The unofficial Shadow Defender Support Thread.

Discussion in 'sandboxing & virtualization' started by Cutting_Edgetech, Feb 14, 2011.

  1. Overkill
    Offline

    Overkill Registered Member


    My SD exe has no blue icon now, has this ever happened to you? it's just a plain ole' file icon
  2. sdmod
    Offline

    sdmod Registered Member

    Which icon do you mean?


  3. Overkill
    Offline

    Overkill Registered Member

    NM I rebooted and it's blue again, weird :doubt:
  4. lurker20
    Offline

    lurker20 Registered Member

    Thanks for the link Cyberman. I am giving myself few more days to think on this but I have bookmarked this. (I am stuck between returnil, SD and timefreeze :doubt: )

    I think the direct link did not work because of the cookies.
  5. 3x0gR13N
    Offline

    3x0gR13N Registered Member

    Hi guys,
    I must admit that I haven't been following the "Disappearance of Tony" issue closely, so I could be late to the party with the next question...

    Can anyone state for certain that Tony was the sole programmer working on the SD project, or were there more people involved with compiling of SD components?
  6. Scott W
    Offline

    Scott W Registered Member

    I don't believe anyone here knows the answer to that for certain. Tony was the only official contact I ever knew since my introduction to SD in 2007.
    Last edited: Apr 24, 2012
  7. sdmod
    Offline

    sdmod Registered Member

    Tony was the only programmer as far as I know

    Patrick (ex Shadow Defender moderator)
  8. 3x0gR13N
    Offline

    3x0gR13N Registered Member

    I did a little bit of research and was looking at image strings of loaded components of SD (Defender.exe, DefenderDaemon.exe, diskpt.sys and ShellExt.dll). Those strings often contain, amongst other things, a path to the main .pdb (Project database) file. The path can be unique and sometimes identify the person working on the project.
    I've uploaded strings of mentioned SD components, from versions 320, 325 and 331 (the "suspicious one"): -https://rapidshare.com/files/193257322/SD_image_strings.zip-

    Open the txt files in notepad or similar and search for ".pdb". You will see the path and what seems to be a username of the person working on the project (e:\<username>\... etc."), consistent for all versions noted above. If you search the username on Google you'll find a member of certain Black Hat/programming forums, which seems to be indicative that, at least, we're on the right track when it comes to knowledge needed to create something like SD.
    I'm not a member on those forums, but said user has logged in recently, by the looks of his profile.
    So, if Tony was the only one working on SD, and has used the same username as located in the above uploaded strings on forums (which, admittedly can be just a coincidence) then he is still around. That's as far as I've got while playing detective for ~30min. :)

    FWIW, some investigation and conjecture on the matter...
  9. Scott W
    Offline

    Scott W Registered Member

    @3x0gR13N,

    The bottom line is that the person who used to represent Shadow Defender ('tonycn') is no longer available for conversation, let alone support. Furthermore, no one responds to messages sent to the current website's sales or support contact email addresses. So with all due respect for your investigatory efforts, imho it's an exercise in futility!

    Scott
    Last edited: Apr 24, 2012
  10. Ibrad
    Offline

    Ibrad Registered Member

    @3X

    Can you PM me the user name you found? I may know just the person that could look up more details about them. Plus I will do a little research myself.
  11. Scott W
    Offline

    Scott W Registered Member

    @Ibrad, it's 'onegg'.
  12. Ibrad
    Offline

    Ibrad Registered Member

    Thanks I will see what I can dig up
  13. Ibrad
    Offline

    Ibrad Registered Member

    Sadly I was unable to dig up anything on that screen name. If we knew anybody on that site maybe they could send em a PM asking if they are the same. Does not mean they would tell the truth though.
  14. mag1c
    Offline

    mag1c Registered Member

    Well I accidentally had Version 331 installed. I UN-installed and installed version 3.25. Hopefully nothing malicious has happened. I think I'll begin a reformat soon.
  15. The Shadow
    Offline

    The Shadow Registered Member

    Imho reformatting for that reason is an unnecessary drastic action. I've been running v1.1.0.331 for several months with no security issues whatsoever.
  16. sdmod
    Offline

    sdmod Registered Member

    ShadowDefender
    Presumably you have been running Shadow Defender v1.1.0.331 without any contact or support from the people who sold you the software and purport to make and develop it but how can you be sure that there are not any security issues that you are not aware of?
    You may well be right this may not be malicious software in itself and this may be just a non legitimate hijacked/hacked site selling a stolen software and raking in the money but maybe it's better to be safe than sorry and who wants to support a security software anyway that does not offer communication, support or upgrade.
    Another thing I would like to mention is that I do have a small issue with your username in that by using the name ShadowDefender as your username on this forum and others it may lead people to the impression that you are something to do with the manufacture or the support of the software with particular specialist knowledge. Now I know that on the occasions that this has arisen you have said quite straightforwardly that you are not affiliated in any way but as new members arise this will come up again and again. In normal circumstances where the users have access to the developer and a level of general dialogue exists this is not a problem but with the missing developer confused users look to anything that says Shadow Defender for advice.
    For example if I was to make my username Avast, Sandboxie, QuarkXpress or Admuncher you must see that it might generate confusion. There was a similar problem a while ago on this board with a person who used the username Tony which members confused with the developer at times.
    I know that you think that Shadow Defender is a great software ( I agree) and want to support it but just have a think about what I have said

    best wishes

    Patrick (ex Shadow Defender global moderator)



    Last edited: May 2, 2012
  17. The Shadow
    Offline

    The Shadow Registered Member

    Only in that I typically run full scans with PCAV, MBAM and Hitman Pro, none of which find any malware. Furthermore, PF doesn't alert me to any suspicious processes.


    I have stated quite clearly that I am in no way affiliated with Shadow Defender (past or present), but out of respect for your concern and for the software, I will abandon my username.
    Last edited: May 2, 2012
  18. LoneWolf
    Offline

    LoneWolf Registered Member

    If you want to change your user name all you need to do is PM a Wilders Administrator and explain your situation as well as your new desired user name.
  19. The Shadow
    Offline

    The Shadow Registered Member

    As an FYI, I have requested that my username be changed to 'The Shadow'. I hope that name will not result in the same confusion issue precipitated by my current username! :doubt:
    Last edited: May 2, 2012
  20. sdmod
    Offline

    sdmod Registered Member

    "The Shadow" is a great name and I hope that you understand that there was no malice intented on my part

    best wishes

    Patrick



  21. Blues7
    Offline

    Blues7 Registered Member

    I can't remember if Kent Allard or Lamont Cranston are posting here.
    (You probably gotta have a few years on you to "get" that.)

    SD, no worries, friend. While I understand the concerns brought up I don't think anyone who reads your posts here will draw any incorrect conclusions.
  22. LoneWolf
    Offline

    LoneWolf Registered Member

    "The Shadow" good choice, I like it. ;)

    Who Knows What Evil Lurks in the Hearts of Men?
    Yea I remember......and yea I've got a few years on me.
  23. The Shadow
    Offline

    The Shadow Registered Member

    No problem Patrick - I'm really sorry about any confusion that my username may have caused. Actually, I bought and installed SD 331 before you enightened most of us about the website's 'ethics'. Although I have been running SD 331 without incident, I must say that I can't respect their lack of communication with the SD user-base.
  24. The Shadow
    Offline

    The Shadow Registered Member

    I remember it well (so you know I'm no 'spring chicken').
  25. The Shadow
    Offline

    The Shadow Registered Member

    Blues, how do you know that I'm not Lamont Cranston? ;)

    The Shadow knows....