dye
MickeyF
TCC crashing when copying multiple files (now resolved)
Replies
6
Views
747
Support
Alpengreis
Alpengreis
C
COMSPEC constantly reset to TCC.EXE
Replies
6
Views
658
Support
vefatica
vefatica
rconn
  • Locked
News Take Command / TCC / CMDebug / TCC-RT v28 Released
Replies
0
Views
529
Support
rconn
rconn
C
How to? starting TCC/TCMD v25
Replies
2
Views
516
Support
AnrDaemon
A
CWBillow
TCC and TCMD in Powershell
Replies
6
Views
858
Support
AnrDaemon
A
rconn
  • Locked
News Take Command / TCC / CMDebug / TCC-RT 27.01.24 uploaded
Replies
0
Views
486
Support
rconn
rconn
rconn
  • Locked
News Take Command / TCC / CMDebug / TCC-RT 27.01.23 uploaded
Replies
0
Views
811
Support
rconn
rconn
Alpengreis
Fixed Crash after copy dialog with big TCC.exception.log
Replies
5
Views
744
Support
Alpengreis
Alpengreis
Top Bottom