App Review Heimdal Thor Premium 2024

[Shadowra]

Content source

https://odysee.com/@Shadowra:f/Heimdal-Thor-Premium-2024:5

Heimdal is a Danish company offering an anti-virus solution called Thor.
This solution includes a NextGen antivirus solution, a firewall and an IDS called Vigilance.
Let's see how it behaves.



User interface :
The interface is clear and easy to understand.
The software is fairly simple, with few settings, which may be of interest to novices.
On the other hand, during my test, Heimdal functioned rather strangely, not always alerting you in the event of detection and not automatically placing them in quarantine!
You have to go to the NGAV and place them in quarantine yourself.

In terms of RAM consumption, it's fairly light, but slows down program launch due to a check in the Cloud.

Web protection: 7/9
2 malwares were not blocked by either the protection or the firewall. One malware injects the RegSvcs.exe process, which will download other malware.
The rest is blocked by the antivirus, but with no download alert.
Web filtering is non-existent.

Fake crack : 1/1
The installation is blocked by Heimdal.

Malware Pack : Remaining 20 files out of 115.
During the first scan, Heimdal left behind 24 pieces of malware, but found 4 more afterwards, bringing the total to 20.

At runtime, it's carnage!
Heimdal lets too many attacks through, with Trojans, Botnets and other stealers passing through without reaction.
Heimdal tried to block a few payloads, but soon found itself overwhelmed.
Not great...

Final scan :
Heimdal : 9
NPE : 25
Autoruns : 17 malicious keys !
Malwarebytes : 9
KVRT : 21 (Infection Memory !! RAT activity !)

Final opinion:

Heimdal could be a good challenger, but it's not.
It's based on the Avira engine, but doesn't fully exploit it.
It relies too much on the SDK engine, which is totally inadequate.
Its other shields (such as Vigilance or its firewall) NEVER react!
I don't recommend it.

@Gidiyorsun and @BigWrench request

 

[Bot]

Thanks for your detailed review. It seems Heimdal Thor Premium 2024 has some significant issues, especially with malware detection and quarantine. Your feedback is crucial for potential users making an informed decision. @Gidiyorsun and @BigWrench, your input would also be appreciated.

 

[Divine_Barakah]

Thanks for the test.

Honestly, it would be more appropriate to select the malware samples (it does not matter how many but rather what each sample does) and divide them into groups based on their behaviour (ransomware, PUPs, Info stealers etc).

Personally I am not a fan of running a test with a random malware pack with any verification if all the files in there are malicious.

I hope you take that into consideration in your future tests. You efforts are much appreciated.

Regarding Heimdal, in my experience it has always been mediocre.

 

[Jonny Quest]

"At runtime, it's carnage!" LOL, love it Thanks for another wonderful review, Shadowra

 

[Shadowra]

Thanks for the test.

Honestly, it would be more appropriate to select the malware samples (it does not matter how many but rather what each sample does) and divide them into groups based on their behaviour (ransomware, PUPs, Info stealers etc).

Personally I am not a fan of running a test with a random malware pack with any verification if all the files in there are malicious.

I hope you take that into consideration in your future tests. You efforts are much appreciated.

Regarding Heimdal, in my experience it has always been mediocre.

Malware is always checked.
I may make mistakes, but that's very rare.
Thanks for your message.

 

[Divine_Barakah]

Malware is always checked.
I may make mistakes, but that's very rare.
Thanks for your message.

That's great. It would be nice to include info about the used samples in the test? This way it would be a definitive answer that X product missed 1 2 3 real malware. And A B C was done in the system.

 

[BigWrench]

Thanks for your detailed review. It seems Heimdal Thor Premium 2024 has some significant issues, especially with malware detection and quarantine. Your feedback is crucial for potential users making an informed decision. @Gidiyorsun and @BigWrench, your input would also be appreciated.

Been a while... but it really just sat there. I don't test malware, per se, but I found nothing special about it. Also found that they have a very deceiving auto renew, that was impossible to find and get stopped. Went around and around with their customer service. Had actually stopped using it and noticed an EFT on my checking account. If memory serves me correctly, they didn't do PayPal at the time. Was just slow and sluggish. nothing really worth paying for.

 

[Divine_Barakah]

Been a while... but it really just sat there. I don't test malware, per se, but I found nothing special about it. Also found that they have a very deceiving auto renew, that was impossible to find and get stopped. Went around and around with their customer service. Had actually stopped using it and noticed an EFT on my checking account. If memory serves me correctly, they didn't do PayPal at the time. Was just slow and sluggish. nothing really worth paying for.

Personally, I'd go with Avira or better with F-Secure.

 

[Shadowra]

That's great. It would be nice to include info about the used samples in the test? This way it would be a definitive answer that X product missed 1 2 3 real malware. And A B C was done in the system.

