The unofficial Shadow Defender Support Thread.

Discussion in 'sandboxing & virtualization' started by Cutting_Edgetech, Feb 14, 2011.

  1. Cruise

    Cruise Registered Member

    Joined:
    Jun 10, 2010
    Posts:
    1,236
    Location:
    USA
    Just to qualify my situation, my primary drive is an HDD in a RAID configuration with an mSSD serving as a cache-drive (TRIM is enabled). Nevertheless, all builds prior to 346 would crash my system within minutes of use, whereas 346 is running without incident. So whatever changes Tony made in the current build solved my problem! :thumb:

    Cruise
     
  2. CyberMan969

    CyberMan969 Registered Member

    Joined:
    Apr 21, 2011
    Posts:
    589
    Just another happy SD Cruiser! :D
     
  3. Crane_Mann

    Crane_Mann Registered Member

    Joined:
    Apr 2, 2009
    Posts:
    46
    Location:
    United States
    I've been using 1.2.0.346 for a few weeks now without any problems as well as all the previous versions.
     
  4. Arcanez

    Arcanez Registered Member

    Joined:
    Oct 5, 2011
    Posts:
    417
    Location:
    Event Horizon
    using ShadowDefender again here. Deepfreeze Beta 3 still has issues occasionally freezing the whole operating System. Although I have a SSD I switched to Shadow Defender. I turned off TRIM of my Crucial M4 as I noticed SD has Problems with it turned on. Then I turned on Memory Cache Write to safe the SSD from write Access.

    Hopefully ShadowDefender with SSD Support Comes out very soon.

    Gogo Tony!:thumb:
     
  5. Overkill

    Overkill Registered Member

    Joined:
    Mar 16, 2012
    Posts:
    2,343
    Location:
    USA
    Re: Shadow Defender Exclusions


    So I don't exclude the files in "program files" just "hidden folders"?
     
  6. TheQuest

    TheQuest Registered Member

    Joined:
    Jun 9, 2003
    Posts:
    2,304
    Location:
    Kent. UK by the sea
    Hi tonycn
    Good to see you back. :thumb: :D

    Take Care
    TheQuest :cool:
     
  7. TheQuest

    TheQuest Registered Member

    Joined:
    Jun 9, 2003
    Posts:
    2,304
    Location:
    Kent. UK by the sea
    Hi CyberMan969
    Nice one. :D

    Take Care
    TheQuest :cool:
     
  8. ichito

    ichito Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    1,997
    Location:
    Poland - Cracow
    Re: Shadow Defender Exclusions

    I don't know exactly how specific is Comodo or EAM installation but some security apps create their own folders in C:\Documents and Settings (Win XP). It could be similar with PeerBlock (except if it is portable) and AdMuncher...you should perhaps search in those localisations.
    It's always hard to say what folders are the most important to proper excluding from LV.
     
  9. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,159
    I've had a reply from Tony regarding the mbr protection

    ....................

    Hi Patrick,

    Yes, Shadow Defender protects the MBR when SD's driver is loaded.
    but before the driver loaded, SD can't protect the MBR.
    because to protect MBR all the time, SD should replace the original
    MBR.

    Best regards,
    Tony
    ..................................
    On 2012-12-16 16:58, Patrick wrote:
    > Hi Tony,
    >
    > How are you? I hope that everything is good for you. :)
    >
    > A Wilders member asked me does Shadow Defender protect the MBR?
    >
    > here is a link
    >
    > https://www.wilderssecurity.com/showpost.php?p=2124620&postcount=29
    >
    > If you have an answer I could post it to Wilders?
    >
    > or you could use
    >
    > THE UNOFFICIAL SHADOW DEFENDER SUPPORT THREAD
    >
    > where you posted last time
    >
    > https://www.wilderssecurity.com/showthread.php?t=293075
    >
    > thanks
    >
    > best wishes
    >
    > Patrick
    .................................
     
  10. ichito

    ichito Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    1,997
    Location:
    Poland - Cracow
    There are some "news" about SD and YesShield connections?
     
  11. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,159
    ichito
    I've not had an answer to that question yet

    Patrick

     
  12. Crane_Mann

    Crane_Mann Registered Member

    Joined:
    Apr 2, 2009
    Posts:
    46
    Location:
    United States
    Am I missing something here? I use a startup delayer, everything ELSE is delayed in loading and starting EXCEPT SD. So how does SD replace the original MBR o_O What have I missed hereo_O
     
  13. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,159
    I think what Tony meant was not "should"

    Yes, Shadow Defender protects the MBR when SD's driver is loaded.
    but before the driver loaded, SD can't protect the MBR.
    because to protect MBR all the time, SD would have to replace the original
    MBR.




