This is not -exactly- on topic for comp.security.firewalls, but comp.security.misc was given over to spam years ago, and news.admin.net-abuse.sightings was re-organized out of existence earlier this year. Please feel free to redirect me to a more appropriate (and still active) newsgroup.
I would like to inquire as to good sites in which I can look up port numbers and see which attacks (trojan/virus) they are associated with. For example, my firewall logs show that since late on October 19, I've had over 155000 attempts to reach tcp 15057 on my residential connection, but I cannot find any non-trivial information about what the port is used for.
(It is within the realm of possibility that what I'm seeing is a randomly chosen port that got registered as an end-point by a distributed-processing program such as Skype; it's never easy to track such things without packet captures at the time of the original port registration.)
One way or another, it would be easier if there were sites known to have fairly up-to-date information about port usage. For example, if it turns out to be a random distributed port, then *not* finding the port on the list of known attack ports would also give me information about what I was seeing in the logs.
Thank you, Walter Roberson