Error: A network capture driver is not available in the Log Receiver

Issue description

Users may encounter the message "Network capture driver not available" in the Log Receiver. Network capture drivers are essential for EventLog Analyzer to capture and process real-time network logs from various sources. When a driver is unavailable, users will be unable to view live log packets in the Log Receiver. Refer to the screenshot below to view the error flagged.

Possible causes

Missing or improperly installed network capture driver files
Insufficient administrative privileges when installing the drivers

Prerequisites

Administrator privileges on the server hosting EventLog Analyzer
Access to the <EventLogAnalyzer_Installation_Directory>\lib\native folder
Command Prompt access with elevated (admin) rights

Resolution

Case 1: Automatic method (preferred)

Step 1: Navigate to the <EventLogAnalyzer_Installation_Directory>\bin directory.
Step 2: Open Command Prompt with administrator privileges.
Step 3: Execute the following command:
register-driver.exe
Step 4: Check the console output to ensure that the driver files are copied successfully.

Case 2: Manual method (if the automatic method fails)

Step 1: Navigate to the <EventLogAnalyzer_Installation_Directory>\lib\native folder.

Step 2: Copy the following files:

npf.sys
wpcap.dll
Packet.dll

Step 3: Paste npf.sys in the C:\Windows\system32\drivers\ folder.

Step 4: Paste wpcap.dll and Packet.dll in the C:\Windows\system32\ folder.

Step 5: Open the EventLog Analyzer console.

Step 6: Refresh the Log Receiver page.

Validation and testing

Open EventLog Analyzer.
Navigate to the Log Receiver page.
Confirm that network logs are being captured without errors.

Tips

Always run EventLog Analyzer installation or maintenance tasks with administrator privileges.
After major Windows updates, verify if drivers like npf.sys are still intact.
Maintain regular backups of the <EventLogAnalyzer_Installation_Directory> directory before upgrades or migrations.