This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Wireshark install error.

0

I'm having an issue installing any of the 2.0.X versions of Wireshark. I keep getting the error "Wireshark or one of its associated programs is running. Please close it first." I'm currently installing on a Windows 7 64 bit system but I'm also running into the same issue with Windows 2012 R2.I've read the previous answer where to go in a verify that dumpcap.exe was not running, which I did. I've also checked for other running Wireshark processes. I can install any of the 1.12.X versions without any issues. I've checked the event logs with no addition information being provided. This version of Windows has had many security modifications applied to it but I went though each one and I can not come up with which one may be an issue. Any guidance would be appreciated.

asked 07 Jul '16, 02:07

Michael2016's gravatar image

Michael2016
6112
accept rate: 0%

Have you tried installing to a different directory, e.g. C:\temp\Wireshark?

(07 Jul '16, 03:24) grahamb ♦

I don't even get that far. As soon as you right click and "run as Administrator" the error pops up.

(07 Jul '16, 04:16) Michael2016

One Answer:

0

The Wireshark installer checks for an instance of the shared mutex "Wireshark-is-running-{9CA78EEA-EA4D-4490-9240-FC01FCEF464B}" both for the current user and globally on the system. This mutex is created when any applications of the Wireshark suite are running, and cause the installer to generate the error message shown.

Using Process Explorer from SysInternals you can search for all process using this mutex. Running Process Explorer as an administrator, use the Find -> Find Handle or DLL... menu option to search for "Wireshark-is-running" and the process(es) will be listed.

answered 07 Jul '16, 04:49

grahamb's gravatar image

grahamb ♦
19.8k330206
accept rate: 22%

graham, I will have to download and test in the morning. Thank you and I will update you then.

(07 Jul '16, 06:21) Michael2016

I was finally able to install Process Explorer and it found 0 matching items. I've thought about building a new system and applying Wireshark first but each time I go to upgrade I'll run into the same problem.

(04 Nov '16, 00:19) Michael2016

Unfortunately there must be something in your system specifically causing this issue as with over 500, 000 downloads per month almost no other users have run into this.

Can you uninstall Wireshark, reboot and try the install again?

(04 Nov '16, 02:16) grahamb ♦