I have found the following on my computer and have quarantined them: Beyond.class, Blackbox.class, Dummy.class, VerifierBug.class (VBS:Malware[Gen]. Also have command.com, kernel32.dll, winsock.dll, wsock32.dll and have quarantined them as well. I have scanned for Sircam worm with 3 different programs and followed the instructions to clear the registry and remove a Sircam worm anyway - was not found.
All of my disc space has been taken by something and I can’t figure out what it is if it isn’t the Sircam worm. And I can’t figure out how to reset the hard drive or clear the hard disc space. I started by removing programs and files and copying them on to CD (I know that I may have inadvertently copied the virus as well), thinking that I had used all of the 40 gig hard disc space within the past 6 months (new computer). Does anyone know what else this may be, if it is not the Sircam worm?
Did you have a firewall up? Trojans allow an attacker to access you computer, and store their files on you HD if they want. Sounds like you didn’t have a firewall, or something has brought it down.
With the computer being relatively new, and in the case of a sever infection like this, it may well be better to copy any files you want to keep to CD and reinstall the OS.
You are right in thinking that viruses may also be copied to the CD. You should be very cautious about copying files back. You could scan the CD with Ewido, a-Squared, Dr Web CureIT! and online scanners like Kaspersky, as well as avast! Preferably quarantine the CD’s for a few weeks- the longer you leave them, the less likely that your scans will miss a new virus that wasn’t added to the definitions.
You have to ask yourself how a new computer got so badly infected in such a short time. Was your OS up to date? Did you have a firewall? Did you open email attachments or download from P2P networks?
Even with a new computer, your first port of call should be Microsoft Update: download all critical updates.
Make sure you always have the latest version of Sun Java, and uninstall older versions from Control Panel>Add/Remove.