Today is the day when I found out that my Linux system was hit by a virus or a Trojan horse. My platform is openSuSE 10.3 and I’ve had it since its first release. Before that, I used openSuSE 10.2, but was never hit by a virus. I have had Avira anti-virus on my system, but I installed it from the source. Today, however, I found out that Avira anti-virus is also available on Yast, so I installed it.

I have suspected that a virus existed on my system, because the time and the date have been messed up. Even so, I’m never sure if it has been caused by a virus. I could never synchronize the time and, since yesterday, a248.e.akamai.net has been notifying me that the server certificate is outdated.

Anyway, after Avira installation, including dazuko, in order to run Avira, I scanned my system, as well as updated the anti-virus database. To my surprise, Avira caught a virus called TR/Agent.6952238. I was curious and googled it. Unfortunately, I didn’t find a lot of information on it, except from Avira website. However, the signature has been added to the database as of January 08, 2008. I also searched a related information from the site, but there is none. I did find that it is a Trojan, based on a forum, but I wasn’t sure which platform that it would infect. Apparently, the virus is located somewhere in ies4linux/ie6/ dosdevices directory. Hopefully, the anti-virus will do something about it and Avira will give more information on TR/Agent.6952238.

I’m still clueless about the virus on my system. There doesn’t seem to be any information that it has been deleted or quarantined. I’m feeling a little insecure using my laptop now. Or, should I just uninstall ies4linux? There is more bad than good in it.

Internet Explorer. Anything related to Windoze is never virus free, and why did I install it on the first place?