## Microsoft-Windows-NDIS-PacketCapture

Seen on:
* Windows 2008
* Windows 7
* Windows 2012
* Windows 8.0
* Windows 8.1
* Windows 10 (1511, 1607, 1703, 1709, 1803, 1809, 1903, 1909, 2004, 20H2)
* Windows 2016
* Windows 2019
* Windows 11 (21H2)

<table border="1" class="docutils">
  <tbody>
    <tr>
      <td><b>Name:</b></td>
      <td>Microsoft-Windows-NDIS-PacketCapture</td>
    </tr>
    <tr>
      <td><b>Identifier:</b></td>
      <td>{2ed6006e-4729-4609-b423-3ee7bcd678ef}</td>
    </tr>
    <tr>
      <td><b>Event message file(s):</b></td>
      <td>%SystemRoot%\system32\drivers\ndiscap.sys</td>
    </tr>
  </tbody>
</table>

&nbsp;