Infected machines setups a backdoor on port 1034 so scan your systems/networks and firewall logs for this. You could also scan firewall logs for excessive SMTP sends from a particular host (non-mail server).
Results 11 to 11 of 11
Thread: New variant: W32/Mydoom-O
|
|