Threatfire false positives ?

If ThreatFire gives a prompt on a program that is not malicious (default setting 3), is it considered a false positive? Should FP be reported to PC Tools?

 

I think so.

 

Yes, please.

 

I think so too, but you have to do it the old-fashioned way, there is no "report f/p" function in ThreatFire.

 

The best way probably would be to turn on Community Protection,which would assist in having FPs placed on the TF whitelist.
Settings-general-community protection-can always be turned off

 

Just for info:

wextract.exe is a process associated with the operating system, not malware.

interop.shell32.dll is associated somehow with MS NET Framework, not malware.

I couldn't find any info on the other one.

 

That is the essence which makes whitelist apps so very dependable and trustworthy IMO.

Many other apps leave a user with a degree of uncertainty and HIPS is a big uncertainty for any unfamilair with their system and even some who are, but take a strictly whitelist application for security and it more or less inventories ALL your apps deemed safe and then when enabled no others are allowed period, that is if AE is on guard.

With ThreatFire theres still room for uncertainty in my estimation but maybe they'll get more aggressive in that regards at some point in the future. Right now in it's present form theres some areas that don't secure my confidence as well as an AE, Deep Freeze, or FD-ISR to name a few that do although these are very different purposed methods.