YesShield - SD clone ?

why would you need this with all the imaging programs out there

 

Imaging takes a long time for me. Besides this is only light virtualization

 

If anyone with SSD is brave enough to try it, please report back about compatibility.

 

YesShield

I've tried YesShild on a W7 32-bit PC.
I scanned the system with most Tools MBAM, HMP, EEK, CureIt!, KVRT etc. ...
No malware found...

In terms of performance, I have No issue to report.

 

What do people use along side a program like YesShield or SD? I'm trying to keep my set up as light as possible.

 

A good combination is to pair light virtualization with an anti-executable or policy restriction program. Malware can still do damage in terms of data/identity theft when the system is virtualized if light virtualization is the only security layer.

In my case, I'm running AppGuard alongside SD.

 

Hi:

I went to malwaredomainlist and searched for TDSS and among the result (most dead) I found one .exe that worked and downloaded it and ran it on my vm and afterward I scanned with tdsskiller and it detected MBR BOOTKIT MORTIFICATION (one result). That tdss was from 2011 and old. I tried the same tdss on toolwiz time freeze test and it infected as well. Have not tried it on shadow defender though. I also tried it against some security suites and most detected it.

 

DefenseWall + Shadow Defender here, this combo for over three years now.
No infections or breaches, surfing dangerous to sensitive sites. (rebooting in between of course)

 

Hi:
Sorry it was from 2010 and not 2011 the tdss one.

tdss link: ~~ link removed ~~ (please do not try it outside vm. Its a real tdss link)

anyone want to test it in vm against yesshield and others.

I hope I did not broke the rules by posting this link since I was asked too. If it breaks the rule then mods. please delete it.

 

here is virustotal result for the tdss: (39 out of 44 detection)

~VT results removed per Policy~

 

This just seems like Shadow Defender with a different gui (not as nice). Maybe Tony has sold it on, he hasn't replied to my last 10 emails to him since my first few initial emails to him on his "re-appearance"

Shadow Defender 1.1.0.325 still remains robust and is well tested


Patrick
ex Shadow Defender global Moderator

 

Hi sdmod

That is probably the reason for the difference in file size of the two [said] programs.

Take Care
TheQuest

 

since defensewall is paid, you can also use bufferzone (free) tweaked for optimal with yes shield. These should give you solid protection against infection.

Also you can tweak sandboxie for browser protection and open any and all your apps in sandboxie plus yesshield would be good too.

 

Hi taleblou,

Presumably, you executed that rootkit while YesShield was protecting your C-drive/partition and after rebooting your system TDSSKILLER found the rootkit (bootkit) - is that correct?

Would you please repeat the test with Shadow Defender and report back?

TS

 

Thanks for all the replies. Decided to give Private firewall a try along with YesShield.

 

just sent them email and waiting for respons...

I am testing YS along side with PF and MBAM Pro without AV..so far running fine and no conflict at all

 

how do you know that YS doesn't have spyware, malware or trojan in it? I don't know if it is only me but Im afraid of new pop out software out of unknown company. especially that it has questionable connection to SD

 

I uploaded it to virustotal and it had 2/44. It seems to work and I find it to be light. However, true, it is questionable but it is hosted from CNET so I would find it to be safe.

 

Yes thats what I did executed tdss while yesshield was protecting and had checked the option to restart in protective mode also. Also toolwiz timefreeze failed too. Okay i will test shadow defender but which version is the last safe version of shadow defender before owner disappeared?

 

I just downloaded the 'free' version, aside from it having the same version number as the 'latest' version of SD....331...It broadcasted to Shadowdefender.com to validate the offer during initial install and returned a message saying the offer was over!.....However I installed and it is not showing any limitations or asking for a serial (in fact there are no registration options I can see)

 

I just scanned 331 from shadow defender download site with virustotal and out of 44 avs, 4 detected trojan in it (K7, The hacker and trendmicro (both)). could be false positive?? Anyway I will test it in vm and see and report here.

 

Well I tested shadow defender right now with the same tdss rootkit that I tested yes shield and time freeze. The result was shadow defender PASSED the test and nothing was detected by tdsskiller.

 

How could that be? Yesshield is derived from Shadow Defender!

 

Hi:
Could it be that yes shield is not a complete shadow defender clone? Could be that some parts of shadow defender is private and perhaps yesshield developer did not have access to all shadow defender code? Maybe they made by different people but the gui looks similar. Like some antiviruses that look similar in gui but different. I will try and test bufferzone against the tdss next.

 

Quite very possible. We do not know the how it came to be.