The unofficial Shadow Defender Support Thread.

Discussion in 'sandboxing & virtualization' started by Cutting_Edgetech, Feb 14, 2011.

  1. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,159
    Hi Bo,
    Here is the reply from Tony

    ..........................

    To: Patrick

    Hi Patrick,

    When enter shadow mode, SD created a shadow volume from the real volume, and copies current state of the real volume,
    but meanwhile transaction resource manager on the real volume is working, so the resource manager on the shadow volume will be in a middle state.
    After a reboot, the resource manager will go on to work from this middle state, it will log a warning message and clear this state and start a new work.


    Best regards,
    Tony

    ..................................................
    On 2014/11/19 17:02, Patrick wrote:
    Hi Tony,
    Some members have reported a bug with latest version. It's not just the latest version. They have had it for some other versions.

    Here are some messages that I received

    best wishes

    Patrick
    ........................................................
    http://shadowdefenderforum.com/index.php?topic=149.0


    .........................................................

    'Hi Patrick, I tried version 1.4.0.566 today and got same Warning message in the Event logs as pereh. This is the only warning that I get. Its Ntfs 136. This is the same warning that I got before when trying another version and the reason why I have preferred to stay with old version .346. Other than this message, all else looks good (W7 32 bits).

    Have you gotten a reply from Tony about this.

    Bo'
    ...........................................................
     
  2. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    Thanks, Patrick. By reading Tonys reply, I gather that getting the warning its OK, expected. But I wonder, since most people using Shadow Defender are not getting that message, what could be the reason that Pereh and I are getting it?

    Bo
     
  3. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    ......And not getting it with older versions, like 1.2.0.346, the one that I am using now. Any ideas, anyone?:)

    Bo
     
  4. VectorFool

    VectorFool Registered Member

    Joined:
    Oct 21, 2012
    Posts:
    280
    Location:
    India
    Shadow Defender version 566 for some reason prevents my pc from Hibernating.
    It actually lets my pc go into hibernation, but when i restart, the PC starts fresh without any trace of the last session :(
    When I removed Shadow defender and the Hibernate worked as it should, so i guess its definitely being caused by Shadow Defender.
     
  5. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,159
    Hi VectorFool,
    Could you give more details...operating system that you're using etc? fat32 NTFS? ssd? or whatever?. That makes it easier for anyone who might help.

    support is
    support@shadowdefender.com

    Patrick



     
  6. VectorFool

    VectorFool Registered Member

    Joined:
    Oct 21, 2012
    Posts:
    280
    Location:
    India
    Hi Patrick
    I am on Windows 8.1 Pro updated regularly till October 2014, filesystem by default is NTFS and its a Hard Drive.
    I tried turning Hibernate off then on again (powercfg -h off/on), but it still didn't work.
     
  7. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,159
    Hi VectorFool,
    I've emailed Tony and will post here if/when I receive a reply

    Patrick
     
  8. Robin A.

    Robin A. Registered Member

    Joined:
    Feb 25, 2006
    Posts:
    2,557
    I can´t replicate this in Windows 8.1 Pro, SD 566. After hibernating in shadow mode, the computer restarts in shadow mode. I have Fast Startup disabled (don´t know if it´s relevant).
     
  9. VectorFool

    VectorFool Registered Member

    Joined:
    Oct 21, 2012
    Posts:
    280
    Location:
    India
    Thing is I had just installed Shadow Defender, I did not even enable Shadow Mode.
    SD 566 just being there created some unknown issues in the hibernate module . And that is what surprised me.
     
  10. Robin A.

    Robin A. Registered Member

    Joined:
    Feb 25, 2006
    Posts:
    2,557
    OK, the problem is that after the installation of SD, hibernation doesn´t work. I can´t replicate this either, hibernation works normally in my case.

    [By the way, do you mean Paragon Hard Disk Manager 15 Suite?]
     
  11. VectorFool

    VectorFool Registered Member

    Joined:
    Oct 21, 2012
    Posts:
    280
    Location:
    India
    Paragon Hard Disk Manager 15 Suite, yep.
     
  12. Robin A.

    Robin A. Registered Member

    Joined:
    Feb 25, 2006
    Posts:
    2,557
    I have suspected for some time that there may be a conflict between HDM 14/15 and SD. When I install HDM in shadow mode, I get very strange behaviors in HDM´s interfaces. It can also be that HDM is broken, of course. I haven´t investigated this in detail, I only use HDM occasionally, and always from a boot medium.
     
  13. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,159

    Tony replied with this
    ..............................
    Date: Sat, 22 Nov 2014 21:52:27 +0800
    From: support@shadowdefender.com
    To: patrick
    Subject: Re: hibernate problem

    Hi Patrick,

    Do you know which os VectorFool used? windows 7 or windows 8, 32 bit or 64 bit?
    Thanks.

    Best regards,
    Tony


    .................................

    I had already told him that you use Windows 8.1 Pro and ntfs but emailed him again and said I would ask you about which one you use 32 or 64 bit.
    I told him that it was probably 64 but would check with you.


