Mini Spy

Loading...

Latest Threads

Loading...
 
  1. Warning Welcome to MalwareTips.com, a free community where people like yourself come together to discuss and learn about PC security and computers.
    As a guest, you can browse and view the various discussions in the forums, but you can not create new threads or reply to an existing one unless you are a registered member. By joining our free community you will have access to post threads, start private conversations with other members, respond to polls, upload content and access many other special features.
    Registration is fast, simple and absolutely free, so please join us today!
  2. Emsisoft  Mobile Security GiveawayEXCLUSIVE MalwareTips.com: Emsisoft Mobile Security Giveaway

    Get a free license key for Emsisoft Mobile Security to protect your Android smartphone. We are giving away Emsisoft Mobile Security license keys for our awesome members!

    Get an Emsisoft Mobile Security license key!

  3. Zemana AntiLogger Unlimited GiveawayEXCLUSIVE: Zemana AntiLogger Giveaway

    Get a free license key for Zemana AntiLogger. We are giving away 300 Zemana AntiLogger license keys for our awesome members!

    Get a Zemana AntiLogger license key!

  4.  NoVirusThanks EXE GiveawayEXCLUSIVE MalwareTips.com : NoVirusThanks EXE Radar Pro Giveaway

    Get a free license key for NoVirusThanks EXE Radar Pro. We are giving away NoVirusThanks EXE Radar Pro license keys for our awesome members!

    Get a NoVirusThanks EXE Radar Pro license key!

  5. ZoneAlarm 2015 Extreme Security GiveawayEXCLUSIVE MalwareTips.com:ZoneAlarm 2015 Extreme Security Giveaway

    Get a free license key for ZoneAlarm 2015 Extreme Security. We are giving away ZoneAlarm 2015 Extreme Security license keys for our awesome members!

    Get a ZoneAlarm 2015 Extreme Security license key!

  6. Tip of the Day Many people think that 'formatting' a hard drive will wipe out all the data so it cannot be recovered
    Not so. To prevent the possibility of future recovery, use a third-party, low-level hard drive formatting tool, such as Killdisk (downloadable at no charge from www.killdisk.com) to overwrite data on the hard drive with a random sequence of 1's and 0's.

How to set up Shadow Defender for convenience & max protection

Discussion in 'How-To Articles, Tips and Guides' started by Umbra Polaris, Jan 8, 2013.

  1. Umbra Polaris

    Umbra Polaris Testing And Review Expert Staff Member

    Joined:
    May 17, 2011
    Messages:
    9,068
    Likes Received:
    1,275
    Trophy Points:
    497
    Hi, i read a lot of post asking how to set up Shadow Defender properly for convenience and optimal protection. so there is my simple guide:

    Prologue:

    SD can be used in 2 modes:

    1- On-Demand mode

    In this mode you just activate the Shadow mode when you need to test something you think may be harmful to your system , then reboot to exit it; this mode will not reduce/hamper your daily use of your system since all changes made (Windows Updates, bookmarks, installed softs, etc...) outside Shadow Mode will remain.

    2- Permanent Mode

    This mode is active when you allow the Shadow Mode at boot, this mode is the safest one for your system but is the one that will have many unwanted effects, why ?

    - You are always under Shadow Mode so any changes in your system will be negated at every reboot.

    - Any Windows/software/antivirus Updates, created/modified/downloaded files (as well as malwares infections ) will be negated at the next reboot.

    As you see it is the main purpose of SD, virtualizing your actions then negating them at next reboot.

    You will ask me : "So what the benefit of SD if i have to redo every time the works i have done?"

    I will answer by: "Then you have the exclusions and commit functions"

    So now let start to configure SD for max protection but with convenience of use.

    1- Mode Setting

    First you have to decide which partitions/drives to protect from changes, of course the system one must be protected but i recommend also any other partitions/drives you may have !

    Why ? because some malwares infect every files not just the system ones.

    You choose your partitions there:

    [​IMG]

    Then select "Enter Shadow Mode at every boot"; then you will enter rightaway in Shadow Mode and at every boot.

    [​IMG]

    The desktop tip will appears to confirm that you entered in Shadow Mode (the tip can now be hided )

    2- Exclusion List

    The important part is here, the exclusion list

    You will have to set the folders that will be ignored by SD, meaning all changes occurring on them will be kept when you will reboot.

