I think I've just been hacked.
 

Okay, so here's the deal. I get a bunch of scary looking E-mails from "info@earthlink.net," saying about how my E-mail address was used to send out a bunch of unsolicited spam. I disregard them, until today, when I get one that says "Please verify via this attachment that this wasn't you, or your account will be cancelled." And yes, like a dumbass, I opened the attachment. Now I can't access Norton Antivirus. I restarted my computer, and the Windows Security Center thingy pops up, showing my firewall to be turned off and Norton's disabled. WTF? Click the firewall back on, that's good to go, but whenever I try to launch Norton's, it's as if the files necessary to get it going ain't there no mo'. Any of you computer savvy folk out there, what gives? I called Earthlink up and they told me those e-mails are BS, that's fine and dandy, but I think I'm still screwed. Heeeeeeeeelp!

And for what it's worth, if by any chance the jackass rat bastard that did this to me reads this, hope Earthlink finds you before I do.

Can you get to the Symantec website and either get the online scan or else guess at which virus you have and download the removal tool?
Actually, this is one case where the F150Online redirector frame on posted links just might help enable you to reach the Symantec site. Try clicking this link.
http://securityresponse.symantec.com/

Now for whatever reason, any links to Symantec's site show up as "cannot find server" on my end.

Try this one, I never use virus software but I occasionaly do a scan with this one to clean things up a bit.

http://www.pandasoftware.com/activescan/

i never open ANYTHING of that nature...no matter what the title says...if i'm not sure of where it came from...no way...delete and empty trash is the only way...b.t.w. i have mcaffee anti virus and firewall...kik ass stuff...forget norton...used to have it...no more i even got my cousin to use it...and he builds computers...he swore by norton...but no more...zap!

Your virus is blocking access to that site.

Sumbitch! :mad:

ohh, and if the virus maker wasnt terribly smart, you could try plugging in symantec's IP http://206.204.52.54/

The main page loads up, but I can't get past that.

Make sure you have "hidden" files showing.

In windows explorer, go to C:\windows\system32\drivers\etc\ look for a file called "hosts". Open it with notepad...any references in there to symantec? Better yet, copy all of the contents of that file into a post.

Sounds like one of the Mytob viruses. Here's the page for the removal tool, if you can figure out how to access it. :(

http://securityresponse.symantec.com...oval.tool.html

you may need to down load the fix on another computer and then used the disk to fix yours. I got a virus what ruined my puter and i had to take it in to the shop to get it fixed, that was with McFee. I now have Norton and have 0 problems.

It looks like youve got a worm called W32.Mytob.EP@mm
part of the description:

The email has the following characteristics:

From:
One of the following:


admin
administrator
info
mail
register
service
support
webmaster

Subject:
One of the following:


Your password has been updated
Your password has been successfully updated
You have successfully updated your password
Your new account password is approved
Your Account is Suspended
*DETECTED* Online User Violation
Your Account is Suspended For Security Reasons
Warning Message: Your services near to be closed
Important Notification
Members Support
Security measures
Email Account Suspension
Notice of account limitation
[RANDOM CHARACTER]



there are removal instructions on symantecs site, but they are pretty lengthy. Ill copy and paste them if you'd like

# Copyright (c) 1993-1999 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

Hell yes, please do, in the meantime, I'm loading magazines and thinking what it'd be like to catch the spineless piece of garbage that came up with this crap in a dark alley.