Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,218 questions
Process Monitor Not Picking Up Any Events When "Drop Filtered Events" is toggeled?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 79%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECW%3C/text%3E%3C/svg%3E)
Curtis W. Wright
0
Reputation points
I am trying to troubleshoot an issue with Sever 2022 becoming unable to RDP into it after some time, and I'm trying to use Process Monitor to monitor the key HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\fDenyTSConnections. However, when I toggle "Drop Filtered Events" it doesn't seem to capture anything. I can confirm that when I manually change the registry key, it displays the events as intended.
But when I drop the events, it stops working.
I can't just leave it, as the memory quickly fills up and crashes the program with maybe 30 minutes of running, and this issue takes hours to manifest. Am I missing something?
Server 2022 21H2 20348.2582. Process Monitor 4.01.
Sysinternals
Sign in to answer