09-30-2010 11:47 AM
Try "MBR" , Which is the TDL4 family that can infect x64 systems using the MBR to get around patchguard etc.
Norton can detect these as "Boot.Tidserv" and "Tidserv.L" with at a couple of leftover files as "Trojan.Gen" as is in my Quarantine.
There is more than one variant of this, as far as I know 3 so far, unless someone has a newer variant of 0.04 +
09-30-2010 11:55 AM
Try the TDDSkiller by Kaspersky. http://support.kaspersky.com/viruses/solutions?qid
09-30-2010 12:04 PM
Unless you have a new variant Norton does detect the MBR as "Boot.Tidserv" I have tried it awhile ago.
As for removing TDL4 now, you must be able to do so, as you are testing malware like this on purpose, so you know how to remove it even manually if needed.
If you don't then there is a lesson in that.