New Shadow Defender 1.1 beta out

My mother-in-law.

 

Potentially dynamic areas that could be inconvenient or difficult to replace. That could include:

• A regularly updated program folder like an AV, if used
• The My Documents folder for any user on the system
• Email post office locations for any user of the system
• A download folder where you tend to place deliberately downloaded programs

Those types of folders/files.

Blue

 

Basically I have the one for my daughter to save her games to. I have one for documents that I may create. I switch them around from time to time depending on what I do. The nice thing is, if in shadow mode I need to create or save something that I haven’t excluded, I can use the commit now to save it. There is plenty of flexibility in it to accommodate your needs. The key to remember is that for every excluded or commit now change, can create a hole for malware to slip through. That is why I find keeping a AV or HIPS is pretty much required.

A on demand or online scanner works well. You can use one before rebooting just to scan your excluded folders.

 

I purchased a license awhile ago - time to install.

Will SD recognize usb drives?

 

...and no reboot of course.

edit: on non system.

 

correct, except on exiting. For now.

 

Does it satnds against Robodog trojan?

 

yes


Version 1.0.0.129 - Decemeber 25, 2007
New: defeat robodog(a malware)
Fix: sometimes an annoying message will appear when rebooting pc

 

Thanks trjam!

Does it makes any change to MBR?
What about Clean MBR tool discussed in another thread? wil they fix it?

Thanks

 

I have tested the new beta with CleanMBR and new Robot dog which can infect the explorer.exe and iexplper.exe.

the CleanMBR bypassed the new beta and new Robot dog from Winzheng.com also bypassed the new beta.

I have sent these files to the support email. Some videos about my testing will be available soon on Youtobe.com.

 

Thanks QQ2595!

New Robodog..? U mean they relaesed a new version that bypassed SD again?

Pls check ur PM box as well.

 

there can never be a 100 percent, well SD and Sandboxie come close.

 

Yes, it seems the Robot Dog update every week and some other new virus which can bypass SD's Shadow device came out too.

here is a chinese forums about the new version of Robot Dog on Jan.25.

{Removed possible malware link - please refer to TOS}

 

Tony just emailed me and said he can not download the new robodog and cleanMBR bypass from the link. Can you please email support directly so he can expedite a fix for both. Thank you.

 

yes, I will send it to your support email soon. BTW, I have found two serious bugs of new beta and old version. Just sent my report to your PM.

 

Hi QQ2595, I PMed u but no reply.

Thanks

 

i totaly agree with you mate. "commit now change, can create a hole for malware to slip through"

thats why deepfreeze never give this option in there software

cheers

 

Hi,

Perhaps this "commit" flexibility has prevented the very first virtualization program"--surfer" from further development.

A flexibility/convenience in any given security application sometimes leads to a bigger headache. IMO

 

use ani EXE (AE) from faronic and thoos new wont bother you any more

 

Agree, it is a weakness. but seems useful for home users.

The exclusion list of ShadowDefender/ShadowUsers and File Manager in Retrurnil already used by some new virus in Asia.

BTW, there are 1,130,000 pages refered Robot Dog in Baidu.com(famous chinese search engine).
http://www.baidu.com/s?wd=%BB%FA%C6%F7%B9%B7&cl=3

 

Sorry, a little to much for me to read.

 

Yes, in fact, thousands of Robot Dog type spyware came out in the past month.

About the big "hole" of Shadow device bypass, will Tony find a way to cover that?

Thanks.