It's got everything
Worms, Trojans, VBS/JS/HTA/Java attacks, Botnets, RATs, old malware (well known enough to see how responsive the lab is etc)
I'll see for the next shootings if I'll sort them by folders, I'll do some testing first

 

[cartaphilus]

Heimdal is a Danish company offering an anti-virus solution called Thor.
This solution includes a NextGen antivirus solution, a firewall and an IDS called Vigilance.
Let's see how it behaves.



User interface :
The interface is clear and easy to understand.
The software is fairly simple, with few settings, which may be of interest to novices.
On the other hand, during my test, Heimdal functioned rather strangely, not always alerting you in the event of detection and not automatically placing them in quarantine!
You have to go to the NGAV and place them in quarantine yourself.

In terms of RAM consumption, it's fairly light, but slows down program launch due to a check in the Cloud.

Web protection: 7/9
2 malwares were not blocked by either the protection or the firewall. One malware injects the RegSvcs.exe process, which will download other malware.
The rest is blocked by the antivirus, but with no download alert.
Web filtering is non-existent.

Fake crack : 1/1
The installation is blocked by Heimdal.

Malware Pack : Remaining 20 files out of 115.
During the first scan, Heimdal left behind 24 pieces of malware, but found 4 more afterwards, bringing the total to 20.

At runtime, it's carnage!
Heimdal lets too many attacks through, with Trojans, Botnets and other stealers passing through without reaction.
Heimdal tried to block a few payloads, but soon found itself overwhelmed.
Not great...

Final scan :
Heimdal : 9
NPE : 25
Autoruns : 17 malicious keys !
Malwarebytes : 9
KVRT : 21 (Infection Memory !! RAT activity !)

Final opinion:

Heimdal could be a good challenger, but it's not.
It's based on the Avira engine, but doesn't fully exploit it.
It relies too much on the SDK engine, which is totally inadequate.
Its other shields (such as Vigilance or its firewall) NEVER react!
I don't recommend it.

@Gidiyorsun and @BigWrench request

When I was lurking few years ago I recall a member of the forum singing praises of both Heimdal and Gryphon router. It appears that both of those products have fallen flat and are no longer being talked about or praised here.

 

[Trident]

In addition to the review by Shadowra, the following needs to be mentioned about Heimdal:

• The company abuses widescale marketing terms such as NextGen and others, when in reality there is nothing next gen. It uses the Avira SDK which is pretty much FirstGen engine, jam packed with definitions and heuristics, receiving around 5 updates daily. NextGen would mean it can function without updates.
• At runtime, it couldn’t have been anything else but carnage, as there is no behavioural monitoring whatsoever. The only thing it could do at runtime is to block secondary payloads, detected by Avira, from being downloaded.
• They claim there is “sandbox” and “behavioural inspection” but nobody ever has seen these in action, much like Panda TruPrevent.
• There is no firewall, they simply ensure that Windows Firewall is on.
• The “web protection” is solely dns-based so it will work in some cases, but when malware tries to connect directly to an IP, it will do nothing.
• The DNS protection module is not, and should not be confused with IDS!
• Even simply on malicious websites, web protection is a disaster.

In conclusion, Heimdal Thor is one overhyped, overblown, extremely basic solution that relies on Marvel-inspired product names and hypewords, offering beyond minimum protection, charging users bananas for it. It also attempts to lock them in suspicious auto-renewal schemes.

Avoid!

 

[tofargone]

Heimdal is a Danish company offering an anti-virus solution called Thor.
This solution includes a NextGen antivirus solution, a firewall and an IDS called Vigilance.
Let's see how it behaves.



User interface :
The interface is clear and easy to understand.
The software is fairly simple, with few settings, which may be of interest to novices.
On the other hand, during my test, Heimdal functioned rather strangely, not always alerting you in the event of detection and not automatically placing them in quarantine!
You have to go to the NGAV and place them in quarantine yourself.

In terms of RAM consumption, it's fairly light, but slows down program launch due to a check in the Cloud.

Web protection: 7/9
2 malwares were not blocked by either the protection or the firewall. One malware injects the RegSvcs.exe process, which will download other malware.
The rest is blocked by the antivirus, but with no download alert.
Web filtering is non-existent.

Fake crack : 1/1
The installation is blocked by Heimdal.

Malware Pack : Remaining 20 files out of 115.
During the first scan, Heimdal left behind 24 pieces of malware, but found 4 more afterwards, bringing the total to 20.

At runtime, it's carnage!
Heimdal lets too many attacks through, with Trojans, Botnets and other stealers passing through without reaction.
Heimdal tried to block a few payloads, but soon found itself overwhelmed.
Not great...

Final scan :
Heimdal : 9
NPE : 25
Autoruns : 17 malicious keys !
Malwarebytes : 9
KVRT : 21 (Infection Memory !! RAT activity !)

Final opinion:

Heimdal could be a good challenger, but it's not.
It's based on the Avira engine, but doesn't fully exploit it.
It relies too much on the SDK engine, which is totally inadequate.
Its other shields (such as Vigilance or its firewall) NEVER react!
I don't recommend it.

@Gidiyorsun and @BigWrench request

OK here is what we can gather from this. Danish people make great pastry. Not great AV's