Sorry I cant give you a direct answer, but right now, assuming the server is in use. I would A. close services and see if it goes away. B. search google for possible common programs that use the port, or if its only used by a virri. Thats the best advice I can give you. And if you want a secure box, use freebsd
Bind shell backdoor listens on TCP 33270
A backdoor program that is associated with the Trinity distributed denial of service (DDoS) tool listens on TCP port 33270 (by default), awaiting an attacker's connection. Once connected, the attacker can issue a preconfigured password to open a shell running with root uid privileges. This backdoor has been observed running on many hosts infected with the Trinity DDoS agent.
Linux: All Versions
If this backdoor is found on a system, the computer should be considered completely compromised, and it should be removed from any network or Internet connectivity. The compromised computer may be needed for forensics purposes.
Because the computer may also be infected with the Trinity DDoS agent, it is necessary to completely re-install the operating system.