I have LineageOS installed on my phone. Without the app InviZible Pro from F-Droid, my phone connects to Google servers for connectivity checks, system webview and time adjustments. The disadvantage in terms of privacy of /e/OS would be the default presence of micro g, which is proprietary. In LineageOS it's not present by default.

Sonalder explained it very well. I just want to emphasize that it's much more private than any other vpn because its impossible for Nym to keep logs.

I also want to add to his comment that it's like Tor network but a decentralized one. As there aren't as many and as fast nodes as in Tor, it's slower. Here is the owners conversation with the Youtuber The Hated One: https://www.youtube.com/watch?v=dVtw-4Eox2E

LineageOS sends connectivity checks, time adjustment requests and system webview (chromium by default and not easy to change) data to google servers as far as I know. Are you sure it doesn't send anything to google? On the other hand, there is an app Invizible Pro on FDroid, which is perfect to prevent such connections. Maybe you assume the user will install it?

I wish I can bring it to an expert. Do you know how to find one? Here is the result: https://paste.centos.org/view/c992ba88 Sorry for the delay

I wish I could bring it to an expert. Do you know how to find one? Here is the file: https://paste.centos.org/view/5df16fbe Sorry for the delay

I will try it, thank you :)

I'm not just trying to get rid of the malware but also understand what it's doing. Besides, wiping the system doesn't help as some viruses can permanently corrupt bios. So before wiping out, I think it's a good idea to know what's going on my pc and where do my data go, if there is a malware. I'm a rookie with network monitoring, that's why I'm trying to learn from more experienced users. Here is the part of the original capture: https://limewire.com/?referrer=pq7i8xx7p2. I will disable tor and close all apps along with some serviced and record again. I will let you know, thanks for your help

Does also your computer connect to Amazon, Hetzner, 1337 Services GmbH, Evanzo GmbH and ThomasFamilyInvestments without a reason?

Yes, .100 is me. I have a Zyxel router, should it show the intended recipient? I'm running Linux. What do you mean by a high port to a low port? I also think there is a malware.

Thank you for the informations. There were nothing in the foreground but tor was apparently running in the background. But I'm still not sure if these services were all due to Tor. I need to run another record I guess

Thanks for the informations. This clarifies a lot.

so am i running a relay in the background although tor browser is closed?