I'd have a look at the services and processes running on the NT box to see
whether there is anything unusual/suspicious.
Also, you could run a virus scan to check whether any trojans have infected
the machine (given that it's a mail server)
Regards, Michael
Martin
Köhling To: SuSE Security Mailing List