Windows Possible virus infection. Confirmation required.

Ok, So Im sitting here and all of a sudden AVG states that its connected to a certain email server that I don't recognise.
So, luckly AVG keeps a log and from what I can see this is the first time my machine has connected to this server but im concerned I'm being used as an email spam machine.
AVG however can't find any virus', nor an any online scans and I am unable to find or locate any spyware on my system. I appear totally clean.

The address in question is:

There appears to be a web server on this system but the page itself is blank.

Any ideas?

 

Looks like you're right.

As for other ideas on removal, did you run the AV and anti-spyware scans in Safe Mode as well?

 

there is a very easy way to stop this problem.... here

but seriously, thats a dynamic ip by the looks of it, and it certainly shouldnt be running a mailserver. what were you doing at the time? although your antivirus cant find a virus, you may be looking for the wrong thing, a lot of viruses install a socks proxy so that other people can use your machine to connect through (i.e. a spammer can connect to your machine, then connect through you to a mailserver to send his spam, so it looks like the spam is coming from you).

there is a simple rule in IT Security. when in doubt, lock it out. if you dont know what it is, tell your firewall to not allow it. you'll either notice something stops working, which will tell you what it is, or if you dont see anything magicly stop working, you need to dig around a little to find out why your machine is connecting to strange places.

it may be something nasty, but it might also just be some guy running his website off his home pc (think of those forums that allow graphic images in sigs and such, someones sig could be hosted on his home pc).

 

Ahh, cheers for that. Ill have to re-run the scans in safe mode to double check.
For some reason I couldnt see that result in google the first time I looked ( I obviously didnt look hard enough )

::edit:: LOL zidane. Im not installing linux on my main box. Thats reserved for my server
At the time I had JUST closed mozilla firebird and AVG popped up saying that it had connected to a mail server at that address.
I am usually pretty tight when it comes to system security but how this one managed to evade me and wind up on my system I do not know.
I guess I'm due for a re-install anyway but still nice to try and fix if possible

 

Nothing showed up for the entire address, so I just kept chopping bits off until something did show.

Post back if you find anything.

 

Where winbloze is concerned
"I live there for I am" seams to best describe its insecurity.