[ConanTheLibrarian]

Sorry, I should have done that. I assumed you would have this sample already. I got it from this forum a little while ago. It was posted just b4 the new tdl3 came out. Norman TDSS Removal says:

TDSS/TDL3 Rootkit Detected
Warning - Rootkit disinfection failed. See log for details.

Attached is log and sample.

[lars]

Sorry, I should have done that. I assumed you would have this sample already. I got it from this forum a little while ago. It was posted just b4 the new tdl3 came out. Norman TDSS Removal says:

TDSS/TDL3 Rootkit Detected
Warning - Rootkit disinfection failed. See log for details.

Attached is log and sample.

Thanks. This is actually a much older sample... v3.15 ... almost jurassic :lol:
So... it had nothing to do with the changes introduced recently with the random driver infection.

I have fixed the issue and there will be a new version out real soon.

UPDATE: It has now been released: http://download.norman.no/public/Norman ... leaner.exe

If you come across any other samples causing issues, I'm always happy to have a look.

[GamingMasteR]

Hello,

Tested latest NTC with latest Tdl3 sample and NTC can see nothing .
OS : XP SP3 (Vmware)
Infected driver : isapnp.sys

[EP_X0FF]

Hi,

I can confirm problems :)

NTC is looping with detection, removal. Rootkit not removed.
Infected driver - termdd.sys

Regards.