Not to sound too green but, what's stopping a root kit or a trojan from just stopping the PG service(s) and then infecting the box? -d
Hi dsmythe, To do that the rootkit would have to install a driver or service which PG prevents unless specifically allowed by ProcessGuard which works at the kernel level. This is providing that you enable the four general tabs. Also if the dropper is an executable PG will ask if you wish to allow execution. HTH Pilli