ShadowDefender

December 18, 2012 by
Filed under: ShadowDefender 

Shadow Defender

http://www.shadowdefender.com/

Shadow Defender is an easy-to-use security solution (for Windows operating systems) that protects your PC/laptop real environment against malicious activity and unwanted changes.

Shadow Defender can run your system in a virtual environment called ‘Shadow Mode’. ‘Shadow Mode’ redirects each system change to a virtual environment with no change to your real environment. If you experience malicious activity and/or unwanted changes, perform a reboot to restore your system back to its original state, as if nothing happened.

With Shadow Defender, you have the flexibility to specify which files and folders are permanently saved to the real environment. This ensures important files and folders are kept after a reboot.

Try Shadow Defender for the most effective and easy-to-use security solution.

This software does not change the Windows boot time.

DEFENDERDAEMON.EXE
Description: Shadow Defender Daemon Application SHADOWDEFENDER.COM Shadow Defender 1.2.0.346
MD5= 2613243E7A614EF13A8DB6756060C4A5
File is signed and the signature was verified.
File size= 263112
Related registry changes:
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\SHADOW DEFENDER DAEMON: “”%PROGRAM FILES%\SHADOW DEFENDER\DEFENDERDAEMON.EXE” /AUTO”
DISKPT.SYS
Description: Shadow Defender Filter Driver SHADOWDEFENDER.COM Shadow Defender 1.2.0.346
MD5= B694B331F26B943A626ED9837A2E846D
File is signed and the signature was verified.
File size= 206872
Related registry changes:
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\DISKPT\IMAGEPATH: “SYSTEM32\DRIVERS\DISKPT.SYS
SHELLEXT.DLL
Description: Shadow Defender Shell Extension SHADOWDEFENDER.COM Shadow Defender 1.2.0.346
MD5= 63DA0CB350CE74D94C7740C66615963B
File is signed and the signature was verified.
File size= 214888
Related registry changes:
HKLM\SOFTWARE\CLASSES\CLSID\{5EE8E9E6-2853-4D28-B2DE-6529EDA0A294}\INPROCSERVER32\: “%PROGRAM FILES%\SHADOW DEFENDER\SHELLEXT.DLL
HKLM\SOFTWARE\CLASSES\TYPELIB\{3A5C2EFF-619A-481D-8D5D-A6968DB02AF1}\1.0\0\WIN32\: “%PROGRAM FILES%\SHADOW DEFENDER\SHELLEXT.DLL

FILES ADDED:18

%APPDATA%\MICROSOFT\INTERNET EXPLORER\QUICK LAUNCH\SHADOW DEFENDER.LNK
%TEMP%\~DF8AF7.TMP
%COMMON DESKTOPDDIRECTORY%\SHADOW DEFENDER.LNK
%COMMON STARTMENU%\PROGRAMS\SHADOW DEFENDER\HELP.LNK
%COMMON STARTMENU%\PROGRAMS\SHADOW DEFENDER\SHADOW DEFENDER.LNK
%COMMON STARTMENU%\PROGRAMS\SHADOW DEFENDER\UNINSTALL SHADOW DEFENDER.LNK
%PROGRAM FILES%\SHADOW DEFENDER\COMMIT.EXE
%PROGRAM FILES%\SHADOW DEFENDER\DEFENDER.EXE
%PROGRAM FILES%\SHADOW DEFENDER\DEFENDERDAEMON.EXE
%PROGRAM FILES%\SHADOW DEFENDER\EULA.RTF
%PROGRAM FILES%\SHADOW DEFENDER\HELP.CHM
%PROGRAM FILES%\SHADOW DEFENDER\RES.INI
%PROGRAM FILES%\SHADOW DEFENDER\SHELLEXT.DLL
%PROGRAM FILES%\SHADOW DEFENDER\UNINSTALL.EXE
%PROGRAM FILES%\SHADOW DEFENDER\USER.DAT
%SYSDIR%\DRIVERS\DISKPT.SYS
%WinDir%\DISKPT.CRT
%WinDir%\DISKPT.DAT

FILES[ATTR]MODIFIED:8

%LOCAL APPDATA%\MICROSOFT\FEEDS\FEEDSSTORE.FEEDSDB-MS
%LOCAL APPDATA%\MICROSOFT\FEEDS\MICROSOFT FEEDS~\MICROSOFT AT HOME~.FEED-MS
%LOCAL APPDATA%\MICROSOFT\FEEDS\MICROSOFT FEEDS~\MICROSOFT AT WORK~.FEED-MS
%LOCAL APPDATA%\MICROSOFT\FEEDS\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\INTERNET EXPLORER SUGGESTED SITES~.FEED-MS
%LOCAL APPDATA%\MICROSOFT\FEEDS\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\WEBSLICES~\WEB SLICE GALLERY~.FEED-MS
%LOCAL APPDATA%\MICROSOFT\FEEDS CACHE\INDEX.DAT
%TEMP%\CE4CF87733651BF1F44DD1E02FC1A8E8
%WinDir%\TASKS\USER_FEED_SYNCHRONIZATION-{600E3BA8-8EF5-4554-94FE-DB90950D3DEB}.JOB

FOLDERS ADDED:2

%COMMON STARTMENU%\PROGRAMS\SHADOW DEFENDER
%PROGRAM FILES%\SHADOW DEFENDER
Install UnHackMe Install RegRun

Comments

Tell me what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!

You must be logged in to post a comment.