I clicked on a certain link this morning and received this message:
Access has been blocked.
Your IP [22.214.171.124] is found at Spamhaus .
If you feel this is incorrect please contact them.
So I visited Spamhaus and this is what I found:
The first red link on the above page says my machine is sending emails.
The second red link on the above page says :
IP Address 126.96.36.199 is listed in the CBL. It appears to be infected with a spam sending trojan, proxy or some other form of botnet.
It was last detected at 2013-06-14 00:00 GMT (+/- 30 minutes), approximately 1 days, 13 hours, 30 minutes ago.
This IP address is infected with, or is NATting for a machine infected with Pushdo. Pushdo is a DDOS trojan - meaning that it was (at least of the timestamp given above) participating in a HTTP-based (web protocol) distributed denial of service attack on web server[s].
Pushdo is usually associated with the Cutwail spam trojan, as part of a Zeus or Spyeye botnet. Together, this provides the attacker with DDOS, email spam, and information theft capabilities. This is something you really want to get rid of. But remember, we detected this specifically by the DDOS traffic to a web server.
And it gives this as a reference link:
I just ran a full scan with AVG. (My last scan was 2 days ago.) The new scan found and removed an infection (in 4 files), but it did't call it Pushdo trojan. It is HackTool.ADRN. Same thing, or am I still infected with Pushdo?