    There is my exclusions:

    [​IMG]

    So what to exclude:

    - Your Antivirus updates : Generally by excluding every folders of it (ask in your product support forum to be sure),

    - Your browser bookmarks (optional) : i put it as optional because i don't like to exclude my browsers, since internet is the best place to be infected i don't want to open some security holes.
    My workaround is to use an online bookmark synchronizer that loads my bookmarks everytime i am online (ex: Xmarks)

    If you still want exclude them you must find where the bookmarks are stored. example for Firefox: "places.sqlite"

    - Your downloads: It is a nonsense to download things then negate them at the next reboot, so i recommend you to create 2 folders (in the non-system partition), for that: the first one , i called it "Downloads " is where all your downloads will be saved (this one will be not excluded); its purpose is to check that your downloaded files are safe/non-malicious (the AVs will take care of that), you can open the files there.
    The second folder will be named "Safe Downloads" , when after checking the files in "Downloads" you are sure they are safe, move them here to keep them. Later you will exit Shadow Mode and locate them as you wish in a non-exclusion folder.

    - Your Works: Create and exclude a folder, put your actual working files there (documents, etc..) until done, then as above relocate them later in the folder that will be protected by Shadow Mode, so you will never loose them in case of infections.

    Note about Windows Update: unfortunately , you can't exclude it , SD can't exclude the registry base, so when an update is available , just exit Shadow Mode, install it, return under Shadow Mode.


    3- Commit Now button:

    The Commit Now button allows you to exclude files/folders on the fly , in case you downloaded/modified a file outside the excluded folders.

    [​IMG]

    You can also do it via right-clicking the file


    Final Note

    As you see , Shadow Defender is a powerful protection tool if used properly, but it is not 100% bullet-proof so you have to be careful on what you download and execute on your system.

    Hope this guide helped you.

    I will add more infos if needed and also about the browsers bookmarks file to exclude.


    Thanks
  2. Nige_40

    Nige_40 Guest

    Many thanks for this Guide Umbra :)
  3. Payback

    Payback Regular Member

    Joined:
    Jan 7, 2013
    Messages:
    325
    Likes Received:
    3
    Trophy Points:
    47
    May I know the meaning of "100 percent not bullet-proof"?
  4. illumination

    illumination Well-Known Member

    Joined:
    Jun 21, 2011
    Messages:
    2,216
    Likes Received:
    786
    Trophy Points:
    367
    Certain rootkits/malware may be able to bypass Shadow Defender.
  5. Umbra Polaris

    Umbra Polaris Testing And Review Expert Staff Member

    Joined:
    May 17, 2011
    Messages:
    9,068
    Likes Received:
    1,275
    Trophy Points:
    497
    Yes very very few of them may bypass it (based from some videos only, without real proof) but i didn't find one yet; SD protect the MBR ONLY after it loads its drivers, so if a rootkit manage to infect the MBR before that state, SD can't protect the system.
  6. Welldone

    Welldone New Member

    Joined:
    Dec 29, 2012
    Messages:
    32
    Likes Received:
    9
    Trophy Points:
    17
    Nice guide for using SD.
  7. exterminator20

    exterminator20 Giveaway and Hot Deals Expert Staff Member

    Joined:
    Oct 23, 2012
    Messages:
    3,213
    Likes Received:
    1,515
    Trophy Points:
    618
    Excellent guide for a very powerful,useful and good piece of software.
  8. illumination

    illumination Well-Known Member

    Joined:
    Jun 21, 2011
    Messages:
    2,216
    Likes Received:
    786
    Trophy Points:
    367
    Same here, i have thrown everything at it but a brick, and have not bypassed it yet.
  9. Fantasy

    Fantasy Active Member

    Joined:
    Feb 23, 2014
    Messages:
    641
    Likes Received:
    439
    Trophy Points:
    197
    Thank you for this.

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads: Shadow Defender
Forum Title Date
Shadow Defender Shadow Defender v1.4.0.518 is released Yesterday at 6:34 AM
War Room TimeFreeze vs. Shadow Defender Saturday at 4:45 PM
War Room Deep Freeze,Sandboxie and Shadow Defender? Mar 29, 2014
Shadow Defender Shadow Defender and Windows Defender on Windows 8.1 Mar 20, 2014
Tiranium Which folders to exclude in Shadow Defender Mar 7, 2014

MalwareTips.com is an independent website.All trademarks mentioned on this page are the property of their respective owners.