Should I block it?

No, this file is 100% safe to run.

Relationships

Parent process
Related files

PE structurePE file structure
Show functions
Import table
advapi32.dll
ReportEventW, SetThreadToken, DuplicateToken, DuplicateTokenEx, CreateProcessAsUserW, GetLengthSid, AddAccessAllowedAce, SetTokenInformation, EnumServicesStatusW, QueryServiceConfigW, QueryServiceConfig2W, QueryServiceStatusEx, CloseServiceHandle, StartServiceW, OpenThreadToken, CryptAcquireContextW, CryptCreateHash, CryptHashData, CryptGetHashParam, CryptDestroyHash, CryptReleaseContext, CheckTokenMembership, FreeSid, ConvertStringSidToSidW, LookupAccountSidW, LookupPrivilegeValueW, AdjustTokenPrivileges, RevertToSelf, InitializeSecurityDescriptor, SetSecurityDescriptorOwner, SetEntriesInAclW, SetSecurityDescriptorDacl, OpenProcessToken, GetTokenInformation, AllocateAndInitializeSid, StartServiceCtrlDispatcherW, RegisterServiceCtrlHandlerExW, SetServiceStatus, OpenSCManagerW, OpenServiceW, OpenEventLogW, ControlService
crypt32.dll
CryptUnprotectData, CryptProtectData
gdi32.dll
SetBkColor, CreateFontW, TextOutW, CreateSolidBrush, GetDeviceCaps, SetTextColor, SelectObject
kernel32.dll
GlobalFree, GlobalUnlock, GlobalLock, GlobalAlloc, GetModuleFileNameW, ReadProcessMemory, WriteProcessMemory, DeleteCriticalSection, DuplicateHandle, TryEnterCriticalSection, CreateMutexW, OpenEventW, OpenMutexW, QueryPerformanceCounter, GetCurrentThreadId, GetCurrentProcessId, UnhandledExceptionFilter, SetUnhandledExceptionFilter, GetStartupInfoA, CreateProcessW, MulDiv, HeapReAlloc, GetFileAttributesW, SetFileAttributesW, CopyFileW, UnmapViewOfFile, SetEndOfFile, CancelIo, VirtualAlloc, ExitProcess, RaiseException, VirtualFree, InitializeCriticalSectionAndSpinCount, LeaveCriticalSection, OutputDebugStringW, EnterCriticalSection, GetLastError, QueueUserWorkItem, Sleep, ProcessIdToSessionId, GetCommandLineW, CloseHandle, HeapAlloc, GetProcessHeap, GetCurrentProcess, HeapFree, SetLastError, MapViewOfFile, CreateFileMappingW, OpenFileMappingW, HeapDestroy, HeapCreate, WaitForMultipleObjects, TerminateThread, WaitForSingleObject, SetEvent, InterlockedExchange, GetProcessTimes, OpenProcess, OpenThread, GetProcAddress, GetModuleHandleW, CreateEventW, SetThreadPriority, GetCurrentThread, InterlockedIncrement, CreateThread, GetVersionExW, LocalFree, WriteFile, SetFilePointer, CreateFileW, GetLocalTime, LocalAlloc, TerminateProcess, InitializeCriticalSection, GetSystemTimeAsFileTime, GetTickCount, GetSystemWindowsDirectoryW, DeleteFileW, LoadLibraryW, GetWindowsDirectoryW
msvcrt.dll
DllMain
ntdll.dll
RtlCreateSecurityDescriptor, RtlSetDaclSecurityDescriptor, NtQueryFullAttributesFile, NtSetInformationFile, NtQueryDirectoryFile, NtQueryInformationFile, NtClose, NtSetInformationThread, NtDuplicateToken, NtFilterToken, NtQueryInformationToken, NtOpenProcessToken, NtOpenThreadToken, NtCompleteConnectPort, NtAcceptConnectPort, NtImpersonateClientOfPort, NtReplyWaitReceivePort, NtCreatePort, NtReadFile, NtWriteFile, NtCreateFile, NtLoadKey, NtUnloadKey, NtOpenKey, NtLoadDriver, RtlInitString, RtlInitUnicodeString
ole32.dll
CoInitializeEx, CoInitializeSecurity, CoUninitialize, CoMarshalInterface, CoCopyProxy, CoSetProxyBlanket, CoQueryProxyBlanket, CreateStreamOnHGlobal, CoUnmarshalInterface, CoGetClassObject, CoTaskMemFree
sbiedll.dll
SbieApi_Log, _SbieApi_PortName@0, _SbieApi_SetLsaAuthPkg@8, _SbieApi_CallZero@4, _SbieApi_GetVersion@4, SbieApi_LogEx, _SbieApi_GetUnmountHive@4, _SbieApi_EnumProcessEx@16, _SbieApi_SetUserName@8, _SbieDll_FormatMessage2@12, _SbieDll_GetServiceRegistryValue@12, _SbieApi_QueryProcess@20, _SbieApi_GetWork@12, _SbieApi_QueryProcessPath@28, _SbieApi_CheckInternetAccess@12, _SbieApi_QueryConf@20, _SbieDll_RunFromHome@16, _SbieApi_ReloadConf@4, _SbieDll_FormatMessage0@4, _SbieDll_ComCreateStub@16, _SbieDll_IsOpenClsid@12
secur32.dll
LsaDeregisterLogonProcess, LsaConnectUntrusted, LsaLookupAuthenticationPackage
setupapi.dll
SetupDiClassNameFromGuidExW, SetupDiBuildClassInfoList, CM_Get_Device_ID_ListW, CM_Get_Device_ID_List_SizeW, CM_Get_Device_Interface_ListA, CM_Get_Device_Interface_ListW, CM_Get_Device_Interface_List_SizeA, CM_Get_Device_Interface_List_SizeW, CM_Get_Device_Interface_Alias_ExW, SetupDiDestroyDeviceInfoList, SetupDiOpenDeviceInfoW, SetupDiCreateDeviceInfoList, SetupDiOpenDeviceInterfaceW, CM_Get_DevNode_Status, CM_Locate_DevNodeW
user32.dll
ShowWindow, DispatchMessageW, RegisterClassW, DefWindowProcW, BeginPaint, CreateWindowExW, GetMessageW, EndPaint, wsprintfW

