(C) 1998-2007 - Luca Deri  
Please enable make sure that the ntop html/ directory is properly installed

 

 

Info about web.whatsapp.com

IP Address31.13.94.52 Flag for gTLD code com (Guessing from gTLD) [unicast] [ Purge Asset ]
First/Last SeenMon Jun 9 04:27:23 2025  -  Fri Jun 13 23:37:07 2025 [Inactive since 3 sec]
Domainwhatsapp.com
Last MAC Address/Router Network Interface Card (NIC)/Router00:24:8C:DE:84:31 
Host LocationRemote (outside specified/local subnet)
IP TTL (Time to Live)56:56 [~8 hop(s)]
Total Data Sent1.5 GBytes/1,475,236 Pkts/0 Retran. Pkts [0%]
Broadcast Pkts Sent0 Pkts
Data Sent Stats
Local 100 %
 
Rem 0 %
IP vs. Non-IP Sent
IP 100 %
 
Non-IP 0 %
Total Data Rcvd102.4 MBytes/947,988 Pkts/0 Retran. Pkts [0%]
Data Rcvd Stats
Local 100 %
 
Rem 0 %
IP vs. Non-IP Rcvd
IP 100 %
 
Non-IP 0 %
Sent vs. Rcvd Pkts
Sent 60.9 %
  
Rcvd 39.1 %
Sent vs. Rcvd Data
Sent 93.9 %
  
Rcvd 6.1 %
Host TypeHTTP Server HTTP Server
Further Host Information[ Whois ] [ ]
Host Healthness (Risk Flags) High Risk Medium Risk Low Risk
  1. Medium RiskSuspicious activities: too many host contacts
  2. Low RiskUnexpected packets (e.g. traffic to closed port or connection reset):
    [Rcvd: rst] 

 

Host Traffic Stats

TimeTot. Traffic Sent% Traffic SentTot. Traffic Rcvd% Traffic Rcvd
11 PM 38.6 KBytes0.0 %36.5 KBytes0.2 %
10 PM 63.1 KBytes0.0 %60.3 KBytes0.3 %
9 PM 132.1 KBytes0.0 %69.6 KBytes0.4 %
8 PM 69.8 KBytes0.0 %62.3 KBytes0.4 %
7 PM 66.5 KBytes0.0 %63.3 KBytes0.4 %
6 PM 231.6 KBytes0.1 %86.1 KBytes0.5 %
5 PM 188.3 KBytes0.1 %84.3 KBytes0.5 %
4 PM 337.4 KBytes0.1 %89.6 KBytes0.5 %
3 PM 940.9 KBytes0.4 %118.9 KBytes0.7 %
2 PM 274.1 KBytes0.1 %91.6 KBytes0.5 %
1 PM 1.3 MBytes0.5 %152.0 KBytes0.9 %
12 PM 6.2 MBytes2.4 %487.5 KBytes2.8 %
11 AM 19.3 MBytes7.4 %1.0 MBytes6.1 %
10 AM 48.8 MBytes18.6 %2.3 MBytes13.5 %
9 AM 17.7 MBytes6.8 %1.3 MBytes7.8 %
8 AM 10.4 MBytes4.0 %1.0 MBytes6.1 %
7 AM 28.4 MBytes10.9 %1.7 MBytes10.1 %
6 AM 27.1 MBytes10.4 %2.6 MBytes15.3 %
5 AM 83.3 MBytes31.9 %4.7 MBytes27.6 %
4 AM 16.6 MBytes6.4 %792.7 KBytes4.6 %
3 AM 28.5 KBytes0.0 %28.4 KBytes0.2 %
2 AM 29.9 KBytes0.0 %30.1 KBytes0.2 %
1 AM 38.6 KBytes0.0 %34.7 KBytes0.2 %
12 AM 28.3 KBytes0.0 %29.2 KBytes0.2 %
Total

 

Packet Statistics

TCP ConnectionsDirected toRcvd From
Attempted0  10,077
Established0  3,574 [35 %]
Terminated0  11

TCP FlagsPkts SentPkts Rcvd
SYN0  10,077
RST|ACK39 1,553
RST15 411

AnomalyPkts Sent toPkts Rcvd from
Closed Empty TCP Conn.0  11

 

Protocol Distribution

ProtocolData SentData Rcvd
TCP1.5 GBytes100% 98.4 MBytes
96%

 

UDP0.0 KBytes  4.0 MBytes
3%

 

Protocol Distribution
IP Distribution

 

Last Contacted Peers

Sent ToIP Address
18:66:DA:06:EB:53 Network Card  
70:71:BC:31:71:53 Network Card  
192.168.1.194 192.168.1.194 
1C:6F:65:47:D9:D6 Network Card  
04:D9:F5:32:79:12 Network Card  
2C:F0:5D:99:7A:79 Network Card  
D8:5E:D3:D8:76:BB Network Card  
D8:5E:D3:A4:56:94 Network Card  
Total Contacts3258
Received FromIP Address
18:66:DA:06:EB:53 Network Card  
70:71:BC:31:71:53 Network Card  
1C:6F:65:47:D9:D6 Network Card  
D8:5E:D3:D8:76:BB Network Card  
192.168.1.194 192.168.1.194 
D8:5E:D3:A4:56:94 Network Card  
04:D9:F5:32:79:12 Network Card  
2C:F0:5D:99:7A:79 Network Card  
Total Contacts3268

 

TCP/UDP Service/Port Usage

IP ServicePort# Client Sess.Last Client Peer# Server Sess.Last Server Peer
https443  19001/1.5 GBytes2C:F0:5D:99:7A:79 Network Card

 

TCP/UDP Recently Used Ports

Client PortServer Port
     

 

102 Active TCP/UDP Sessions

ClientServerData SentData RcvdActive SinceLast SeenDurationInactiveLatencyL7 ProtoNote
CPA-GAROFALO  VoIP Medium Risk P2P Server :50320web.whatsapp.com  HTTP Server Low Risk :https333.0 KBytes694.0 KBytesFri Jun 13 13:25:20 2025Fri Jun 13 23:37:07 202510:11:473 sec   SYN ACK PUSH 
CPA-GAROFALO  VoIP Medium Risk P2P Server :53303web.whatsapp.com  HTTP Server Low Risk :https268.8 KBytes349.7 KBytesFri Jun 13 13:27:25 2025Fri Jun 13 23:36:52 202510:09:2718 sec   SYN ACK PUSH 

The color of the host link indicates how recently the host was FIRST seen
  0 to 5 minutes     5 to 15 minutes     15 to 30 minutes     30 to 60 minutes     60+ minutes  
Report created on Fri Jun 13 23:37:10 2025 [ntop uptime: 4 days 19:24:24]
Generated by ntop v.3.3 [x86_64-unknown-linux-gnu]
© 1998-2007 by Luca Deri, built: Aug 6 2008 09:54:10.
Listening on [eth0] for all packets (i.e. without a filtering expression)
Web reports include all interfaces (merged)