PC Tools ThreatFire 3.5
Solid free protection supplements your existing antivirus
- Blocks brand-new threats, monitors system activity
- Occasional PC lockups
ThreatFire adds a worthwhile layer of security for your computer. Even more impressively, it's free.
Your current antivirus program may offer plenty of protection, but new, unknown threats still could slip through. That's where PC Tools' ThreatFire comes in. Now in version 3.5, this free utility adds an extra layer of protection to the security software you already have. It blocks an impressive number of threats through behaviour-based analysis. As can sometimes happen with security tools, however, it caused some system lockups in our testing.
The new edition of this popular free security program, released in May, adds an on-demand signature-based scanner, a mostly just-for-fun world map that shows detected threats, and a useful system-activity monitor that provides a good deal of information on the programs and services running on your PC.
To identify a malware threat based on a positive signature match--which is still the primary method that most antivirus programs use — a lab must first obtain a sample of the malware and create a full signature for it. It that window of time, before a signature is available, your machine could be infected with the virus. By contrast, proactive detection such as behavioural analysis can detect and block brand-new threats without signatures, thereby providing immediate protection. Most antivirus programs supplement signature scanners with some type of proactive detection, but not all are as effective as ThreatFire.
In independent tests conducted for PC World by AV-Test.org, a German security-program testing operation, ThreatFire's performance was outstanding. It correctly identified 18 of 20 new, relatively unknown malware samples by looking purely at factors such as where the program came from, what changes it made to files or the system Registry, and whether the program attempted to send information to the Internet. It successfully blocked 17 of those 18 (one sample stopped ThreatFire before the block could occur), and it successfully cleaned 16 of those blocked (it left part of one infection behind).
What's more, ThreatFire didn't register any false alarms in AV-Test.org's run-throughs; this is a definite plus, since proactive, non-signature protection is often prone to false alarms.
Version 3.5 adds PC Tools' signature-based scanner, formerly available only in the $US30-per-year Pro version. Since it isn't real-time protection, it won't scan every new saved file, so you will need to schedule it or activate the scan manually. The free version also requires that you keep its community features (which send anonymous detection info to PC Tools) enabled in order to continue receiving no-cost updates; doing so improves threat detection for all users, and there's no good reason to disable it. The Pro 3.5 version allows you to disable the feature, but unless you're running a business, you have no need to shell out for Pro. The free version of ThreatFire 3.5 is for home use.
The anonymous detection data also provides info for the utility's new Threat Detection display. Red dots on a global map show infection points for selected malware and adware threats.
Though the map is interesting, the new system-activity monitor is more useful. For the programs and services that are currently running, the monitor displays in-depth background info, such as the author, the command line, a list of open windows and modules, and other details for all processes. You can stop a process, or kick off a Google search for more information on it, with a right-click on the process name.
Other changes in 3.5 include better default options for handling alerts. For one thing, you can now instruct the tool to automatically quarantine, allow, or prompt whenever it encounters a suspected threat or potentially unwanted program (known threats are always quarantined). This version of ThreatFire also has improved master boot record scanning.
While you don't have to pay for ThreatFire, installing it entails another kind of cost. The lightweight ThreatFire service and system tray process didn't noticeably impact our test system while we surfed the Web and performed common tasks, and together they used less than 10MB of system memory. But security programs by nature have to reach far into your PC, and as a result they can often conflict with other software and cause trouble. In our tests on one heavily used PC with a wide range of installed programs and utilities, the computer locked up each time we attempted to run an on-demand scan using ThreatFire's signature scanner. You don't need to run the signature scanner to get ThreatFire's worthwhile behavioral protection, but such lockups are a good example of why you should be careful about installing too many security extras.
ThreatFire's thorough behavioral protection provides a worthwhile additional layer of security, particularly for shared or other at-risk PCs. It's all the more impressive for being free. As always, however, be careful about loading your computer down with security programs.
Join the Good Gear Guide newsletter!
Most Popular Reviews
- 1 Subaru XV 2017 review
- 2 Samsung 2017 QLED Q7 TV: Full, in-depth review
- 3 Kogan Atlas UltraSlim Pro laptop: full, in-depth review
- 4 Gigabyte Aorus GA-AX370-Gaming 5 AMD Ryzen AM4 motherboard review
- 5 Kogan curved 4K UHD 55-inch LED LCD TV review
Latest News Articles
- Drupal fixes critical access bypass vulnerability
- Hackers use old Stuxnet-related bug to carry out attacks
- Microsoft will cut services to standalone Office users so they’ll subscribe to Office 365
- Microsoft commits to a permament schedule for new Windows 10, Office updates
- OK Google, let's get personal
PCW Evaluation Team
A smarter way to print for busy small business owners, combining speedy printing with scanning and copying, making it easier to produce high quality documents and images at a touch of a button.
I've had a multifunction printer in the office going on 10 years now. It was a neat bit of kit back in the day -- print, copy, scan, fax -- when printing over WiFi felt a bit like magic. It’s seen better days though and an upgrade’s well overdue. This HP OfficeJet Pro 8730 looks like it ticks all the same boxes: print, copy, scan, and fax. (Really? Does anyone fax anything any more? I guess it's good to know the facility’s there, just in case.) Printing over WiFi is more-or- less standard these days.
As a freelance writer who is always on the go, I like my technology to be both efficient and effective so I can do my job well. The HP OfficeJet Pro 8730 Inkjet Printer ticks all the boxes in terms of form factor, performance and user interface.
I’d happily recommend this touchscreen laptop and Windows 10 as a great way to get serious work done at a desk or on the road.
Ultimately, I think the Windows 10 environment is excellent for me as it caters for so many different uses. The inclusion of the Xbox app is also great for when you need some downtime too!
For me, the Xbox Play Anywhere is a great new feature as it allows you to play your current Xbox games with higher resolutions and better graphics without forking out extra cash for another copy. Although available titles are still scarce, but I’m sure it will grow in time.
- Samsung Galaxy S8 phone: full, in-depth review
- Ryzen 5 vs Intel Core i5 CPU Australian review
- Mass Effect Andromeda review: One for the fans
- Which flagship TV is best? Sony 4K HDR Bravia 2016 versus LG 4K HDR OLED 2016
- 10 Blu-ray movies / Best looking Blu-ray movies
- CCEnd User Services ArchitectNSW
- FTSalesforce Project LeadQLD
- TPProject ManagerQLD
- TPProgram Manager - 12 month contractQLD
- FTTraining Lead | Up to $800 per dayVIC
- CCTechnical Consutlant - Entry Level - HPSMSA
- TPAutomation TesterQLD
- CCSenior Business AnalystNSW
- CCProcess Engineer- TelcoVIC
- FT.Net DeveloperNSW
- FTLevel 2/ 3 Systems AdministratorVIC
- FTInfrastructure Project Manager Office 365 ImplementationVIC
- TPEOI - Developer/Tester/Software EngineerACT
- FTTechnical Architect - Network /InfrastructureQLD
- FTAsst. Director - Claim AnalysisACT
- TPTest and Support AnalystQLD
- CCBusiness Analyst (Mid-level)VIC
- TPProject CoordinatorNSW
- FTIT Service Owner - Supply Chain TechnologiesNSW
- CCLead SAP SRM DeveloperACT
- FTPMO CoordinatorQLD
- CCSAP CRM Functional AnalystSA
- FTPHP Full Stack DeveloperQLD
- FTSenior Software Engineer - JavaACT
- FTElectronic Payments POS Business Analyst - Permanent - North Ryde areaNSW