Wireshark · Wireshark-users: Re: [Wireshark-users] Wireshark Date interpretation

Wireshark-users: Re: [Wireshark-users] Wireshark Date interpretation

From: Alexander Schunk <sysconsultcompany@xxxxxxxxxxxxxx>

Date: Sat, 12 Mar 2011 09:41:48 +0100

Hello,

thank you.

How did you find that out?

I haved used Utrace for tracing the ip address.

How can i detect the protocoll?

I need this for jurisdictional purposes

On 11 March 2011 17:42, Stephen Fisher <steve@xxxxxxxxxxxxxxxxxx> wrote:

On Fri, Mar 11, 2011 at 03:51:56PM +0100, Alexander Schunk wrote:

> i have detected an arcadyan network interface connected to my computer
> with IP address 224.0.0.22 and 98.138.26.78

224.0.0.2 is a multicast IPv4 address, specifically for IGMP:
http://en.wikipedia.org/wiki/IGMP

> Further investigation told me that it has a yahoo provider and is located in
> sunnyvale.

98.138.26.78 is sip105-p2.voice.ne1.yahoo.com, which sounds like a VoIP
application.
___________________________________________________________________________
Sent via: Wireshark-users mailing list <wireshark-users@xxxxxxxxxxxxx>
Archives: http://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://wireshark.org/mailman/options/wireshark-users
mailto:wireshark-users-request@xxxxxxxxxxxxx?subject=unsubscribe

Follow-Ups:
- Re: [Wireshark-users] Wireshark Date interpretation
  - From: Alexander Schunk

References:
- [Wireshark-users] Wireshark Date interpretation
  - From: Alexander Schunk
- Re: [Wireshark-users] Wireshark Date interpretation
  - From: Stephen Fisher

Prev by Date: Re: [Wireshark-users] Wireshark-users Digest, Vol 58, Issue 10
Next by Date: Re: [Wireshark-users] Detecting IP Addresses of Remote connection
Previous by thread: Re: [Wireshark-users] Wireshark Date interpretation
Next by thread: Re: [Wireshark-users] Wireshark Date interpretation
Index(es):
- Date
- Thread