Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

6,1,0,145 33.33%
6,1,0,145 33.33%
5,8,1,82 33.33%

Relationships

PE structurePE file structure
Show functions
Import table
advapi32.dll
RegQueryValueExA, RegOpenKeyExA, RegCloseKey, SetSecurityDescriptorDacl, RegSetValueExW, RegSetValueExA, RegQueryValueExW, RegQueryInfoKeyA, RegFlushKey, RegEnumValueA, RegEnumKeyA, RegEnumKeyExA, RegDeleteValueA, RegDeleteKeyA, RegCreateKeyExA, OpenThreadToken, OpenProcessToken, LookupPrivilegeValueW, LookupPrivilegeValueA, LookupAccountSidW, LookupAccountSidA, InitializeSecurityDescriptor, GetUserNameW, GetUserNameA, GetTokenInformation, GetSidSubAuthorityCount, GetSidSubAuthority, GetSidIdentifierAuthority, FreeSid, EqualSid, CreateProcessAsUserW, CreateProcessAsUserA, AllocateAndInitializeSid, AdjustTokenPrivileges, StartServiceA, QueryServiceStatus, QueryServiceLockStatusA, QueryServiceConfigA, OpenServiceA, OpenSCManagerA, ControlService, CloseServiceHandle, ChangeServiceConfigA
comctl32.dll
_TrackMouseEvent, ImageList_SetIconSize, ImageList_GetIconSize, ImageList_Write, ImageList_Read, ImageList_GetDragImage, ImageList_DragShowNolock, ImageList_DragMove, ImageList_DragLeave, ImageList_DragEnter, ImageList_EndDrag, ImageList_BeginDrag, ImageList_GetIcon, ImageList_Remove, ImageList_DrawEx, ImageList_Draw, ImageList_GetBkColor, ImageList_SetBkColor, ImageList_ReplaceIcon, ImageList_Add, ImageList_GetImageCount, ImageList_Destroy, ImageList_Create, InitCommonControls
comdlg32.dll
PrintDlgA, GetSaveFileNameA, GetOpenFileNameA
gdi32.dll
UnrealizeObject, TextOutA, StretchDIBits, StretchBlt, StartPage, StartDocA, SetWindowOrgEx, SetWinMetaFileBits, SetViewportOrgEx, SetTextColor, SetTextAlign, SetStretchBltMode, SetROP2, SetPixel, SetMapMode, SetEnhMetaFileBits, SetDIBColorTable, SetBrushOrgEx, SetBkMode, SetBkColor, SetAbortProc, SelectPalette, SelectObject, SelectClipRgn, SaveDC, RoundRect, RestoreDC, Rectangle, RectVisible, RealizePalette, PtInRegion, Polyline, Polygon, PlayEnhMetaFile, PatBlt, OffsetRgn, MoveToEx, MaskBlt, LineTo, LPtoDP, IntersectClipRect, GetWindowOrgEx, GetWinMetaFileBits, GetTextMetricsA, GetTextFaceA, GetTextExtentPointA, GetTextExtentPoint32W, GetTextExtentPoint32A, GetTextColor, GetTextAlign, GetSystemPaletteEntries, GetStockObject, GetRgnBox, GetPixel, GetPaletteEntries, GetObjectA, GetMapMode, GetEnhMetaFilePaletteEntries, GetEnhMetaFileHeader, GetEnhMetaFileBits, GetDeviceCaps, GetDIBits, GetDIBColorTable, GetDCOrgEx, GetCurrentPositionEx, GetCurrentObject, GetClipRgn, GetClipBox, GetCharABCWidthsW, GetCharABCWidthsA, GetBrushOrgEx, GetBkMode, GetBkColor, GetBitmapBits, GdiFlush, ExtTextOutW, ExtTextOutA, ExtCreateRegion, ExcludeClipRect, EndPage, EndDoc, Ellipse, DeleteObject, DeleteEnhMetaFile, DeleteDC, CreateSolidBrush, CreateRoundRectRgn, CreateRectRgnIndirect, CreateRectRgn, CreatePolygonRgn, CreatePenIndirect, CreatePen, CreatePatternBrush, CreatePalette, CreateICA, CreateHalftonePalette, CreateFontIndirectA, CreateFontA, CreateDIBitmap, CreateDIBSection, CreateDCA, CreateCompatibleDC, CreateCompatibleBitmap, CreateBrushIndirect, CreateBitmap, CopyEnhMetaFileA, CombineRgn, BitBlt, GetRandomRgn
imm32.dll
ImmSetCompositionWindow, ImmSetCompositionFontA, ImmGetCompositionStringW, ImmReleaseContext, ImmGetContext
kernel32.dll
