1. in an elevated command prompt window run:
netsh trace start persistent=yes capture=yes tracefile=c:\temp\tcpdump.etl
2. reproduce the issue (can also do a reboot of the computer - the traffic will be captured)
3. in an elevated command prompt window run:
netsh trace stop
It will also capture while restarting (until netsh trace
stop)