Ive had my broadband installed for a couple of weeks now and looking at my firewall logs ive noticed that i have a lot of inbound traffic (being blocked) headed for port 65535. I did a quick search on the net and apparently the RC1 trojan uses this port but ive updated my virus checker and it doesnt detect anything.
Any explanation as to what it might be?
Thu, 2003-07-03 14:42:41 - UDP packet dropped Source:126.96.36.199,65535 WAN - Destination:xxx.xxx.xxx.xxx,65535 LAN - [Inbound Default rule match]
Its not always from 188.8.131.52 either, sources include
You don't need to be infected by a trojan, for a system to make a connection attempt to you.
THese are simply connection attempts, and so long as your firewall blocks them, you are safe from the attempt.
There is very little you can do, apart from contacting the abuse department at the ISP where connections are coming from. That is is they are willing to help, or even answer emails sent to the abuse address.