Some application shutdown after start using wireshark or terminate wireshark after it launced. How to protect wireshark from termination? Thank you. asked 01 Nov '10, 18:35  TSSENE |
3 Answers:
Is Wireshark is terminated immediately after you launch it? If so, your system may be infected with a trojan. Conficker and the fake Wireshark Antivirus will both kill any instances of Wireshark they find running, and I'd assume other malware does the same thing. If that is the case you might be able to work around the problem by renaming the wireshark.exe executable but that won't fix the more serious underlying issue. answered 02 Nov '10, 11:38  Gerald Combs ♦♦ |
Are you up to something shady????????? If something is hunting down WireShark specifically then it's probably trying to prevent you from gathering a capture. You can try to rename the WireShark.exe to something else before running it. answered 02 Nov '10, 11:29  GeonJay |
I've seen this one as well - definitely a trojan. Start off by using an up-to-date malware killer; I used Malwarebytes free anti-malware package. I then used Spybot S&D to double-check and immunize. answered 03 Nov '10, 19:35  wesmorgan1 |
It's not a virus or trojan. I was try to rename wireshark before posting this but it's can't help. Yes, It's prevent wireshark to capture, I know. So, How to protect wirehark from terminate?