Another setting that may help is to turn off the "reply to sender" option for infected mail in your AV gateway scanner. That option just adds a lot of overhead to the system that you just don't need at times like this.

Since the source address is likely spoofed anyway, it just generates a bounce and more overhead. Best to just trash 'em.