I think this is Norton being overaggressive. That address is the Cellar's address, and port 80 is HTTP. The "nmap Xmas scan" is sort of like knocking on doors to see if anyone's there, not very serious and it could be a mistake somebody made in the protocol.
|