Hello Everyone & Ryan,
So glad I came across this thread. Ryan, since you seem to be the authority here, I'd like to give you as much information as possible on this continued problem. I have also been experiancing /mach_kernel Portscan detections. I have been receiving detetions since 7/22/11. The total Portscan Detections are now at 129 loged items, noted in the Activities log inside the norton software. With an average of 3-6 detections per day. I did notice a sharp decrease in notifications last week, and I did not alter any software specifications.
My software Specs are as follows:
Norton AntiVirus: Version 11.1.2 (17)
Mac OSX: Version 10.6.8
From my recolection, I had updated Lion shortly prior to this issue, possibly 2 weeks or less. I do however remember the day it started to happen. I watched a movie trailer on Apple.com, and really enjoyed a song from the trailer. I Googled sites that offer information on movie trailer music, I cannot remember the website name i visited, but it was an unfamiliar site and the first one on the list. It of corse did not offer the information I wanted. About 20 minutes after, I started to receive this detection block. I rarely visit websites that I am not familiar with, or trust. As well, I do not download any material from peer to peer sources. So my best guess is that It could have started from there.
Please review the attached file for more details.
Can issues like this start from visiting websites, persons capturing the IP address, and sending this portscans? Hopefully this information can help to assist everyone. Where should we go from here? Is there any other information that may be of use?
Thank you so very much! Ohh, and on a wonderful note! My software is obviously doing it's job, great work at making awesome software!