@Clueless
Here you go, sir...
www.ubuntupocketguide.com
4 publicly visible posts • joined 11 Sep 2007
We had one user infected today. She swore she had not clicked any links, just replied to a message (and I trust her here). Luckilly she had only limited rights to her machine so the trojan had to stay in her TEMP folder and was removed pretty easily. Still - the host file got modified - looks like it is world writable by default (?!).