Suspected infected with email worm

Discussion in 'malware problems & news' started by NixPix, Oct 10, 2009.

Thread Status:
Not open for further replies.
  1. NixPix

    NixPix Registered Member

    Oct 10, 2009
    Hi. I suspect that I am infected by some kinda email worm. What happanes is this: A few times per day I get emails saying my email that I sent (which I havent sent) has not been delivered due to various reasons. This is one example of many:

    "This is the mail system at host

    I'm sorry to have to inform you that your message could not
    be delivered to one or more recipients. It's attached below.

    For further assistance, please send mail to postmaster.

    If you do so, please include this problem report. You can
    delete your own text from the attached returned message.

    The mail system

    <>: delivery temporarily suspended: host[] refused to talk to me: 550 Access

    Reporting-MTA: dns;
    X-Postfix-Queue-ID: 04013ED240
    X-Postfix-Sender: rfc822;
    Arrival-Date: Mon, 5 Oct 2009 08:52:24 +0300 (EEST)

    Final-Recipient: rfc822;
    Original-Recipient: rfc822;
    Action: failed
    Status: 4.0.0
    Diagnostic-Code: X-Postfix; delivery temporarily suspended: host[] refused to talk to me: 550 Access

    And the emails I "supposedely" sent has an attachment named "Part 1.2". I use Avira as antivir and Malwarebyes. I use the built in firewall in Windows 7 x64 + Windows Vista/7 Firewall Control. I have scanned my computer with Avira, Malwarebytes, Hitman Pro, Trend Micro House Call and none of them report anything.

    Here is my hijackthis log:

    ~ HJT Log Removed as per Policy ~

    Does anyone have any idea whats going on? What can I do to clean my system? I would greatly appreciate any advice I can get. I know a reformat/reinstall win7 would do the trick but If I could clean my system that would be prefered if possible.

    Thanx in advance / Matt
    Last edited by a moderator: Oct 10, 2009
  2. JRViejo

    JRViejo Global Moderator

    Jul 9, 2008
    NixPix, perhaps you should review this Wilders thread: If you are currently infected and seek help in some of the forums listed there. We no longer process logs here.

Thread Status:
Not open for further replies.