     
  14. Crane_Mann

    Crane_Mann Registered Member

    Joined:
    Apr 2, 2009
    Posts:
    46
    Location:
    United States
    So with my setup, I'm good o_O
     
  15. CyberMan969

    CyberMan969 Registered Member

    Joined:
    Apr 21, 2011
    Posts:
    589
    A sophisticated piece of malware will most likely bypass your load sorting software and load first on the next reboot anyway. That's why it is important to always install SD on an 100% clean system with network adapters temporarily disabled, the system totally offline; then go online only after Shadow Mode has been activated.

    This is my process anyway and I have a clean RX snapshot with a clean Win7 x64 install for when the system needs refreshing to latest versions of everything. It is much faster to have a clean system back this way. I also create desktop shortcuts for all adapters and can enable/disable them by right-clicking on the shortcuts, only allowing internet access when needed. Once Shadow Mode has been enabled, SD will not allow any malware to settle in the boot sector. The more paranoid amonst us would probably have Shadow Mode enabled at all times, also sandboxing browsers as an additional layer of protection.
     
    Last edited: Dec 17, 2012
  16. Crane_Mann

    Crane_Mann Registered Member

    Joined:
    Apr 2, 2009
    Posts:
    46
    Location:
    United States
    Thanks CyberMan969, I'm always in SD mode except for updates.

    As a side note, I've tried Data Igloo. It seems to only work with Deep Freeze.
     
  17. Arcanez

    Arcanez Registered Member

    Joined:
    Oct 5, 2011
    Posts:
    417
    Location:
    Event Horizon
    does anyone know which Folders you have to exclude to Keep updates and scans from Windows Defender/MSE while in ShadowMode?
     
  18. Cruise

    Cruise Registered Member

    Joined:
    Jun 10, 2010
    Posts:
    1,236
    Location:
    USA
    Why not run a manual update before entering Shadow Mode (it just takes a couple of minutes)? I think providing exclusions in Shadow Mode opens avenues into your 'real system' for malware!

    Cruise
     
  19. Arcanez

    Arcanez Registered Member

    Joined:
    Oct 5, 2011
    Posts:
    417
    Location:
    Event Horizon
    Because I enter Shadow Mode on boot.

    I'm not that paranoid but you're right basically.
     
  20. merisi

    merisi Registered Member

    Joined:
    Dec 17, 2012
    Posts:
    316
    Hi, I'm new to this forum and I downloaded Shadow Defender today and I thought it was pretty good and then I read much of this thread and even though it appears that there's been a resolution I can't help but feel nervous that I've infected my computer in someway by installing 1.2.0.346 64-bit because McAfee doesn't regard it as trusted https://www.siteadvisor.com/sites/shadowdefender.com and Google says it has had maleware recently http://www.google.com/safebrowsing/diagnostic?site=shadowdefender.com .

    I have scanned my computer with Avast and Hitman Pro and there doesn't appear to be a problem but I'd feel a lot better with some reassurance from others that have recently installed the same version as I have.
     
  21. Arcanez

    Arcanez Registered Member

    Joined:
    Oct 5, 2011
    Posts:
    417
    Location:
    Event Horizon
    I don't think there's malware hidden in the installer file. I installed SD 1.2 yesterday and also scanned with VirutsTotal.com. 2/44...I think that's normal for Softwares that use low Level Drivers. You can also scan a Deepfreeze installer and you'll get false positives.
     
  22. The Shadow

    The Shadow Registered Member

    Joined:
    Jan 24, 2012
    Posts:
    814
    Location:
    USA
    Rest assured that SD has not infected your PC. It is completely benign and is a very effective component in a layered antimalware solution.

    TS
     
  23. The Shadow

    The Shadow Registered Member

    Joined:
    Jan 24, 2012
    Posts:
    814
    Location:
    USA
    That's not at all paranoia - Cruise is utilizing SD to its fullest potential.

    TS
     
  24. merisi

    merisi Registered Member

    Joined:
    Dec 17, 2012
    Posts:
    316
    I guess that can always be the problem, a scan can say you've got malware when you haven't but can also say your system is clean when it is infected. I've had SD on my system for about a day now and so far no problems. While I probably would never have heard of SD if it wasn't for looking here, I wouldn't have been so worried about it either.

    Still working okay for you?
     
  25. merisi

    merisi Registered Member

    Joined:
    Dec 17, 2012
    Posts:
    316
    I must admit, I'm happy with how it works and have downloaded programs and created folders and they're all gone when I reboot but I guess it's the whole thing that you want you system to be secure as possible and eventually you have to trust someone but if you trust the wrong person your computer is screwed.

    I wiped and reinstalled my computer last week and I did come close to doing this again as I was so worried about what I might be hidden on my system because of SD. While I probably won't do a wipe and reinstall, I'm still considering it.

    I appreciate your response.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.