App Review Shadow Defender Vs Shamoon Review

madyrocksin · Aug 20, 2012

Thanks to ReviewsAntivirus for his sample of Shamoon

Moose · Aug 20, 2012

Thank you! For sharing,madyrocksin!

Moose

InternetChicken · Aug 20, 2012

Hi madyrocksin nice test ,
Toolwiz TimeFreeze Fail ,
repeted your test on my test pc with one change I ran all 3 files with
Toolwiz TimeFreeze in frozen mode tonight
Shamoon Ate it for breakfast Pc unbootable,

Deleted member 178 · Aug 21, 2012

Not surprised by the result of SD, it was designed to protect from malwares.

InternetChicken · Aug 21, 2012

yes Shadow Defender is very good

Plexx · Aug 21, 2012

Wonder how would Bufferzone Pro do against it... Guess I'll do a quick test

madyrocksin · Aug 21, 2012

InternetChicken said:
Hi madyrocksin nice test ,
Toolwiz TimeFreeze Fail ,
repeted your test on my test pc with one change I ran all 3 files with
Toolwiz TimeFreeze in frozen mode tonight
Shamoon Ate it for breakfast Pc unbootable,

TimeFreeze is a bit weak against malwares, its good for undoing small application changes.

madyrocksin · Aug 21, 2012

Umbra Corp. said:
Not surprised by the result of SD, it was designed to protect from malwares.

I knew that but still wasn't expecting a clean undo, i thought there might be some errors etc.
i must say i was a bit surprised!!

madyrocksin · Aug 21, 2012

Biozfear said:
Wonder how would Bufferzone Pro do against it... Guess I'll do a quick test

That would be great test, i m waiting

Plexx · Aug 21, 2012

madyrocksin said:
Biozfear said:

Wonder how would Bufferzone Pro do against it... Guess I'll do a quick test

Click to expand...

That would be great test, i m waiting

As suspected, since I do not trust Bufferzone to automatically open the files in Bufferzone due to past experiences, I manually added to be ran inside the zone.

Result? Infected within the zone. Cleared zone and system clean

Will edit the video later on and upload.

Want to finish the next 2 batches

madyrocksin · Aug 21, 2012

thanks for the briefing

Deleted member 178 · Aug 21, 2012

madyrocksin said:
I knew that but still wasn't expecting a clean undo, i thought there might be some errors etc.
i must say i was a bit surprised!!

i am using SD for testing malwares on my real system since long time and it never failed me ^^

Nikos · Aug 21, 2012

What if a virus infect the system very bad and it cant even boot? how will you roll back to a previous restore point with SD then?

Deleted member 178 · Aug 21, 2012

Nikos said:
What if a virus infect the system very bad and it cant even boot? how will you roll back to a previous restore point with SD then?

no you don't understand how it works, SD dont create a restore point; to be simple, it create a Virtual version of your system then delete it when you reboot.

if any malwares may bypass it, it will be the same as your real system. it is why i keep my AVs (in case of)

Nikos · Aug 21, 2012

What exactly happens when someone enables Sd's Shadow mode?

nothing gets actually written to the disk so its safe to test malware?

Nikos · Aug 21, 2012

Umbra Corp. said:
Nikos said:

What if a virus infect the system very bad and it cant even boot? how will you roll back to a previous restore point with SD then?

Click to expand...

no you don't understand how it works, SD dont create a restore point; to be simple, it create a Virtual version of your system then delete it when you reboot.

if any malwares may bypass it, it will be the same as your real system. it is why i keep my AVs (in case of)

Whats exactly do you mean it creates a "Virtual version of the system"?

I though it was working with restore points as Acronis and similar software. No?

Or are you talking just for the shadow mode?

Deleted member 178 · Aug 21, 2012

SD has only Shadow Mode, it is not a backup or restore software.

Imagine it like sandboxie but instead of just files or browsers, it is System-wide based and virtualize partitions/files/programs you select.

Nikos · Aug 21, 2012

Ahhh! i was confusing it with Rollback FX!!!

a) Now i see, so when i need to test somehting i dont have to install and setup virtualbox but just enter SDs shadow mode right?

b) Also how can i run a selected app sandboxed with SD without entering full system shadow mode?

madyrocksin · Aug 21, 2012

Umbra Corp. said:
madyrocksin said:

I knew that but still wasn't expecting a clean undo, i thought there might be some errors etc.
i must say i was a bit surprised!!

Click to expand...

i am using SD for testing malwares on my real system since long time and it never failed me ^^

oh really, is it really that reliable!!
I too use it specially on my host when testing some malware on VM

Have you ever tried to bombard the system with virus and then checked it ??

madyrocksin · Aug 21, 2012

Nikos said:
Ahhh! i was confusing it with Rollback FX!!!

a) Now i see, so when i need to test somehting i dont have to install and setup virtualbox but just enter SDs shadow mode right?

b) Also how can i run a selected app sandboxed with SD without entering full system shadow mode?

a)I wouldn't do that, SD is really good but trying malware on it may be harmful, u can use it as an extra level of security !!

b) no u can't do that, when you select Shadow Mode u select the drives which will be on shadow mode, basically your whole system is visualized as it is, then you use an application run/install and when you reboot i.e. exit the shadow mode you undo the changes!!

You might take a look at the video for better clarity !!

Search

App Review Shadow Defender Vs Shamoon Review

madyrocksin

New Member

Moose

Level 22

InternetChicken

New Member

Deleted member 178

InternetChicken

New Member

Plexx

madyrocksin

New Member

madyrocksin

New Member

madyrocksin

New Member

Plexx

madyrocksin

New Member

Deleted member 178

Nikos

New Member

Deleted member 178

Nikos

New Member

Nikos

New Member

Deleted member 178

Nikos

New Member

madyrocksin

New Member

madyrocksin

New Member

Similar threads