# Revision history [back]

I am not sure, if this is possible at all. If you start NPF in safe mode it is IMHO an ugly hack.

The safest way (and possibly the only supported way) is to ask your administrator to install Wireshark. For me, it works great out of the box.

Wireshark relies on the driver NPF.SYS. The driver is defined in the registry under HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NPF
Dependencies boil down to the registry key HKLM\SYSTEM\CurrentControlSet\Control\ServiceGroupOrder. Microsoft gives a nice overview over the driver load order on a dedicated web site.