can you also test rogue killer? it always finds something that other scanners miss
As I hadn't thought of that one in a while I gave it a try, and the results were as follows:
1). On malware Scan, it only detected the Persistence mechanism of the Worm (Startup). Although I let it delete that entry, on reboot the Worm persists anyway. The Stealer was ignored.
2). On Full Scan, for the data stealer both the Scheduled Task as well as the payload were detected (for some reason the Worm detection from above did NOT show up. But I let RK delete the entries for the stealer and upon reboot the Stealer was indeed eradicated, but the Worm was happily connecting out.
4). A fun fact- I had UAC disabled as usual (because it has no other use other than annoyance); however RK detected this fact (a registry entry- ConsentPromptBehaviorAdmin) and changed the value from 0 (UAC disabled) to 2 (Always Notify). Sort of a reverse of a malware UAC disabler.
Thanks for the Post! That was good for a few giggles!
ps- I've been playing around with a few RAT's. RK was blissfully unaware of them.