The latest DFK Threat Simulator seems to point to a very serious weakness in PG far for serious than a termination method. http://www.morgud.com/interests/security/dfk-threat-simulator-v2.asp It is able to take down a lot of HIPS and security programs using keystroke/mouse automation (e.g Online armor, GSS) , though PG is immune to that if you lock the interface. However it can take down PG and the rest by a 'replacement attack', replacing the files on disk... I'm not sure if this is considered a problem for PG, and I think this has being discussed before how PG doesn't protect it's own files but i think the following is very interesting... "** ProcessGuard is especially vulnerable because once the "pgaccount.exe" file is replaced with the dummy placeholder, ProcessGuard will allow any new process without prompting but will appear to be functioning normally! The only thing worse that no security is the illusion of security. In addition, ProcessGuard will protect the new dummy placeholder executable as its own and not allow it to be terminated." In other words, PG's will appear to be running but it's will be totally useless!! This is a very serious problem. The rest will just shut down which at least gives you a sign something is wrong, but with PG it will appear normal, even when it is totally useless!