App Review ThreatFire 4.7.0 Prevention Test

[WinAndLinuxTutorials]

Welcome!
Here is the test:

Hope you like it.
:feedback:

 

[Deleted member 178]

very good review, like the big zooms and Killswitch

about TF, it confirmed what i thought, it cant compare with Mamutu. but the good point it seems to be lighter than the previous versions.

 

[WinAndLinuxTutorials]

very good review, like the big zooms and Killswitch

about TF, it confirmed what i thought, it cant compare with Mamutu. but the good point it seems to be lighter than the previous versions.

Thanks for the feedback I felt a system slowdown when I used it. As the version was last updated in 25/11/2009! Symantec is not caring about it. Will it perform better if I set the sensitivity level to be higher?

 

[Deleted member 178]

Thanks for the feedback I felt a system slowdown when I used it. As the version was last updated in 25/11/2009! Symantec is not caring about it. Will it perform better if I set the sensitivity level to be higher?

that is the problem with TF, resources usage, slow development. theorically it should have a better detection, but i cant confirm. i didnt use it a lot.

 

[jamescv7]

Threatfire needs to be update for improvements as Behavior Blocker. At least its getting detected than nothing.

 

[WinAndLinuxTutorials]

I heard that PC Tools is owned by Symantec, is this information right?

 

[imsoadude]

Yea you are correct, you can see that info here

 

[Viking]

Yes, Symantec owns Pc Tools, but Pc Tools is operating as a separate company, even though it is now under the umbrella of Symantec!

 

[WinAndLinuxTutorials]

I heard that ThreatFire was very good in the past, what is the reason for what happened these days?

 

[Viking]

I used ThreatFire in the past and it was a very nice behaviour blocker, but it hasn't bee upgraded in a very long time

 

[jamescv7]

I'm not sure why Threatfire becomes inactive for updates, as since Symantec owns PC Tools its like mostly AV, IS and other products were remain to be active in updates/improvements.

 

[WinAndLinuxTutorials]

I'm not sure why Threatfire becomes inactive for updates, as since Symantec owns PC Tools its like mostly AV, IS and other products were remain to be active in updates/improvements.

Maybe Symantec treats PC Tools products as toys I don't know why they don't care about it :huh:

 

[imsoadude]

Yea its not the smartest to let them sit there, because that could be pulling more attention to them and make them more money by selling two good products

 

[jamescv7]

If Threatfire was integrated from a part of Norton Feature "Sonar" surely it would done very well.

 

[Deleted member 178]

If Threatfire was integrated from a part of Norton Feature "Sonar" surely it would done very well.

i heavily suspect it was done already, Symantec surely salvage the code, added it to its sonar, then left Threatfire to its own.

 

[bogdan]

Threatfire on level 3 is practically useless, level 4 might help a bit. But the real problem is that some malware today behaves like any other safe application. It displays a window and asks the user for interaction. Therefore it isn't much a behavior blocker can do. Also a behavior blocker might react to late to prevent changes to your system, some files might be dropped on your hdd, some reg keys changed until the malicious application triggers a pop-up. I think the purpose of a behavior blocker is to prevent malware that your antivirus misses to entirely take over your system. At least this is what most behavior blockers do today - keep your OS in a working state.

 

[jamescv7]

So its like to be said, a BB must displayed that the malicious behavior was blocked and no more action required.

 

[Deleted member 178]

on Mamutu, it lookup the suspected file with the cloud then you set it to block or allow it automatically based on the statistics done by the other users.

 

[bogdan]

@umbra: But that seems like a way to reduce false-positives, not to improve detection (the file must be suspicious in the first place), am I right?

 

[Deleted member 178]

yes you right. to improve the detection you must set it on paranoid.