PCAudit uses DLL injection to inject it's code (as a DLL) into authorized application
instead of launching it's aim directly.
If the aimed application have full access, pcaudit will go trough without trouble.
To test PCaudit correctly, say "Always" if your firewall will warn you that Explorer.exe try to access the
Internet. Then try again, and if your firewall don't show you an alert about
pcaudit.exe, it means that it is vulnerable...
Meaning
If the test is a success, this means that your firewall is vulnerable to DLL injection.