The unofficial Shadow Defender Support Thread.

Discussion in 'sandboxing & virtualization' started by Cutting_Edgetech, Feb 14, 2011.

  1. Behold Eck

    Behold Eck Registered Member

    Joined:
    Aug 23, 2013
    Posts:
    563
    Location:
    The Outer Limits
    Thanks for the(preactivated) giveaway.:thumb:

    Regards Eck:)
     
  2. quietman

    quietman Registered Member

    Joined:
    Dec 27, 2014
    Posts:
    511
    Location:
    Earth .... occasionally
    @sdmod
    Thank you , the fault was entirely mine ..... typo or brain-fart ...
    .... or both !

    I just checked again and it's Yang Ping
     
  3. stapp

    stapp Global Moderator

    Joined:
    Jan 12, 2006
    Posts:
    18,015
    Location:
    UK
    I am quite a recent convert to using Shadow Defender so would like to ask the more experienced users a question :)

    Today I fired up SD on a Win 7 machine and shadowed the C drive only.

    Once in shadow mode I attached an external drive with just docs, pictures, videos etc on it.

    I knew that there was a good chance of malware being in them.

    I ran MSE from the shadowed C drive and asked it to scan the external drive.

    It found 4 nasty trojans which I removed at the end of the scan.

    I then removed the external drive and shut down machine.

    Turned machine back on, went into shadow mode on C drive, and attached the external drive again.

    Did another scan and all was clean.

    Are there any drawbacks or pitfalls to be aware of when using SD this way on a machine, to scan and clean up non-shadowed drives?
     
  4. Overkill

    Overkill Registered Member

    Joined:
    Mar 16, 2012
    Posts:
    2,343
    Location:
    USA
    Randomly whenever I exclude my bookmarks in SD, after reboot (usually when in shadow mode) I open chrome and bookmarks are gone. Luckily chrome has a backup. This happens randomly not every time.
     
  5. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,097
    Hi Overkill,
    I've emailed Tony about your problem and will post if/when I receive a reply.

    Patrick

     
  6. Overkill

    Overkill Registered Member

    Joined:
    Mar 16, 2012
    Posts:
    2,343
    Location:
    USA
    Thanks Patrick
     
  7. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,389
    Location:
    Milan and Seoul
    Stapp, what you've just described is the best way to plug in any suspicious drive without risking any infection from 0 day malware. I do exactly the same thing, as in my job sometimes I have to plug in dozens of third party USB flash drives, and some of them are infected. The great thing of SD used in this fashion is that whether your AV detects or not your computer will reboot clean. To be absolutely certain about cleaning a drive one should really run 2-3 different scanners in shadow mode. Nowadays I just rely on my AV only I don't use extra scanners anymore...
     
  8. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,389
    Location:
    Milan and Seoul
    Yes, it happened to me several times and as you said Chrome is good for backing up data. As a result I don't exclude anything anymore in SD, if I can, I use the 'commit' function, but for bookmarks I usually copy them into a folder like a simple text document and commit the folder into the real volume by right clicking it. It's not as straight forward as bookmarking a page but I find that SD is extremely reliable if you use the default configuration.
     
  9. stapp

    stapp Global Moderator

    Joined:
    Jan 12, 2006
    Posts:
    18,015
    Location:
    UK
    Thanks for the feedback Osaban. The external drive belonged my friend's young son. He uses it to download wallpapers, videos, music etc to.

    I knew it would be infected :thumb: So I wanted to see how using tools on externals while in shadow mode worked.

    It worked great, in fact his parents are going to buy SD on the strength of what they seen of the trial I put on their machine.

    (using Emsisoft, which monitors external drives, on my own machines I'm afraid I don't usually get the chance to do scans in shadow mode as Emsi has already caught anything)
     
  10. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,389
    Location:
    Milan and Seoul
    You are welcome.
     
  11. Overkill

    Overkill Registered Member

    Joined:
    Mar 16, 2012
    Posts:
    2,343
    Location:
    USA
    You could always just commit the bookmarks file in chrome before rebooting, but I now it's a pita to to that...in my case i'd probably forget to do it lol
     
  12. Djigi

    Djigi Registered Member

    Joined:
    Aug 13, 2012
    Posts:
    554
    Location:
    Croatia
    I have turned on sync in Chrome and have no problem with bookmarks.
     
  13. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,104
    Location:
    .
    Version 1.4.0.636 - June 26, 2016
    New: Increase the compatibility.
    Fixed: A missing icon in Windows registry.
     
  14. sdmod

    sdmod Shadow Defender Expert

    Joined:
    Oct 28, 2010
    Posts:
    1,097
    Thanks bjm.

    I'm an XP sp3 user and for a long time, I've used Shadow Defender 1.4.0.519 as I found it the most stable on my ntfs 32 bit system.
    Recently Tony released Shadow Defender 1.4.0.635 and I decided to try that version and it ran very well for me.
    Today I have installed Shadow Defender 1.4.0.636 and will post here as I go along.
    I hardly ever run without being in Shadow Mode these days. I'll go for a few days in Shadow Mode and then reboot to normal mode to update antivirus etc, returning to Shadow Mode when it's done.
    'Well done' to Tony, congratulations on the new release.

