While Norton 360 v3 seems to be able to eliminate "Infostealer.Gampass," I'm having to do frequent reboots to finalize the removing of it.  I never had problem with this virus prior to N360 v3 or the earlier versions just didn't detect it.

Also, I'm finding that when I open Windows Explorer, and select Tools, Folder Options, View, the box next to "Hide protected operating system files (Recommended)" keeps getting unchecked and I have to manually check it again.  Is N360 doing this or is it the Infostealer.Gampass virus doing it?

My system has also gotten a lot slower since upgrading to N360 v3 and crashes a lot in some programs.  I also have frequent lockups when I go into the Identity Protection area to update tasks or backup my configuration file.

I just restored my system using Norton Ghost to a known good backup from last summer then updated it because of so many problems.  My computer is old (about 8 years), but had been running well prior to upgrading N360.

I'm considering formatting my drive and reinstalling everything and not using my Norton Ghost backups.  This computer has become mostly unusable.

I installed Malwarebytes' Anti-Malware and first ran the full scan, then the safe mode per your instructions.  The Symantec instructions said to do the reverse.  What's the point of the safe mode scan if the full scan doesn't find anything which it didn't?  Actually during the scan, Norton popped up with another Infostealer-Gampass message and said I had to reboot to fix it.  I delayed the reboot until the scan was finished.  I have several drives that have to be scanned so this took a long time.

I actually didn't finish the safe mode scan because I had more pressing things I had to do online and couldn't wait hours for it to finish.  I did notice that when I ran MSCONFIG that a few odd things were in there:

Under Services Tab:
Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##
Manufacturer: Unknown
Status: Running

Startup Tab:
Startup Item: Blank
Command: Blank
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

The first item is highly suspicious and I unchecked it as well as the second one.

By the way, I forgot to mention that I did reformat my hard drive a couple of days ago and am just getting it back in shape.  It would be nice if you could download all of the updates at once so when reinstalling Norton software offline you don't get hit with viruses as I did when trying to activate and update.

I'm beginning to believe that N360 v3 has some flaws in it and may be generating these false reports.

When you have time, I'd suggest doing that Safe-Mode Scan and let it Complete, then Report Back what happened.

I also forgot to mention that prior to reformatting my hard drive, I did a restore with Norton Ghost which had the N360v2 and Norton Anti-Bot in the file.  When I tried to install N360 v3, the program asked to remove Anti-Bot.  When I did finally reformat my drive, I installed Norton 360v3 and just recently reinstalled Norton Anti-Bot.  I figured if it were to conflict with N360v3 the installer would have notified me which it didn't.  Since then I don't seem to be getting as many notices of this virus so I wonder if having the Anti-Bot program installed could be keeping this sneaky virus from getting back in.

I'll do the Safe Mode scan right now since I don't need to use the computer right now.  I'll give you the results.

Here are the results.  It didn't find anything.

Scan type: Full Scan (C:\|D:\|E:\|H:\|)
Objects scanned: 512461
Time elapsed: 2 hour(s), 21 minute(s), 53 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Norton 360 Version 3.0 does have the bext bits of Norton AntiBot in it, but you should first install Norton 360 and then Norton AntiBot, as you did.

Can you check the History in Norton 360 and Norton AntiBot and let us know if you Find any Threat Recently-Removed.

Many Thanks.

_____________________________________

I would also recommend that you look at this Blog as it give in-depth information about "Infostealer.Gampass" and may help you to Remove it.

The Trick Behind the Scenes: https://forums2.symantec.com/t5/blogs/blogarticlepage/blog-id/malicious_code/article-id/271.

I ran a full scan with Norton very early this morning and it only came up with:

Tracking Cookie detected by Virus scanner: Low Severity
5/16/2009 11:25:05 PM
Risk State: Fully removed
Recommended Action: Resolved - No Action

This is interesting.  In the history I found eight instances of these.  I didn't submit these manually.  Does it do it automatically? 

Norton Community Watch Feedback
Submitted 5/17/2009 10:34:19 AM

Submitted 5/17/2009 10:34:08 AM

Also found these two times:
Unused port blocking has blocked communications.  Inbound TCP connection: Detected (2 of these) between 10:25:53 AM and 10:25:56 AM

Unauthorized access blocked (Duplicate Object): Medium Severity
Actor: c:\windows\system32\services.exe
Target: C:\Program Files\Norton Ghost\Agent\VProSvc.exe
No Action Required

I forgot to add that the Norton Anti-Bot log was empty.  You can't do much with that program.  I guess it works on it's own.

While Norton 360 v3 seems to be able to eliminate "Infostealer.Gampass," I'm having to do frequent reboots to finalize the removing of it.  I never had problem with this virus prior to N360 v3 or the earlier versions just didn't detect it.