    Patrick
     
  14. VectorFool

    VectorFool Registered Member

    Joined:
    Oct 21, 2012
    Posts:
    280
    Location:
    India
    Hi Patrick, its 64bit windows 8.1 pro
    I have Avira Antivirus Pro and Comodo Firewall v8
    Paragon HDM suite 15
     
  15. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,159
    Thanks VectorFool, I've updated Tony 23 Nov 13.55

    Patrick
     
  16. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,614
    Location:
    Milan and Seoul
    We have similar environments (Win 8 + Avira Pro), but Hibernation works perfectly here shadowed and not, I tend to agree with Robin A. it might be a conflict with Paragon. Have you tried to uninstall it?
     
  17. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,159
    If VectorFool tests if it is Paragon then I could get back to Tony with that info.
     
  18. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,159
    Update reply from Tony re VectorFool Hibernate problem
    To: Patrick



    Hi Patrick,

    I can't reproduce this in my windows 8.
    Did this issue only happen when 'Exit Shadow Mode on Shutdown' is checked?
    I think maybe there is a WMI operation failed so SD can't set hibernation state correctly.
    If so, please check 'Enter Shadow Mode on Boot' and reboot, then hibernate, it should be OK.


    Best regards,
    Tony


    On 2014/11/23 21:55, Patrick wrote:


    Hi Tony,
    These are VectorFool's details
    best wishes
    Patrick
    .....................

    Hi Patrick, its 64bit windows 8.1 pro
    I have Avira Antivirus Pro and Comodo Firewall v8
    Paragon HDM suite 15
     
  19. luciddream

    luciddream Registered Member

    Joined:
    Mar 22, 2007
    Posts:
    2,545
    I've been using v1.1.0.325 ever since I began using it about 2 years ago... with nary a problem. I'm curious, what advantages/improvements have been made in versions since that would benefit me, using XP Pro SP3, to compel me to upgrade? I'm a big believer in the ol' "if it aint broke" philosophy, but if I had a good reason I'd consider it.

    Thanks
     
  20. Cruise

    Cruise Registered Member

    Joined:
    Jun 10, 2010
    Posts:
    1,236
    Location:
    USA
    Simply put, the current version would afford you improved system security when in Shadow Mode.

    Cruise
     
  21. luciddream

    luciddream Registered Member

    Joined:
    Mar 22, 2007
    Posts:
    2,545
    Could you go into detail please, as to how exactly it provides improved security? And does it do a better job of taking advantage of the integrated features built into Intel CPU's these days, like VT-x, VT-d, and EPT?
     
  22. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,159
    Hi luciddream,
    I don't know much about the latest cpus so I can't help there but here is a link to Shadow Defender chages page

    I think that Track 0 virtualization was one of the main things

    I would suggest that you try any newer version of Shadow Defender first on a pc that doesn't matter because with one of the more recent versions a lot of my personal Windows settings were stripped out and Sandboxie was disrupted, plus since then I've been plagued wit Rashangup 668 errors. When I casually disconnect then I can't reconnect again until a hard reboot of modem and pc I also run XP sp3. This had never been a problem before this version. I had to re-install miniports, reset winsock, rset tcp/ip, uninstall and re-install network adapter just to get straight and then this problem still persists to present day.
    I had stupidly after the latest installation of that bad Shadow Defender backed up too soon...so I backed up the error.
    That version is no longer available. It was an attempt by Tony to do something regarding hibernation but (in my case) it mangled my system.
    Shadow Defender has always had the occasional problems with lost icons, reverted to default settings in anti virus , Nero etc and
    In this case it turned lots of my chosen Windows settings to default. Turned sound on, turned screen saver on, turned themes to default xp theme, messed a lot of things up. In this state it was not just simply return those settings to my choice. It had damaged the systems ability to hold those settings. So for the themes (for example) I had to delete that theme all together to stop Windows reverting to it after each re-boot, even though I had chosen my theme.
    Tony accepted that something was wrong and made quick changes. The latest version doesn't include that hibernate option (in my xp sp3 at least)

    I think it ran too deep
    I'm running the latest version at the moment but I can't tell now because of the damage caused by that particular version if this one is OK...although I think that it is.

    I ran 1.1.0.325 for years without problem

    I hope that this is of some help to you.

    Patrick

     
    Last edited: Dec 8, 2014
  23. Robin A.

    Robin A. Registered Member

    Joined:
    Feb 25, 2006
    Posts:
    2,557
    Also the protection of BCD. Previously, changes made to the BCD in shadow mode remained after reboot. And the ESP (boot) partition in UEFI systems is protected automatically when the OS partition is shadowed.
     
  24. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,159
    Thanks Robin, I'd forgotten about that. I have very little understanding of the technical aspects of these things.
     
  25. Wendi

    Wendi Registered Member

    Joined:
    Aug 8, 2008
    Posts:
    643
    Location:
    USA
    Shadow Mode is a form of (light) software virtualization, which is independent of the hardware virtualization you are referring to (above). The improved security that Cruise alluded to and which applies to you (running WinXP) first became available with v1.4 wherein track0 (which contains the MBR) is automatically virtualized whenever the system volume is placed into Shadow Mode. So while .325 is a very stable build it is nonetheless vulnerable to track0 malware infections (e.g., rootkits) because prior to the v1.4 builds SD was only able to 'shadow' (virtualize) lettered volumes!

    Wendi

    PS. As Robin indicated, v1.4 also shadows the BCD. It also virtualizes the hidden SRP boot volume (if it exists), but none of that is applicable to WinXP.
     
    Last edited: Dec 8, 2014
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.