Hi malware fighters,
Part of a mail blacklist etc.?
Are you botted?
Even if your email isn't bouncing, it's a good idea to find out whether you've been blacklisted. First, go to
http://checkip.dyndns.org/ To view the IP address you send out to the world -- probably your router's. Select the displayed address and choose Edit, Copy to copy it to your clipboard.
There are several blacklist reporting sites. My favorite is Robtex:
http://www.robtex.com/rbls.html Paste your IP address into the only field on the page, and click Go. Robtex will list a great many blacklist sites. If any of them are red, you've got a problem. Use the list's contact information to find out why you're on that list and how to get off of it.
Finally, remember that prevention is the best medicine. Keep Windows and your antivirus, firewall and other security software up to date. Those precautions will reduce the chances of infection from almost certain to reasonably unlikely.
But then. There are programs like TrendMicroRUBotted:
http://free.antivirus.com/rubotted/Or the BotHunter program:
http://www.bothunter.net/But you should do some forensics yourself:
Run a pa (protocol-analyzer also named networksniffer (Wireshark for instance) in the background, save the logs thereof and take some time for analysis, sit down take a cola or some apple juice, put on your favorite background music. Also watch your cpu activity, I like CPU Monitor (
http://www.softpedia.com/get/System/System-Info/CPUMon.shtml). Check your logs with Event Log-explorer (
http://www.eventlogxp.com/ ) Well, as a private-user, this all will take some time, and then the following task is to investigate in what way your computer was compromised and what changes has been made, what processes are running with what hashes, etc. etc. also whether there are rootkits on the computer - (anti-rootkit scanners),
polonus
