Is sandboxie.exe a virus? [SOLVED]

Please post your problem description here

Moderator: Barb@Invincea

Post Reply
corriente
Posts: 3
Joined: Wed Jul 20, 2016 10:49 am

Is sandboxie.exe a virus? [SOLVED]

Post by corriente » Wed Jul 20, 2016 11:04 am

Hi
I 've been getting constant malware reports from Windows Defender and other scanners about a file called sandboxie.exe:

====================================================================
Windows Defender report

Category: Trojan

Description: This program is dangerous and executes commands from an attacker.

Recommended action: Remove this software immediately.

Items:
file:C:\Users\Mark\AppData\Roaming\Network Adminstrationl\Sandboxie.exe
process:pid:5600,ProcessStart:131133541353552663
process:pid:6156,ProcessStart:131133541335780182
regkey:HKCU@S-1-5-21-1647421609-3943036839-161413962-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\Adobe Updater
runkey:HKCU@S-1-5-21-1647421609-3943036839-161413962-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\Adobe Updater
========================================================
My questions are:
Is this file legit or was it placed into my computer by some anonymous program?
If this file is legit then is this just a false positive that dozens of malware scanners are identifying as such?

Thank you

Curt@invincea
Sandboxie Lead Developer
Sandboxie Lead Developer
Posts: 1666
Joined: Fri Jan 17, 2014 5:21 pm
Contact:

Re: Is sandboxie.exe a virus?

Post by Curt@invincea » Wed Jul 20, 2016 11:22 am

We don't have a file called Sandboxie.exe, so I would assume this is a virus.

You should install the legit Sandboxie from this website to prevent such infections in the future. :)

Craig@Invincea
Sandboxie Support
Sandboxie Support
Posts: 3523
Joined: Thu Jun 18, 2015 3:00 pm
Location: DC Metro Area

Re: Is sandboxie.exe a virus?

Post by Craig@Invincea » Wed Jul 20, 2016 11:29 am

For letigitmate downloads of Sandboxie and the ile names and the associated MD5 hash/SHA1....
..... go here on our site http://www.sandboxie.com/index.php?AllVersions

corriente
Posts: 3
Joined: Wed Jul 20, 2016 10:49 am

Re: Is sandboxie.exe a virus? [SOLVED]

Post by corriente » Wed Jul 20, 2016 11:42 am

Thank you for the quick reply. I just updated to Windows 10 pro and kept getting complaints from Defender so was not sure if the file was legit. I have been using the legit sandboxie version 5.12 (64bit) from the site but somehow that sandboxie.exe file was injected into my computer from someone else apparently. Thank you for the helpful information and I am currently trying to remove the file.

Curt@invincea
Sandboxie Lead Developer
Sandboxie Lead Developer
Posts: 1666
Joined: Fri Jan 17, 2014 5:21 pm
Contact:

Re: Is sandboxie.exe a virus? [SOLVED]

Post by Curt@invincea » Wed Jul 20, 2016 12:37 pm

Zip the file with a password on it (for safety so it won't spread), and put it somewhere we can download it or email it to Craig so we can take a look at it.

Craig@Invincea
Sandboxie Support
Sandboxie Support
Posts: 3523
Joined: Thu Jun 18, 2015 3:00 pm
Location: DC Metro Area

Re: Is sandboxie.exe a virus? [SOLVED]

Post by Craig@Invincea » Wed Jul 20, 2016 12:46 pm


corriente
Posts: 3
Joined: Wed Jul 20, 2016 10:49 am

Re: Is sandboxie.exe a virus? [SOLVED]

Post by corriente » Wed Jul 20, 2016 12:59 pm

Sorry I just eliminated it and erased it (even removed it from quarantine).....I rebooted to see if it would come back but it hasn't. It was in my task manager... Processes under control of something called 'Acid' and I remember reference to a name Blamer followed by some archaic symbol. In the future if I run across it again I will definitely do as you ask and save it for you.

JDM
Posts: 1
Joined: Wed Nov 28, 2018 7:38 am

Re: Is sandboxie.exe a virus? [SOLVED]

Post by JDM » Wed Nov 28, 2018 8:21 am

Nov. 28, 2018
I just found this forum because I've had the same problems as Corriente. Although, it's been a couple of years from the last activity on this topic, I do have a copy of the "Zip Sandboxie 5.12_File" (Sandboxie.exe) and I would love to send this copy to you so that you can analogize if it is a virus.

I read the situation of this forum member; Corriente and he said that he had erased it from his HDD. I just completed running my virus program and it reports that Sandboxie is a P.U.P.

Craig@Invincea, I would like to send a zip file copy to you for your examination at; support@sandboxie.com

JDM

Barb@Invincea
Sandboxie Support
Sandboxie Support
Posts: 2981
Joined: Mon Nov 07, 2016 3:10 pm

Re: Is sandboxie.exe a virus? [SOLVED]

Post by Barb@Invincea » Wed Nov 28, 2018 10:57 am

Hi JDM,

Where did you get the file from? Please provide a URL so we can review it.
Have you run it via VirusTotal, or where are you getting the PUP results from?

Our installers are provided via here:
https://www.sandboxie.com/DownloadSandboxie

So, if you downloaded something else, most likely it is not our software. The more info you can provide, the better.

Regards,
Barb.-

Post Reply

Who is online

Users browsing this forum: Google [Bot] and 8 guests