Originally Posted by monkfish
Sorry, I don't follow
Can you clarify, the server you stated above that was reported as performing malicious activity...
That is one of your OVH ones? Are you saying you don't think you have a web server running on it? In which case I'd suggest you check that server as there is some process kicking out traffic from tcp port 80 which is what that network report is submitted for.
Also, when you say netscan - is it your own machines you are portscanning or other peoples?
This is my OVH machines yes, but i don't portscan anyone. i don't own any server at Hetzner. I installed tcpdump and let it run for 24 hours in a screen an no result. Finally, i am not portscanning anyone.
I think i will cancel my rented server, i received the 5th abuse message, but this time this is my broadcast address