SbieSvc.exe

Sandboxie by SANDBOXIE L.T.D (Signed)

Remove SbieSvc.exe
Version:   3.442
MD5:   b5354d391912e3abc13e3b9e31d79367
SHA1:   37d3e8be211c51601f829ac0401eb0335ef365ec
SHA256:   5461c131c93c76e8be19f806c6dca1986a3ebd3ac941720d2682cf1974a167f3

Overview

sbiesvc.exe runs as a service under the name Sandboxie Service (SbieSvc) within the local user context. The file is digitally signed by SANDBOXIE L.T.D which was issued by the GlobalSign nv-sa certificate authority (CA). This particular version is usually found on Windows 7 Ultimate (6.1.7600.0).

DetailsDetails

File name:sbiesvc.exe
Publisher:tzuk
Product name:Sandboxie
Description:Sandboxie Service
Typical file path:C:\Program Files\sandboxie\sbiesvc.exe
File version:3.442
Size:72.23 KB (73,960 bytes)
Certificate
Issued to:SANDBOXIE L.T.D
Authority (CA):GlobalSign nv-sa
Effective date:Monday, January 4, 2010
Expiration date:Wednesday, January 5, 2011
Digital DNA
PE subsystem:Windows GUI
File packed:No
Code language:Microsoft Visual C++
.NET CLR:No
More details

BehaviorsBehaviors

Service
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
  • 'SbieSvc' (Sandboxie Service)

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00009990%
0.028634%
Kernel CPU:0.00005715%
0.013761%
User CPU:0.00004275%
0.014873%
Kernel CPU time:261 ms/min
100,923,805ms/min
CPU cycles:4,919/sec
17,470,203/sec
Memory
Private memory:1.84 MB
21.59 MB
Private (maximum):4.45 MB
Private (minimum):161 KB
Non-paged memory:1.84 MB
21.59 MB
Virtual memory:41.94 MB
140.96 MB
Virtual memory (peak):43.39 MB
169.69 MB
Working set:273 KB
18.61 MB
Working set (peak):4.45 MB
37.95 MB
Page faults:3,014/min
2,039/min
I/O
I/O read transfer:43 Bytes/sec
1.02 MB/min
I/O read operations:1/sec
343/min
I/O write transfer:16 Bytes/sec
274.99 KB/min
I/O write operations:1/sec
227/min
I/O other transfer:2 Bytes/sec
448.09 KB/min
I/O other operations:1/sec
1,671/min
Resource allocations
Threads:4
12
Handles:100
600
GUI GDI count:9
103
GUI GDI peak:9
142
GUI USER count:2
49
GUI USER peak:3
71

BehaviorsProcess properties

Integrety level:High
Platform:32-bit
Command lines:
  • "C:\Program Files\sandboxie\sbiesvc.exe" sandboxie_comproxy_s-1-5-21-3906240563-446437588-3246643247-1000_2_1_:
  • "C:\Program Files\sandboxie\sbiesvc.exe" sandboxie_comproxy_s-1-5-21-3906240563-446437588-3246643247-1000_1_1_:
  • "C:\Program Files\sandboxie\sbiesvc.exe" sandboxie_comproxy_s-1-5-21-3906240563-446437588-3246643247-1000_defaultbox_1_:
  • "C:\Program Files\sandboxie\sbiesvc.exe"
Owner:User
Windows Service
Service name:SbieSvc
Display name:Sandboxie Service
Type:Win32OwnProcess
Parent processes:

ResourcesThreads

Averages
 
SbieSvc.exe (main module)
Total CPU:0.00018459%
0.272967%
Kernel CPU:0.00009897%
0.107585%
User CPU:0.00008562%
0.165382%
CPU cycles:3,337/sec
5,741,424/sec
Memory:76 KB
1.16 MB
ntdll.dll
Total CPU:0.00002094%
Kernel CPU:0.00002094%
User CPU:0.00000000%
CPU cycles:178/sec
Memory:1.23 MB

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Ultimate 100.00%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE