ThreatFire (formerly Cyberhawk)
Version: 3.5
Downloads Count: 25,708
License Type: Free
Price: Free
Date Added: Jul 9, 2008
Operating Systems: Windows 2000, Windows XP, Windows Vista
File Size: 19456 KB
Author: PC Tools
- Panda ActiveScan 345,117
- PC-cillin Internet Security 258,612
- McAfee FreeScan 202,108
- AVG Anti-Rootkit 159,544
- HouseCall 144,188
Editor's Review of ThreatFire (formerly Cyberhawk)
Even if you have a great antivirus program, new or unknown threats still could slip through. That's where PC Tools' ThreatFire comes in. This free utility adds another layer to your current security software. It blocks an impressive number of threats through behavior-based analysis. As can happen with security tools, however, it caused some system lockups in our testing.
To identify a malware threat based on a positive signature match--the main method that most antivirus programs use--a lab must obtain a sample of the malware and create a full signature for it. In that time window, your machine could become infected. By contrast, proactive detection such as behavioral analysis can detect and block brand-new threats without signatures, thereby providing immediate protection. Most antivirus programs supplement signature scanners with some type of proactive detection, but not all are as effective as ThreatFire.
In independent tests conducted for PC World by AV-Test.org, a German security-program testing operation, ThreatFire's performance was outstanding. It correctly identified 18 of 20 new, relatively unknown malware samples by looking at factors such as where the program came from, what changes it made to files or the system Registry, and whether the program attempted to send information to the Internet. It successfully blocked 17 of those 18 (one sample stopped ThreatFire before the block could occur), and it successfully cleaned 16 of those blocked (it left part of one infection behind). What's more, ThreatFire didn't register any false alarms--a definite plus, since proactive, nonsignature protection is prone to false alarms.
This version includes PC Tools' signature-based scanner, formerly available only in the $30-per-year Pro version. It isn't real-time protection, so you will need to schedule it or activate the scan manually. The free version also requires that you keep its community features (which send anonymous detection info to PC Tools) enabled to receive free updates. Doing so improves threat detection for all users, and there's no good reason to disable it. The Pro 3.5 version allows you to disable the feature, but unless you're running a business, you don't need to buy it. The free version of ThreatFire 3.5 is for home use only.
Version 3.5 also adds a virus world map and a system-activity monitor that provides information on the programs and services running on your PC. Though the map is interesting, the new system-activity monitor is more useful. For the programs and services currently running, the monitor displays in-depth background info, such as the author, the command line, a list of open windows and modules, and other details for all processes. You can stop a process, or kick off a Google search for more information, with a right-click on the process name. Other changes in 3.5 include better default options for handling alerts. This version of ThreatFire also has improved master boot record scanning.
ThreatFire didn't noticeably impact our test system while performing common tasks, and it used less than 10MB of system memory. But security programs by nature have to reach far into your PC, and as a result they can conflict with other software. In our tests on a heavily used PC with a wide range of installed programs, the computer locked up when we attempted to run an on-demand scan with ThreatFire's signature scanner. (You don't need to run the signature scanner to get ThreatFire's behavioral protection.)
ThreatFire's thorough behavioral protection provides a worthwhile additional layer of security, particularly for shared or other at-risk PCs. It's all the more impressive for being free. But as always, be careful about loading your computer down with security programs.
Note: This link takes you to the vendor's site, where you can download the most recent version of this security software.
--Erik Larkin
Sponsored Links
-
Remove malicious software and protect your privacy with this professional-level anti-spyware plus antivirus program.
-
Free antivirus utility works within your browser to scan your hard drive.
-
Protect your PC against rootkits, zero-days exploits, and other threats--without interfering with your anti-virus software.
-
Scan your latest known viruses, and display a list of infected files,
-
Detect and eliminate Worm.Sober.J/P/Y and W32.Stanit.A, Worm/NetSky type worms.
-
-
Keep abreast of new viruses every day--without really trying.
-
The world s most trusted antivirus solution with advanced protection.
-
Remove malicious software and protect your privacy with this anti-spyware plus antivirus program.
-
Protect your PC with an expert antivirus solution
-
Scans your computer for malicious software: Trojan Horse, Dialer, Worms, Spyware
-
