I ran an Nmap scan from Nmap-Online.com and here are the results:
PORT STATE SERVICE
25/tcp open smtp
53/tcp open domain
Only thing is, checked my Pix Firewall and the Inbound acess-list only permits 25. I do not permit DNS into the network, so how is it finding this? and more importantly, how can I find it and shut it off?