    Patrick


     
  15. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,104
    Location:
    .
    Hmm, I'll have to try in-shadow for a few days and see.
     
    Last edited: Jun 26, 2016
  16. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,053
    Location:
    Mexico
    I just want to say that apart from software updation and ccleaner run, I always go into shadow mode manually after reaching the desktop. I've been doing this for one year now and my PC is in a pristine state always. I love this program forever.
     
  17. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    2,091
    Location:
    Canada
    I'm using the latest SD & EIS, seems SD interferes with EIS updates.

    Had to uninstall SD, now EIS updates normally. I did notice about three updates (SD), they addressed an issue with EIS.

    Anybody else find EIS & SD problems?
     
  18. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,104
    Location:
    .
    Q: what happens with forced W10Home Windows updates (w/wo need for restart) while in Shadow Mode. (not W10 upgrade.)
     
  19. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    2,091
    Location:
    Canada
    I've never tried to up windows in SM, thought it wouldn't stick, I upgraded to W10, why would that matter?
     
  20. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,104
    Location:
    .
    Just asking. I never update in shadow. I was wondering what happens in shadow when M$ pushes W10 updates and or asks for restart.
    And does restart from shadow then bring on W10 updates. Just asking since I run with Windows Update disabled (pre-W10). Windows Insider tells me <There are some serious issues with manual updates, concerning the license/service agreements with Windows 10.>
     
    Last edited: Jun 26, 2016
  21. Techwiz

    Techwiz Registered Member

    Joined:
    Jan 5, 2012
    Posts:
    541
    Location:
    United States
    I've had software applications and windows itself try to update inside of shadow defender. Software will typically install ad run no problem if it doesn't required a reboot to finalize. When windows tries to update, it will schedule a restart and attempt to save and close open documents, applications, before it restarts the computer. It will download the update, unpackage it, and attempt to do the pre-reboot installation portion. The issue here is that anything it attempts to save is not committed by shadow defender and the second part of the installation on reboot fails. It will continue to keep doing this until you do a controlled reboot out of shadow mode. I've experimented with using one drive to backup files automatically on systems with non-sensitive data, but this generally results in weird syncing errors where the data changes that were saved are re-saved after the reboot. I've had similar issues with automatic backups on external drives. So this is not a viable option. Your best bet would be to commit your work before you leave your computer unattended (which could result in potential infection) or manually back-up data to an external drive and/or to cloud storage. If you do this regularly, the backup process is quick. It's a pain if you let it build up, presuming you generate a lot of data that needs saving. Windows is typically in a sluggish state after several failed updates in terms of slow browsing, unresponsive applications, etc. But all of these problems disappear once you reboot out of shadow mode. It's an annoyance. Something else that you might want to consider is preventing other windows 10 machines from downloading and sharing updates with other devices on the network. I've noticed that when this is enabled, bandwidth on the network plummets because it is downloading updates to all of the connected devices. I'm experimenting with adding windows host name/addresses to comodo's blocked zones to block windows communication. I find this approach is a lot less resource intensive than the broken web filter and it seems to have shut up a lot of unwanted activity. Still its experimental at this stage for me, and I know from what I've read online that some Microsoft traffic hard-coded to bypass the firewall, requiring blocking at the router. This would be a pain in the arse to setup to block updates until your ready for them.
     
  22. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,104
    Location:
    .
    Hi Techwiz, wow.... so much over-my-pay-grade and so much I want to avoid as long as possible.
    My everyday machine. WinUpdate is never check, service disabled, blacklist TiWorker. Image backup and at my convenience, check-filter-pull-install at my convenience. Yes, peer-to-peer delivery update mechanism has to be hassle in/out of shadow.
    What is M$ thinking (rhetorical).
    Apology to all, for off topic.
     
    Last edited: Jun 26, 2016
  23. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,104
    Location:
    .
    .636 > tried to Log-off Windows user account while in shadow because Recycle Bin desktop Icon had glitch. No bin, just Recycle Bin text.
    So, thought... I'll try Log-off/Log-on Windows user account to refresh Recycle Bin Icon.
    Log-off screen never did log off, just spinning circle, spinning.
    I guess since shadow mode starts at desktop, Log-off confused something.
    Note to self. Don't Log-off in shadow.
     
    Last edited: Jun 27, 2016
  24. Djigi

    Djigi Registered Member

    Joined:
    Aug 13, 2012
    Posts:
    554
    Location:
    Croatia
    I have no problem with log off/on.
    Try to restart pc and then try again to log off
     
  25. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,104
    Location:
    .
    Hmm, try again to Log-off (just after Enter Shadow Mode) is okay. Head scratch. Thanks!
    Wonder, what happened here #4648
     
    Last edited: Jun 27, 2016
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.