Hi there!

I had an infected file from an email on my PC, which was never run, though. Norton Security detected and quarantined it (Trojan/Zbot). Then it told me to reboot my machine. Everything's fine now, and third party scanners also do not find anything.

However, in Norton Security's history, it shows me "threat actions performed: 57" and that Norton actually removed some registry keys and files with the malicious executable.

My question is a general one: Does Norton Security also "remove" non-existing files and registry entries that a trojan/virus MIGHT have written if it actually became active? I'm pretty sure that this is not the case here, as it was a simple .exe file and all I did was a manual scan using Norton Security.

Greetings, Rev