I try pg-demo today, if found avpcc.exe(Kaspersky),vsmon.exe(Zonealarm) to kill,it is no problem. However, it also said netcaptor(version 7.52), my multi-thread and multi-tab internet explorer ,which kernel is based on IE , is a security program,why?
And,when I Click "next" to kill, it can not be kill! (it is not protected by process guard)


thanks for your help.


Liujiana

Hi liujiana, I am not sure what your question actually means so below is a feature list that explains the difference between Free and Full


FEATUREs
Control application execution
Protect applications from unwanted termination
Protect applications from unwanted modification & injection
Protect applications from unwanted viewing
+ The following for the full Version
Block new and changed programs
Protect physical memory (prevent operating system vulnerabilities)
Block Global Hooks (stops keyloggers and password stealers)
Block unwanted driver/service installation (stops rootkit trojans)
Block registry DLL injection (stops spyware such as CoolWebSearch)
Secure Message Handling (protects applications from messages)
Interface Lock (protects from malicious changes and other users)
FREE technical support

Thanks Pilli.

but I use free vesion now.PG-DEMO is one part of it. It simulate virus to kill anti-virus software process. I wonder why it says my netcaptor is a anti-virus software process.

-{ Quote: "I wonder why it says my netcaptor is a anti-virus software process." }- Netcaptor is an add on browser using the IE shell, maybe it's blocking abilities are seen as Anti virus like? When using IE I use Avant browser which I find better than NetCaptor aslso works well with all DCS products :)

Pilli

O.. I see ,thanks Pilli. And it is interest that PG_DEMO can not kill netcaptor's process,although it is not protected by pg! :)

Liujiana,

PG-Demo just has an internal list of processes it tries to kill off for demonstration purposes, some based on actual lists used by trojans. Web filtering programs can certainly be considered as security software (PG-Demo does include Proxomitron in its list) but really what PG-Demo lists is unimportant - what is important is that Process Guard can block it from terminating key programs (anything security-related and anything given Internet access).

A better test of PG's capabilites can be done by running DiamondCS' Advanced Process Terminator (http://www.diamondcs.com.au/index.php?page=apt).

Thanks P2K, I must admit I got the old PG demo confused with the PG trial
APT is a much better test.