@Andra Zaharia With Secure DNS enabled Heimdal Pro is blocking the Ketarin site in Firefox, but strangely without any notification page, as I have seen for other sites that have been blocked. In IE, it does show a notification page that Heimdal is blocking that site. If I untick Secure DNS the problem goes away. I am pretty sure this site is a FP. Please check.
Per Heimdal Support: If you consider a particular website to be a safe online location, please contact us at support AT heimdalsecurity.com to notify us and we'll get back to you with a solution.
i've read through this thread and the Heimdal website - i think i'm missing something... Antivirus using blacklists have been shown to not be very effective since they can't keep up - Heimdal is relying on blacklists so can someone please explain why it would be effective - wouldn't it suffer from the same issue? or is it that it is limited by this and still adds a significant layer of protection? why? thanks
Malicious websites are very much their forte. They claim an unbelievable 15 million malicious websites blocked, adding 800,000 websites/wk (80/minute) ! That said, I had similar concerns (what IF a malicious website is not in their database). They replied with explanations (kind of) in posts #61, #69 this thread.
right,but in both the explanations given - the malicious server needs to be in their database or the downloaded malware needs to in the malware engine database...
Doubt if anything can catch 100%, but if this program catches a large portion of what is out there then that makes it much easier on the rest of your security software.
right & if that's the case i'll give it a go, but how are you making an assessment that it would catch a large portion of what is out there? Isn't the signature based AV dying because it's failing to do this?
Well it's already stopped me from going to several sites. One I suspected bad, the other I didn't, but easily could have been. The issue of signature based stuff dying brings to mind a question I saw asked back in the mid sixties. I was in the Air Force at the time, and some asked the point of keeping B 47 bombers around now that the B 52 was out. The answer made the point. How would you like to be on the ground when that obsolete bomber dropped it's payload. I don't expect an AV to do 100%, but I do use EIS, which is combo AV and BB. And it is always first to block malware when I test it.
If you or anyone else is interested, you can still enter the following giveaway http://malwaretips.com/threads/heimdal-pro-giveaway.50805/ (Note: It will end on October 7, 2015)
Thanks for letting me know Azure, another Wilders user kindly donated their key to me On another note is anyone else having issues with Heimdal not correctly patching the latest Flash update?
Thanks for the feedback guys - let me know if you think of anything else that would help me decide. i know some here poopoo lab testing like MRG, but for those of us that know little about security software it's helpful to have something to distinguish between the options
I think the IE Flash patch can only be done through Windows Update? I disabled Modules>'Enable patching of software' until I applied KB3087040 (apparently a problem for some), then enabled that option again.
The patching works fine, but you do have to watch other security software while doing it. I know Appguard will block the install (at least in lockdown) and also ERP does alert on the changes. Pete
Per Heimdal "Microsoft has chosen to code Flash directly into Internet Explorer for Windows 8 and newer, which makes it impossible for third party programs (e.g. Heimdal) to update Flash. You will need to run a Windows Update, to get the newest version of Internet Explorer, and thereby Flash Plugin." However, I see today Heimdal found Adobe Flash Plugin 18.0.0.232-IE detected vulnerable, and has updated it to 19.0.0.135-IE. I have not run Windows Update or IE today. Curious...
Ditto, it seems to have done it today, but yesterday it wouldn't even though it knew it was outdated. maybe heimdal found a work around!
I'm running Heimdal Pro on a Windows 10 test machine, and it keeps looping between versions of Adobe Flash for IE. Every so often, I'll get a pair of notifications that 1) my Flash plug-in is vulnerable, and then 2) it's been updated. A few minutes later, the cycle repeats. During those interim times when Flash is successfully updated, I get the following oddity (see the attached screenshot below): Meanwhile, Windows Update keeps failing when trying to update Flash Player for IE.
Thanks. I just realized that I misreported the problem. I have Heimdal PRO on my Vista machine, but Heimdal FREE on the Windows 10 test machine that's having trouble with the Flash update. Sorry about that. Could it be that Adobe Flash's integration into IE may be leading the Heimdal and IE updaters to be in conflict with each other somehow?
UPDATE: It looks like the problem had to do with Windows 10 and not with Heimdal (whether Pro or Free).
Curious too. Didn't work fo me; not sure if it is the Flash/IE integration on my Win 8.1 machine, or possibly AppGuard. I also thought I saw some sort of looping as reported by JEAM in #142.
How Heimdal compares to MBAM? It's any better? or it has more features? I found a not very accurate answer IMO here: https://www.wilderssecurity.com/threads/heimdal-free-and-pro.377569/page-2#post-2504769 They claim these 4 features Traffic Malware Detection (PRO) -> A filter black list? like adguard, ublock... Advanced Web Scanning Engine (PRO) -> This sound interesting but not sure how it works, it looks lie another blacklist filter with a pretty name Silent Vulnerability Patching (FREE) -> I guess this is exactly the same that MBAE and HPA does Support (FREE) To me it looks like it does the same thing that HPA and MBAE does. Is there a way to beta test this software?
Giveaway of the Day - Heimdal Pro 1.10 September 23, 2015 http://www.giveawayoftheday.com/heimdal-pro-1-10/
An excellent heads-up, I've been wanting to try this out for a while but there was no trial version on offer. I've got it installed now and if it's good I'll be purchasing a licence.
Appguard will definitely block the installations. When I see that happening, I set turn Appguard off an re initiate a scan. Install goes fine.