I find Wireshark really a pain, because when it starts it immediately hangs because it is loading user preferences which I dont have because I just installed it. I can't even close the program, task manage doesn't even start. Uninstall is impossible because some associated program needs to close and I need to guess which one... After a reboot, I am able to uninstall wireshark, but then WinPcap unstall hangs, the progress bar is not making progress, and it says output folder c:\Windows\system32, not sure what the program wants to output there, I think it should remove files instead. It keeps me busy for more than an hour now. By the way I tried to post a message here two times but it failed because first time I needed to validate my email, second time because the website stopped responding. This is a pain, people. Is there a version of wireshark that just works? asked 24 Jun '16, 13:57  Jasper Sikken |
2 Answers:
Urm sounds to me like you may have an underlying issue with your computer, perhaps an incompatible program or service running in the background I would start your machine in clean boot mode to see if it works then, after this I would run a clean up so make sure you have hard drive space and a reasonable amount of ram, then run malwarebytes to see if you have any infections. There is nothing wrong with wireshark it is a great program and tons of people use it. answered 25 Jun '16, 01:39  m0rph |
What you describe is a know issue with WinPcap on newer systems (so not related to Wireshark itself) and has been discussed numerous times. Have a look for example to this thread: https://ask.wireshark.org/questions/26361/loading-configuration-files If the suggestions given in previous threads do not help you, you could eventually give a try to Npcap (installed in WinPcap mode) as a replacement for legacy WinPcap. answered 25 Jun '16, 06:55  Pascal Quantin Just explicitly answer one of your questions: we ask if you want to install WinPcap because not everyone wants to install WinPcap. This could be because they're not interested in doing live captures (I'm generally not--the capture files I get come in email or from web servers) or they're not allowed to capture [think: corporate security policies] or, in recent times, they'd prefer to use Npcap. (27 Jun '16, 06:11) JeffMorriss ♦ |
By the way how come the old old stable version of wireshark and the new version are both dated on June 7th 2016? Why is it such a mess?
During installation, why do I need to decide whether or not I want to install WinPcap when it is needed anyway? Then dont ask the question. Has anyone heard of user experience?
Ow man, even the old stable version is hanging, I see a progress bar that is 100%, but still it is loading module preferences. I dont have preferences because I just installed it.
Why is it hanging on preference that I dont have?
Why is the old stable version not stable?
Why does the progress bar say 100% when it is not done?