The world`s foremost network protocol analyzer for Windows

Wireshark (64-bit)

Wireshark 1.8.5 (64-bit)

  -  25.62 MB  -  Freeware

Sometimes latest versions of the software can cause issues when installed on older devices or devices running an older version of the operating system.

Software makers usually fix these issues but it can take them some time. What you can do in the meantime is to download and install an older version of Wireshark 1.8.5 (64-bit).


For those interested in downloading the most recent release of Wireshark (64-bit) or reading our review, simply click here.


All old versions distributed on our website are completely virus-free and available for download at no cost.


We would love to hear from you

If you have any questions or ideas that you want to share with us - head over to our Contact page and let us know. We value your feedback!

  • Wireshark 1.8.5 (64-bit) Screenshots

    The images below have been resized. Click on them to view the screenshots in full size.

    Wireshark 1.8.5 (64-bit) Screenshot 1
  • Wireshark 1.8.5 (64-bit) Screenshot 2
  • Wireshark 1.8.5 (64-bit) Screenshot 3
  • Wireshark 1.8.5 (64-bit) Screenshot 4
  • Wireshark 1.8.5 (64-bit) Screenshot 5

What's new in this version:

Bug Fixes:
- wnpa-sec-2013-01
- Infinite and large loops in the Bluetooth HCI, CSN.1, DCP-ETSI DOCSIS CM-STAUS, IEEE 802.3 Slow Protocols, MPLS, R3, RTPS, SDP, and SIP dissectors. Reported by Laurent Butti. (Bugs 8036, 8037, 8038, 8040, 8041, 8042, 8043, 8198, 8199, 8222)
- Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
- GENERIC-MAP-NOMATCH
- wnpa-sec-2013-02
- The CLNP dissector could crash. Discovered independently by Laurent Butti and the Wireshark development team. (Bug 7871)
- Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
- GENERIC-MAP-NOMATCH
- wnpa-sec-2013-03
- The DTN dissector could crash. (Bug 7945)
- Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
- GENERIC-MAP-NOMATCH
- wnpa-sec-2013-04
- The MS-MMC dissector (and possibly others) could crash. (Bug 8112)
- Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
- GENERIC-MAP-NOMATCH
- wnpa-sec-2013-05
- The DTLS dissector could crash. Discovered by Laurent Butti. (Bug 8111)
- Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
- GENERIC-MAP-NOMATCH
- wnpa-sec-2013-06
- The ROHC dissector could crash. (Bug 7679)
- Versions affected: 1.8.0 to 1.8.4.
- GENERIC-MAP-NOMATCH
- wnpa-sec-2013-07
- The DCP-ETSI dissector could corrupt memory. Discovered by Laurent Butti. (Bug 8213)
- Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
- GENERIC-MAP-NOMATCH
- wnpa-sec-2013-08
- The Wireshark dissection engine could crash. Discovered by Laurent Butti. (Bug 8197)
- Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
- GENERIC-MAP-NOMATCH
- wnpa-sec-2013-09
- The NTLMSSP dissector could overflow a buffer. Discovered by Ulf Härnhammar.
- Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
- GENERIC-MAP-NOMATCH

The following bugs have been fixed:
- SNMPv3 Engine ID registration. (Bug 2426)
- Wrong decoding of gtp.target identification. (Bug 3974)
- Reassemble.c leaks memory for GLIB > 2.8. (Bug 4141)
- Wireshark crashes when starting due to out-of-date plugin left behind from earlier installation. (Bug 7401)
- Failed to dissect TLS handshake packets. (Bug 7435)
- ISUP dissector problem with empty Generic Number. (Bug 7632)
- Illegal character is used in temporary capture file name. (Bug 7877)
- Lua code crashes wireshark after update to 1.8.3. (Bug 7976)
- Timestamp info is not saved correctly when writing DOS Sniffer files. (Bug 7998)
- 1.8.3 Wireshark User's Guide version is 1.6. (Bug 8009)
- Core dumped when the file is closed. (Bug 8022)
- LPP is misspelled in APDU parameter in e-CIDMeasurementInitiation request for LPPA message. (Bug 8023)
- Wrong packet bytes are selected for ISUP CUG binary code. (Bug 8035)
- Decodes FCoE Group Multicast MAC address as Broadcom MAC address. (Bug 8046)
- The SSL dissector stops decrypting the SSL conversation with Malformed Packet:SSL error messages. (Bug 8075)
- Unable to Save/Apply [Unistim Port] in Preferences. (Bug 8078)
- Some Information Elements in GTPv2 are not dissected correctly. (Bug 8079)
- Wrong bytes highlighted with "Find Packet...". (Bug 8085)
- 3GPP ULI AVP. SAI is not correctly decoded. (Bug 8098)
- Wireshark does not show "Start and End Time" information for Cisco Netflow/IPFIX with type 154 to 157. (Bug 8105)
- GPRS Tunnel Protocoll GTP Version 1 does not decode DAF flag in Common Flags IE. (Bug 8193)
- Wrong parcing of ULI of gtpv2 messages - errors in SAC, RAC & ECI. (Bug 8208)
- Version Number in EtherIP dissector. (Bug 8211)
- Warn Dissector bug, protocol JXTA. (Bug 8212)
- Electromagnetic Emission Parser parses field Event Id as Entity Id. (Bug 8227)

Updated Protocol Support:
- ANSI IS-637-A, ASN.1 PER, AX.25, Bluetooth HCI, CLNP, CSN.1, DCP-ETSI, DIAMETER, DIS PDU, DOCSIS CM-STATUS, DTLS, DTN, EtherIP, Fibre Channel, GPRS, GTP, GTPv2, HomePlug AV, IEEE 802.3 Slow, IEEE 802.15.4, ISUP, JXTA, LAPD, LPPa, MPLS, MS-MMC, NAS-EPS, NTLMSSP, ROHC, RSL, RTPS, SDP, SIP, SNMP, SSL

New and Updated Capture File Support:
- DOS Sniffer