How do you detect a Lovelorn virus-infected PC in the internal network to stop its mass-mailing payload? Given that our firewall uses NAT to hide internal IP addresses, how do I go around this to determine the culprit?
As will always be the case, the first way to look for a virus is using a virus scanner. You should have up-to-date AV software installed on all your machines already, but it sounds like that it not the case. This may be a way to get more upper-management approval for a process of updating the AV software and ensuring that it is installed on all machines.
A few other things to try, courtesy of my friends in AVIEWS:
I hope this helps you track down the offending machine and stop it.
For more info on this topic, check out these SearchSecurity.com resources:
Dig Deeper on Malware, Viruses, Trojans and Spyware
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.