Also, I'm finding that when I open Windows Explorer, and select Tools, Folder Options, View, the box next to "Hide protected operating system files (Recommended)" keeps getting unchecked and I have to manually check it again.  Is N360 doing this or is it the Infostealer.Gampass virus doing it?

My system has also gotten a lot slower since upgrading to N360 v3 and crashes a lot in some programs.  I also have frequent lockups when I go into the Identity Protection area to update tasks or backup my configuration file.

I just restored my system using Norton Ghost to a known good backup from last summer then updated it because of so many problems.  My computer is old (about 8 years), but had been running well prior to upgrading N360.

I'm considering formatting my drive and reinstalling everything and not using my Norton Ghost backups.  This computer has become mostly unusable.

I noticed the article seems to relate mostly to games and stealing game account numbers.  I don't do online games and don't have any installed on my computer.  I mostly use graphics, 3D, and video editing software, but no games.  I do use Norton 360's integrated password program to remember passwords and logins so maybe the virus is trying to get to that.  Maybe I should not use it.

Like I mentioned, I haven't had another instance of this virus since May 14th and the scan early this morning did not detect it nor did that other program you recommended.

Norton Community Watch Submits Files to symantec which is related to Norton Insight and possible un-Detected Threats; this is Normal.  And yes, it Submits them Automatically.  If you look at your "Background Tasks" your Norton Product does, you will see "Norton Community Watch" in there.

Un-Used Port Blocking Blocks Connect Attempts that Programs on your computer are not using.  And the Un-Authorised Access Blocked  is Norton Blocking Changes to your Norton Product because Malware can Change things in your Norton Product to make it stop working, so, both these are Normal too.

Did you read that Blog I Posted?

Download HiJackThis (http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis),   the 3rd .exe (Executable) Version in the list.  Run it, Creating a Log.  If using Vista, Right-Click and "Run as Administrator".  Open that Log and Copy and Paste it here.

I forgot to mention, I’m using Windows XP SR3 on a computer that’s about eight years old and probably ready to die.  I’ll check out that program and let you know.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:35:21 AM, on 5/17/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\Norton AntiBot\agent\Bin\NABAgent.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\ezSP_Px.exe
C:\WINDOWS\System32\WScript.exe
C:\WINDOWS\AGRSMMSG.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Norton Ghost\Agent\VProTray.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe
C:\Program Files\Symantec\Norton AntiBot\agent\bin\NortonAntiBot.exe
C:\Program Files\Verizon\McciTrayApp.exe
c:\progra~1\Support.com\client\bin\tgcmd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
C:\Program Files\Norton 360\AddOns\Norton AddOn Pack\Engine\3.5.0.24\ccProxy.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\Norton 360\Engine\3.0.0.135\ccSvcHst.exe
C:\Program Files\Norton Ghost\Agent\VProSvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\Norton AntiBot\agent\bin\NABMonitor.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Symantec\Norton AntiBot\agent\Bin\NABWatcher.exe
C:\Program Files\Norton 360\Engine\3.0.0.135\ccSvcHst.exe
C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe
C:\WINDOWS\System32\dllhost.exe
D:\Re Backup\Misc Programs\Misc\HiJackThis.exe
C:\Program Files\Internet Explorer\iexplore.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://webact.symantec.com/webact-redirect.jsp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\3.0.0.135\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\3.0.0.135\IPSBHO.DLL
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\3.0.0.135\coIEPlg.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [VAIOSurvey] c:\program files\sony\vaio survey\surveysa.exe
O4 - HKLM\..\Run: [ZTgServerSwitch] c:\program files\support.com\client\lserver\server.vbs
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [VAIO Recovery] C:\Windows\Sonysys\VAIO Recovery\PartSeal.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Norton Ghost 14.0] "C:\Program Files\Norton Ghost\Agent\VProTray.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [ToolBoxFX] "C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /systrayIcon:on /fl:on /fr:on /appData:on
O4 - HKLM\..\Run: [NortonAntiBot] "C:\Program Files\Symantec\Norton AntiBot\agent\bin\NortonAntiBot.exe"
O4 - HKLM\..\Run: [Verizon_McciTrayApp] "C:\Program Files\Verizon\McciTrayApp.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.sony.com/vaiopeople
O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} (Symantec Script Runner Class) - https://www-secure.symantec.com/techsupp/asa/ss/sa/sa_cabs/tgctlsr.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: intu-help-qb1 - {9B0F96C7-2E4B-433E-ABF3-043BA1B54AE3} - C:\Program Files\Intuit\QuickBooks 2008\HelpAsyncPluggableProtocol.dll
O18 - Protocol: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - mscoree.dll (file missing)
O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Program Files\Norton 360\Engine\3.0.0.135\coIEPlg.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Norton 360\AddOns\Norton AddOn Pack\Engine\3.5.0.24\ccProxy.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files\Norton 360\Engine\3.0.0.135\ccSvcHst.exe
O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files\Norton Ghost\Agent\VProSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: QBCFMonitorService - Intuit - C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
O23 - Service: Sony TV Tuner Controller - Sony Corporation - C:\Program Files\Sony\Giga Pocket\halsv.exe
O23 - Service: Sony TV Tuner Manager - Sony Corporation - C:\Program Files\Sony\Giga Pocket\RM_SV.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: SymantecAntiBotAgent - Symantec - C:\Program Files\Symantec\Norton AntiBot\agent\Bin\NABAgent.exe
O23 - Service: SymantecAntiBotWatcher - Symantec - C:\Program Files\Symantec\Norton AntiBot\agent\Bin\NABWatcher.exe
O23 - Service: SymSnapService - Symantec - C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe
O23 - Service: VAIO Media Music Server (VAIOMediaPlatform-MusicServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Music Server\SSSvr.exe
O23 - Service: VAIO Media Music Server (HTTP) (VAIOMediaPlatform-MusicServer-HTTP) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\sv_httpd.exe
O23 - Service: VAIO Media Music Server (UPnP) (VAIOMediaPlatform-MusicServer-UPnP) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe
O23 - Service: VAIO Media Photo Server (VAIOMediaPlatform-PhotoServer-AppServer) - Sony Corporation - C:\Program Files\Sony\Photo Server\appsrv\PhotoAppSrv.exe
O23 - Service: VAIO Media Photo Server (HTTP) (VAIOMediaPlatform-PhotoServer-HTTP) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\SV_Httpd.exe
O23 - Service: VAIO Media Photo Server (UPnP) (VAIOMediaPlatform-PhotoServer-UPnP) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe
O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer-AppServer) - Sony Corporation - C:\Program Files\Sony\Giga Pocket\GPVSvr.exe
O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer-HTTP) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\SV_Httpd.exe
O23 - Service: VAIO Media Video Server (UPnP) (VAIOMediaPlatform-VideoServer-UPnP) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe

