kodak at FRONTIERHOMEMORTGAGE.COM
Wed Mar 3 16:19:34 GMT 2004
>> Some machine on our network has been infected by Worm.Bagel.J and
>> other variants. This is spawning a whole lot of mails with password
>> encrypted zip files which contain infected executables.
>> We are using MailScanner-4.21 along with clamav-0.67-1.
>> Anybody face a similar problem? Any pointers would be great.
>Find its IP, deny access to SMTP port via iptables.
Better yet, unplug it from the network until you get it
More information about the MailScanner