Windows Packet Capture

You can capture packets without using the installed version of Wireshark, but you still need to be an admin of the system.

If you want to capture just a specific IP, you can use the below, if not you can take out the IP address part

netsh trace start capture=yes IPv4.Address=X.X.X.X

Once your complete you can stop it

netsh trace stop

Then take Both the CAB and ETL files, you can then open with Microsoft Message Analyzer.

You can then Export them to a cab file.