--
End of file - 11606 bytes

[edit: edited appearance of link under 'R1' to fix margin.]

Please go to: Start > Run > %Windir% and see if there are any random names in there; also be out on the look-out for:

                      Start > Run > %System% and see if there are any random DLL Files.

It may add a Value to one of the following Registry Sub-Keys so that it Runs every time Windows Starts:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

The Trojan may Modify the following Registry Entries:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\"Hidden" = "2"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\"ShowSuperHidden" = "0"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\"NoDriveTypeAutoRun" = "145"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Advanced\Folder\Hidden\SHOWALL\"CheckedValue" = "0"

Can you please Check these and let us know how you get on!

Start > Run > %Windir%

At the top of the list:
$hf_mig$ (in black; other hidden folders in blue); 5/13/2009 3:37 PM

Start > Run > %System%

"Windows cannot find '%System%'.  Make sure you typed the name correctly, and then try again.  To search for a file, click the Start button, and then click Search."

I just typed System instead.  I'm not sure what I'm supposed to be looking for as far as random.

I typed regedit to view the registry

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\"Hidden" = "2" (Mine shows 1)

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\"ShowSuperHidden" = "0" (Mine shows 0)

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\"NoDriveTypeAutoRun" = "145" (Mine shows 95)

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Advanced\Folder\Hidden\SHOWALL\"CheckedValue" = "0" (Mine shows 1)

I wish I could just send you my registry file to see if you can find anything.  None of it makes much sense to me.  A lot of what I see are Sony system files.

Wouldn't Norton be able to detect if there was something strange in my registry?

Try Start > Run > %systemroot%\system32 for the random DLL files. 

As to the registry, Norton will scan some of it (common malware infected places) but I do not believe Norton scans all the registry nor corrects all of it either.

I still don't understand what I'm supposed to be looking for.  There is a long list of things none of which mean anything to me.  There are two folders that are blue text (dllcache and DRVSTORE).  When I double click these folder names everything inside them is blue as well.  I'm assuming they are hidden folders.

Norton hasn't given me anymore indications that the virus has returned so I'm assuming everything is okay for now.

Please keep an eye out for this and take any notes you can (file names, locations, what you were doing on the system just before this showed, etc.) .  Thanks for being patient with us.

If you read that Blog, you will have seen that Infostealer.Gampass Deletes it's-self from the system, but keeps a File that can Lanch the Threat again, so, even although your system seems okay, you may still have the Threat on your computer, although, you may be Clean.

It might be an idea to do a Full System Scan with Norton and with Malwarebytes' Anti-Malware - all Drives - in Safe Mode, dis-connected from the Internet.  Please remember to Update the Products before Scanning.  If you do do this, please let us know the Results.