my nmap scan

toString · 10 Jul 2006 at 11:26

I was doing a scan from the office to my router at home.

Warning: OS detection will be MUCH less reliable because we did not find at least 1 open and 1 closed TCP port
Interesting ports on ##############(########):
Not shown: 1678 filtered ports
PORT STATE SERVICE VERSION
5190/tcp open aol?
6881/tcp open bittorent-tracker?

BT is ok, as I opened that one...
But what on earth is that other one? I haven't opened that. I don't even have any AOL products installed.

upnp is disabled on the router too.

Any ideas?

toString · 10 Jul 2006 at 12:23

Nope no AIM.
I tried the netstat, and nothing is using port 5190. I tried nmap again, and it's still there too.
This is all very strange :/

I'm using it like this:

nmap -A -T4 -P0 ###########

toString · 10 Jul 2006 at 13:12

Quick google shows that said virus could open the port... good call!
Trouble is, I have NOD32 installed :/

I also have a windows 2003 server box too, for the record. Should I install NOD32 on there? Seems an unlikely place to get a virus, but I suppose I'll try it later..

toString · 10 Jul 2006 at 13:38

Thanks for the tip, I'll try later. I'll also try rebooting the router tonight and trying again tomorrow.
Not sure what you meant by this:
"Maybe you came across an open session as the port is greater than 1024"

Do ports below 1024 close quicker or something?
Sorry bit of a noob on this...