Secure Folders to protect folders (and use as anti-executable)

This is weird, because explorer.exe should not be able to modify files in "read-only" mode, but apparently Windows still allows it. So trusting explorer.exe means no protection with SF.

 

Is any of you mentioned, if SF added to Windows Explorer menu then Win + X menu is not working properly (Windows 10)?
Does not open anything.

 

Agree

 

Of course, security programs have to be awake and watching through drivers or policies on a LIVE running system otherwise how we'd expect them to do their job?
Encryption? That's another story.

 

I can confirm that when I'm in Shadow Mode (Shadow Defender) SF don't work.
I can delete/rename files/folder that are protected by SF.

And can also confirm that SF context menu when is turned on don't allowed Win+X menu to work properly.

 

Strange, Djigi.
Using here Toolwiz Time Freeze - and I can do such operations in Freeze Mode.

 

You can do what operations?
Maybe you mean that in Toolwiz Time Freeze this does not happen?

 

• I cann't delete/rename files/folder that are protected by SF.
• Yes. With Toolwiz Time Freeze this does not happen.

At least if I did the test well...

 

I have try now.
Install Toolwiz on my virtual pc, add SF, go to frozen mode and SF protecting files.
Shadow Defender don't do that in shadow mode...

 

Found an free alternative called SecretFolder it's not usable as Anti-executable but good enough for normal users because it also can protect from been uninstalled + it's not bypassed in traditional ways (like with cmd [but WinPE]).

 

It was mentioned already on first page this thread and it happened not in all systems. Maybe it's caused by new version of SD or SF...or system updates?...

 

Nicht übel, but: it can only lock and unlock folders. Unfortunately, it lacks some useful features found in SecureFolders, such as preventing files from execution. Anyway, thanks for posting. Much appreciated.

 

Solution to explorer being exploited is to protect it with MemProtect (see Bouncer thread).

Just tested it with Secure Folders on Windows 32 bits. Problem with Memprotect is that it is ini file configuration based, so not user friendly setup

 

I tested this tool years ago, and it was complete crap back then.

 

Just found this thread and Secure Folders may be just what I'm looking for:

I backup my entire system using Macrium Reflect to 1 Folder on my external usb hard drive.

I then make that 1 folder Read Only in SF.

I then add Macrium Reflect as the only allowed App in SF.

Am I now protected against Ransomeware?

 

Ransomware can still infect your PC and all files that are not protected with SF.

 

I do the same, I think so. See this post.

Sure. But the concern is that the connected backup drive image is protected, so that one can recover.
I recall you did some testing not long ago. Would you concur that the connected backup drive image is protected by Secure Folders, if the containing folder is in Read Only mode (with the imaging program as the only Trusted Application)?
.

 

As I said, all files that are not protected by SF is not protected.
Unable to test but I'm pretty sure that this drive will be secured.

 

Thanks for the replies, I'm not too concerned if the main computer is encrypted, as Macrium images the entire machine.

Using Macrium Rapid Delta Restore would mean only a few minutes to restore the entire machine to before the infection.

I was concerned if the attached drive was encrypted as well...

All user data is also backed up to Dropbox or similar services which offer global restore.

PS, all machines are protected by BitDefender and MalwareBytes Pro as well.

So I'm hoping SF completes the protection

 

Would someone mind sending me secure folders? I thought I had it bookmarked.

 

I'm pretty sure you had but now that domain has expired, lol.
I have a copy of the installer by clicking the link on my sign.

 

Return to the past......

https://web.archive.org/web/20150812074243/http://securefoldersfree.com/

 

Thanks. I meant reizors link

 

Thanks!