Bagle virus attacking network. Help!
Posted on 2004-11-11
Hi, I have a network of about 15 workstations, and one File/Email server running Microsoft SBS 2000, with Exchange 2000. Just this week the email system started acting up, with emails being returned undeliverable ect ect. AVG Network edition antivirus found the BAGLE.AZ virus existed in two files located at C:\Program Files\Exchsrvr\Mailroot\vsi 1\Queue. Both of the files were .EML files.
I had AVG remove the files, but each day two or three will reappear. In addition, my users have been getting lots of emails containing the Bagle virus. From what I can see, most of these viruses are being caught by the AVG on thier workstations and put into the virus vault.
So my questions are this:
-What steps should I take to find out what exactly is happening to my server? Things seem to be getting held up in the queue.
-I have heard that it is not good to use a normal file server anti-virus to scan Exchange files as I have been doing. Is this the case? Why?