The unofficial Shadow Defender Support Thread.

Discussion in 'sandboxing & virtualization' started by Cutting_Edgetech, Feb 14, 2011.

  1. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,453
    Location:
    .
    Well, I'm still in the same profile and as the path of new created places is the same = places.sqlite....next time I'll go for a new profile
     
  2. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,614
    Location:
    Milan and Seoul
    Yes this is probably the safest way to proceed, especially in my situation as I must use SD in my work environment at least once a week...
     
  3. marzametal

    marzametal Registered Member

    Joined:
    Mar 19, 2014
    Posts:
    766
    What if someone uses SD, and only SD (had Windows Defender disabled, relies only on Windows 7 Firewall - in and out blocked unless rule exists)... is there a chance that someone can get in and out before the user engages a reboot? There wouldn't be any way to discover a breach if the firewall doesn't pop up a warning... the user would be left in the lurch.

    Does the above seem possible?
     
  4. Cruise

    Cruise Registered Member

    Joined:
    Jun 10, 2010
    Posts:
    1,236
    Location:
    USA
    The Shadow, who (unfortunately) has been MIA for months, always made the point that you are still vulnerable to spyware and identity theft while in shadow mode (therefore, he advised adding a layer of spyware-malware protection to SD)!

    Cruise
     
  5. Robin A.

    Robin A. Registered Member

    Joined:
    Feb 25, 2006
    Posts:
    2,557
    Rather obvious, I think.
     
  6. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,694
    Location:
    USA
    You are still vulnerable to everything while in Shadow Mode. It does not block threats, but runs everything similar to a virtual environment. When you reboot any infection that occurred while in Shadow Mode should be gone after rebooting though.
     
  7. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,694
    Location:
    USA
    I have been using the latest build, 1.4.0.578 since it was released without any problems. Did you have any problems with it, or have you not tried it?
     
  8. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    I've not tried it, and I've seen something on the machine I've used SD on the most. Testing two options, one going back to 519, and the other is a plan b
     
  9. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,614
    Location:
    Milan and Seoul
    A tightly configured firewall would probably be enough to check who's calling home (but you need firewall know-how). Best would be to counteract identity theft and spyware to use an anti executable (e.g. NoVirusThanks Exe Radar Pro) or Sandboxie with tight restrictions enabled. I would also keep shadow sessions short, frequent reboots particularly straight after purchasing online would ruin any ongoing malware process.
     
  10. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,694
    Location:
    USA
    What did you see on your machine?
     
  11. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    chkdsk errors relating to file tables. Windows corrects them fine, but what is causing them. I see them on one machine and not the other. Only difference is use of SD
     
  12. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    Well I went back to 519 and didn't see any problem, so now I am on 578 and all is well. I think I figured out what was going on.

    Pete
     
  13. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,453
    Location:
    .
    Interesting observation about short shadow sessions. I've gone a few days in same shadow session. I'll take your suggestion. Thanks !!
     
  14. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,614
    Location:
    Milan and Seoul
    bjm you are welcome...
     
  15. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,453
    Location:
    .
    Hi friends,
    Anyone use: Enter Shadow on Boot. Curious, when Shadow on Boot is useful.... Thanks
    Does Shadow on Boot mean starting Shadow before Windows boots or does it simply mean opening Desktop in Shadow Mode.
     
    Last edited: Apr 25, 2015
  16. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,614
    Location:
    Milan and Seoul
    Every new start will be in shadow mode, different sessions of course. Many years ago I was using ShadowUser Pro by StorageCraft, it had a very interesting feature, "Persistent Mode" which would allow the user to reboot in the same session of shadow mode. It was excellent to test programs requiring a reboot, alas it was discontinued due to heavy piracy...
     
    Last edited: Apr 25, 2015
  17. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,453
    Location:
    .
    Yes, I see the value of persistent mode. Just unsure why to employ Enter Shadow on Boot and whether Shadow start is from Desktop anyway.
     
  18. Robin A.

    Robin A. Registered Member

    Joined:
    Feb 25, 2006
    Posts:
    2,557
    One reason may be simply to avoid the risk of forgetting to enter shadow mode after a reboot. Another may be to protect computers used by children, guests, etc.
     
  19. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,453
    Location:
    .
    Aha, interesting = forget / children / guests. But, wouldn't the Schedule have to be set by last user.
    Quote in a review regarding Enter Shadow on Boot: Note: If you enable this feature, the snapshot taken prior to the first enabling of Shadow Mode is the snapshot your computer is reverted to every time you shutdown/restart your computer. This snapshot would only be updated if you were to ever manually stop and re-enable Shadow Mode.
     
    Last edited: Apr 26, 2015
  20. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,453
    Location:
    .
    Shadow Defender Protects the MBR.
    What does Protect MBR mean? Does it mean Shadow Mode encompasses the MBR or Shadow Mode respects the MBR by not adding MBR in Shadow. Do I want MBR is Shadow or not?
    Quote from a SD review: Protects MBR but developer does not provide details as to exactly what techniques are being used to protect MBR so it is hard to determine how solid that MBR protection is; the developer just says MBR protection is there.
     
    Last edited: Apr 26, 2015
  21. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,453
    Location:
    .
    Shadow Defender <<Prevent all viruses and malwares>><<Maintain a system free from malicious activities>>
    Does anyone agree that sans regular updates the claim to prevent all malware is a reach. SBIE updates frequently to close reported holes. Either SD is reaching or SD is rock solid. Comment ?
     
  22. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    Well, maybe yes and maybe no. When I help Blueridge with that ransonware that bypassed appguard, test for the problem and test the fix. I had no choice but to test on my real machine. I shadowed all three of my drives, and initially watched it encrypted stuff on all three drives.

    Rebooted out of Shadow Mode, and all the encrypted files were gone. Everything was fine. That in fact speaks very well for Shadow Defender.

    Pete
     
  23. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,795
    Location:
    .
    Thanks Pete for your feedback. As bjm_ asked, what about MBR protection? I read somewhere else it protects against a lot of rootkits / bootkits but some can bypass SD (lab test only not in the wild). If not do you recommend any other program for such task?
     
  24. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,453
    Location:
    .
    So, is Enter Shadow on Boot the same as enter Shadow from Desktop. Or, does boot Shadow start earlier in boot cycle than desktop Shadow.
     
    Last edited: Apr 26, 2015
  25. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,795
    Location:
    .
    Yes it starts earlier.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.