http://www.syssafety.com/leaktests.html
D+ (Safe Mode) is unable to intercept those leaktests. One thing curious is that in an on-deman scan, CAV detects the keylogger, but if I turn CAV on, it won’t detect it if I start the keylogger. Bug?
Comodo BoClean detected and stopped the keylogger.