The remote host is running software that should be authorized with respect to corporate policy.
The remote host is running the Tivoli Network Services Auditor scanning software. This software is used to automate the scanning of network systems for known vulnerabilities. The presence of this scanner indicates that a group is scanning the network for vulnerabilities.
Ensure that these scanners are authorized according to corporate policies and guidelines.