Microsoft-Windows-NDIS-PacketCapture
Seen on:
Windows 2008
Windows 7
Windows 2012
Windows 8.0
Windows 8.1
Windows 10 (1511, 1607, 1703, 1709, 1803, 1809, 1903, 1909, 2004, 20H2)
Windows 2016
Windows 2019
Windows 11 (21H2)
Name: | Microsoft-Windows-NDIS-PacketCapture |
Identifier: | {2ed6006e-4729-4609-b423-3ee7bcd678ef} |
Event message file(s): | %SystemRoot%\system32\drivers\ndiscap.sys |