Re: weired logs
> What is port 2703 ?
Well tor seems to be assembling quite some networking infrastructure.
Utility http servers like privoxy or eisfair (used with TOR) can be configured to connect through unusual ports. Astaro anti-spam update also used port 2703.
If you really need to track it install wireshark.
Or use simple commandline tools like ps, ping, whois, nmap.
# ping c105.cloudmark.comrk.com
PING c105.cloudmark.com (126.96.36.199) 56(84) bytes of data.
From 188.8.131.52 icmp_seq=5 Packet filtered
From 184.108.40.206 icmp_seq=11 Packet filtered
From 220.127.116.11 icmp_seq=12 Packet filtered
# whois 18.104.22.168
OrgName: Cloudmark, Inc.
Address: 128 King St.
City: San Francisco
# whois 22.214.171.124
Internap Network Services PNAP-05-2000 (NET-64-94-0-0-1)
126.96.36.199 - 188.8.131.52
CloudMark INAP-SJE-CLOUDMARK-1064 (NET-64-95-143-64-1)
184.108.40.206 - 220.127.116.11
"Anti-spam, Anti-virus and Anti-phishing for Service Providers"
- weired logs
- From: "Hans-J. Ullrich" <email@example.com>