PortScans are being detected quite often from various sites
It started to appear last week. It only happens when browsing with IE8 (not happening with Mozilla). Sites appear to be pretty random, one was an IT forum site, last one is an official Canon site in Lithuania.
Somebody is scanning your computer.
Your computer's TCP ports:
3266, 3268, 3267, 3269 and 3271 have been scanned from 220.127.116.11.
This IP belongs to www.canon.lt. I doubt they are scanning ports. Usually if i go to such site from another PC i don't get such warning. So, i wanted to find out if someone else is experiencing same issue. Or maybe this is some kind of error in SEP?
All our PC's are in an internal LAN and go out to the Internet from one external IP. Fortigate firewall is monitoring all incoming/outgoing traffic and we don't see anything suspicious in the logs.