Shadow Defender

I have used Returnil for some time now and on the whole, been happy with it. the only feature it lacked for me was the ability to specify particular folders which would be saved along with their contents to the real system (you can save a folder, but not contents)

I discovered Shadow Defender today and It has the features that were missing from Returnil. I have configured it so my documents, outlook pst and a few other folders (including document backup folder on external drive) are saved to the real system, but my system image and the rest of the system are protected.

This has been the missing piece of my ideal system - so now, along with Prevx , Sandboxie and Zemana, I feel I have got the perfect setup.

I would welcome members thoughts and tips on shadow defender.

Puss

 

Puss, SD is one of the best softwares here. Peter and Longview and a few others can atest to this. It is made in China and the maker, Tony, is a member here. His English is not great but he will answer all support questions and is good about fixing any issues there are. The software works great, and 64 bit is slated for later this year. On a scale of 1-10, it is a 10. Trust me on this one.

 

I have recently used it myself. Initially I was looking for something that I could stay 'locked' in, but that also I could say 'save these changes because I am happy with them'.

SD and Rnil paid can do that. But as I found, I would rather now just stay shadowed, and as you say, make exclusions for areas that I will write/modify a lot for my use. This way, I don't have to commit, it is always live. Yet, my OS directories are still shadowed, unless I make a specific exlusion, like for sandboxie.ini file.

I pay the price of turning off SD on next boot. Then I must install new programs to keep or change settings to keep. Then I can turn SD back on. Playing with many of these programs now, I like the way SD lets me make exclusions, and I like the one-off price rather than subscription. But overall, as you, I like being able to exclude. I have found it to be a nice solution so far, but then I am imaging a little more now too, so I am not so worried about the state of things until I have messed with all this for a little while.

Sul.

 

I have always been a believer of light virtualization and ShadowUser Pro is still working very well on my XP laptop (almost 5 years). I could not imagine at first that Shadow Defender could replace and even improve ShadowUser's performance in just about everything.

I'm so pleased with it that I'm staying with my Vista x32 so that I can use it. I'm also eagerly waiting for the x64 version.

 

ShadowDefender is a cornerstone of my security setup. It has never failed me or caused system errors once. It is an excellent software.

 

Golden piece of software

 

Retad, I posted a previous thread of tips when using the program.

Namely, setting up a text file on my desktop, that I right-click and 'commit' before reboot. This has my bookmarks, and other notes which I then add out of shadow mode.

Also, if you use a portable browser, such as firefox portable: http://portableapps.com/news/2009-07-17_-_firefox_portable_3.5.1 or Iron portable, or any other portable programs, you can just right-click and commit the whole folder, to save your preferences, or just commit the bookmarks file.

Also has some other features, such as continuing shadow mood after reboot, and adding a password to commit. Meaning, you could enable continue shadow mode after reboot, and password to commit, which would then allow you to lend someone you're system/laptop, and they wouldn't be able to add any files to your 'real environment', even after a reboot.

Just a note to not commit very large files without a slight delay as SD commits these files. It's best to commit smaller files, say up to 100MB (I have tried with larger file sizes, but this took awhile).

 

I have been using Shadow Defender along with Sandboxie for ages now and cannot visualise ever not using either of them, especially SD. Why I bother with adding any other security apps between them I really don't know - lack of confidence I suppose. I can now let family members use my computer and know that with a reboot everything is back to normal and also no pop-ups for happy clickers to answer (wrongly ) All it needs now is for Tony to incorporate an anti-executable, but to keep it simple and you have the one ultimate security app you will ever need.
The only thing I haven't figured out is how to keep bookmarks that I add to my Smart Bookmarks Bar in FireFox. I have SB set to allow them but not in SD.

 

I heard that the biggest problem of SD is that it doesn't update frequently enough so it is more easily to get penetrated by malware compared to Returnil.

 

name me something that doesnt get penetrated at some point.

 

i don't agree with u
shadow defender protects against all the currently "known" low level disk access malwares

please refere to the link below also u can review returnil results

u will find shadow defender and returnil results in page 3 of the test results page

http://malwaretestlab.com/more.aspx?entry=24

https://www.wilderssecurity.com/showthread.php?t=243496&highlight=killdisk+returnil+shadow+defender

http://img23.imageshack.us/img23/5299/88003254.jpg

 

Given what the TS wanted to achieve, Shadow Defender is his best option.

Tested and reliable, it will be updated as the malware prevalence situation warrants it. This is a on-going battle out there with the nasties which is what Wilders Security forum is all about.

 

Read my post carefully plz.

 

https://www.wilderssecurity.com/showthread.php?t=247937

 

I don't do any test myself so I said "I heard". In a chinese security forum I read posts complaining SD got penetrated easily and how Returnil was better against malwares. They even uploaded samples of malware which could defeat SD. I just want to inform you guys who put so much trust in SD.

Doctor,it's an interesting test.

 

These applications are not meant to update frequently (otherwise you may as well forget them and get an antivirus only). On the other hand SD (for that matter any of these applications) + an AV or an anti executable (any HIPS) will make your system almost impenetrable.

One thing is to install and execute malware on purpose to see what happens, but in the real world if you have SD you are possibly a person who will have something else along with it, either an AV or a HIPS type of program, malware wouldn't have a chance to execute.

 

Quite honestly, if a threat can bypass SD, and I ever am hit with it, one of two things will happen.

A) I ignore this and put my image back on or reinstall, waiting another 7 years for such a thing to happen

B) Piss on M$, let the masses have that OS and all the criminals/arsholes that go with it, and move on to *nix. At least I don't have to pay to be screwed that way.

I will not worry about anything compromising SD or SBIE until it happens, and I don't think it will honestly.

Sul.

 

And if you use them both together at the same time it never will.

Acadia

 

Indeed, it is what I am doing.

Sul.

 

u welcome , bonedriven

thanks for the reference , i will check the thread
in fact in the malware world every thing is relative , i must admit that i wrote a wrong expression "all currently known malware " and i should add "known by me "

coz every minute and every second there's new emerging malware

also
u may do a complete scan for ur computer by a famous antivirus then it tells u that ur pc is clean

and after a week after updating the antivirus database , and without adding anything to ur pc , the same antivirus could tell u that ur pc contains 1000 malware

NO DOCTOR IN THE WORLD CAN SAY THAT A PERSON IS ABSOLUTELY COMPLETELY FREE OF DISEASES AT A GIVED TIME "IT'S RELATIVE"

AND THE SAME

NO SECURITY EXPERT IN THE WORLD CAN APPLY THE SAME ABSOLUTE PRICIPAL TO A CERTAIN PC AT CERTAIN TIME

may be the pc contain a decent file that is non-malacious at the current time but this file will be considered malacious after some years under certain environment

every thing in the world is relative

sorry again

 

It seems like the beta testing has started.

Read in a Chinese forum that version 1.1.0.280 is available.

 

Does anyone know if the beta covers this new threat?

 

Version 1.1.0.280 is not vulnerable to safesys

 

shadow defender 1.1.0.280 beta

<snip>

Best Regards