Norton detected "trojan horse" on my system yesterday. It was in "WINNT\system32\Sysreg.exe". Norton quarantined it but could not repair it. I believe this trojan has been on my system for a few weeks now, as [censored] would pop up when I would open my Windows "start" or "control panel".

I went into "regedit" and removed all keys that had "sysreg.exe" in them. There were 2, but they had NortonAntiVirus-somethingorother prefixes. I deleted them anyway under the assumption that it was because Norton had the trojan quarantined.

Now my Norton Software seems corrupted. I cannot do a system scan, Auto-protect, email scan or script block. I've attempted to get online support from Symantec, but the moment I click their "Run the Automated Support Assistant " button, I get "page cannot be displayed" error.
I'm not sure if this is because it's a secure site or what. I've checked all my browser settings and they all seem fine. Is it possible that this trojan changed my settings? Can someone help to check if I've set them correctly? Can someone help me to determine if I've killed this trojan?
I've tried to post this once already...and for some reason it disappeared.

Thank you,
Jen

Hi Jen,

If you haven't already managed to resolve your problem, it might help us to see your HijackThis log. This will show us if any important browser or related registry file has been corrupted. Could you do this please: Download, unzip and run Hijack This

http://www.spywareinfo.com/~merijn/files/hijackthis.zip

Most of the entries in the log are harmless, so DON'T fix anything yet. Just SCAN your computer. Then, press the SAVE LOG button. This will open the log in Notepad. Copy and post (paste) the log from Notepad to this forum (don't use attachments). Someone will then let you know what to do next.

Also, while running HijackThis, press "Config..." > "Misc Tools" > Generate StartupList Log." Post this log to the forum as well.

Regards, Gordon

Thank you for the help anyway, but I had to reformat :(
What a PITA.
It was as if this trojan were laughing at me!! It changed all of my Internet settings so that i could no longer browse and many of my programs were corrupted.
I surrendered and lost everything on my hard-drive.
I appreciate your time anyway.

'Twas a nasty bug

Hi Jen,

I'm glad to hear that you managed to get your problem resolved. I know how troublesome some of these trojans can be. If I'd seen your post a few days sooner, it might have been possible to save you all the hassle involved in a reformat and reinstall. Anyway, it's maybe for the best. You've now got a fresh Windows installation, and your registry will be clean and compact.

Regards, Gordon