Port open on NT Server

[vnad]

I have a port open on my NT server, 5631 and I do not know what is opening the port. PcAnywhere was running on the server which used that port number but the application has been removed from the system. Do you know of anyway of finding out how that port is being opened?

 

[june1980]

Just a thought - Symantec uses something called "LiveUpdate" to auto update it's products. It runs as a service, and It has to be uninstalled along with other Symantec products.

I've never seen your problem, but I bet it's worth a shot.

Check to see if LiveUpdate is installed.

 

[pansophic]

According to NMAP, 5631 is pcAnywhere data. If you had pcAnywhere installed as a service, that server may still be running. I've never had this happen myself, but it sounds as if you did not cleanly remove the app. You may have to reinstall and then uninstall properly. Unless you want to go rummaging around through the registry.


pansophic

 

[vnad]

I went through the registry and cleared out the data in there. However, it wasn't until I deleted Robomon from my server that it released the port. There was a security script that was running that was blocking that port. Once it was cleared, PcAnywhere fired just fine.