GetACP, Sleep, VirtualFree, VirtualAlloc, GetTickCount, QueryPerformanceCounter, GetCurrentThreadId, InterlockedDecrement, InterlockedIncrement, VirtualQuery, WideCharToMultiByte, SetCurrentDirectoryA, MultiByteToWideChar, lstrlenA, lstrcpynA, LoadLibraryExA, GetThreadLocale, GetStartupInfoA, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetLastError, GetCurrentDirectoryA, GetCommandLineA, FreeLibrary, FindFirstFileA, FindClose, CreateDirectoryA, ExitProcess, ExitThread, CreateThread, CompareStringA, WriteFile, UnhandledExceptionFilter, SetFilePointer, SetEndOfFile, RtlUnwind, ReadFile, RaiseException, GetStdHandle, GetFileSize, GetFileType, CreateFileA, CloseHandle, TlsSetValue, TlsGetValue, LocalAlloc, DllMain, GetVersionExA, FindFirstChangeNotificationA, GetCommandLineW
mpr.dll
WNetOpenEnumW, WNetOpenEnumA, WNetGetUniversalNameW, WNetGetUniversalNameA, WNetEnumResourceW, WNetEnumResourceA
ole32.dll
CreateStreamOnHGlobal, ReleaseStgMedium, OleGetClipboard, OleSetClipboard, DoDragDrop, RevokeDragDrop, RegisterDragDrop, OleUninitialize, OleInitialize, CreateDataAdviseHolder, CoTaskMemFree, CoTaskMemAlloc, CLSIDFromProgID, ProgIDFromCLSID, CLSIDFromString, StringFromCLSID, CoCreateInstance, CoUninitialize, CoInitializeEx, CoInitialize, IsEqualGUID, CoCreateGuid
oleaut32.dll
SysFreeString, SysReAllocStringLen, SysAllocStringLen, CreateErrorInfo, GetErrorInfo, SetErrorInfo, GetActiveObject, SafeArrayGetElement, SafeArrayUnlock, SafeArrayLock, SafeArrayGetLBound, SafeArrayGetUBound, SafeArrayPtrOfIndex, SafeArrayPutElement, SafeArrayUnaccessData, SafeArrayAccessData, SafeArrayCreate, VariantChangeType, VariantCopyInd, VariantCopy, VariantClear, VariantInit
shell32.dll
Shell_NotifyIconA, ShellExecuteExW, ShellExecuteExA, ShellExecuteA, SHGetFileInfoA, ExtractIconExA, SHGetSpecialFolderPathA, SHGetSpecialFolderLocation, SHGetPathFromIDListW, SHGetPathFromIDListA, SHGetMalloc, SHGetDesktopFolder, SHGetDataFromIDListA, SHChangeNotify, SHBrowseForFolderW
shfolder.dll
SHGetFolderPathA
user32.dll
GetKeyboardType, DestroyWindow, LoadStringA, MessageBoxA, CharNextA, DllMain, AllowSetForegroundWindow
version.dll
VerQueryValueW, VerQueryValueA, GetFileVersionInfoSizeW, GetFileVersionInfoSizeA, GetFileVersionInfoW, GetFileVersionInfoA
wininet.dll
SetUrlCacheEntryGroup, InternetGetConnectedState, DeleteUrlCacheGroup, CreateUrlCacheGroup, InternetSetOptionA, InternetReadFile, InternetQueryOptionA, InternetOpenUrlA, InternetOpenA, InternetCloseHandle, HttpQueryInfoA, GetUrlCacheEntryInfoA, CreateUrlCacheEntryA, CommitUrlCacheEntryA
winmm.dll
timeGetTime, timeEndPeriod, timeBeginPeriod
winspool.drv
OpenPrinterA, EnumPrintersA, DocumentPropertiesA, ClosePrinter
wrid.dll
SetID
wsock32.dll
WSACleanup, WSAStartup, WSAGetLastError, gethostbyname, socket, setsockopt, sendto, send, select, recvfrom, recv, inet_addr, htons, connect, closesocket, bind

SpySweeperUI.exe

Spy Sweeper by Webroot Software (Signed)

Remove SpySweeperUI.exe
Version:   5,8,1,82
MD5:   120080d89108016199eaf1fe658e3340
SHA1:   5c4867005d01b62c40b30b5d35ce79ada93ec709

What is SpySweeperUI.exe?

Spy Sweeper Client Executable for Spy Sweeper is a software product that detects and removes spyware and viruses on personal computers that run Microsoft Windows. Spy Sweeper examines files on a computer's hard disk drive, as well as objects in memory, the Windows registry and cookies, and quarantines any suspicious objects it finds. Some broadband services, such as MSN Premium, also offer rebranded versions of Spy Sweeper as part of their subscription.

About SpySweeperUI.exe (from Webroot Software)

You need the best protection against viruses, spyware and malware. That's why we've improved the protection found in Spy Sweeper and created Webroot® SecureAnywhere™ AntiVirus, giving you online prote

DetailsDetails

File name:SpySweeperUI.exe
Publisher:Webroot Software, Inc.
Product name:Spy Sweeper
Description:Spy Sweeper Client Executable
Typical file path:C:\Program Files\webroot\webrootsecurity\spysweeperui.exe
Original name:SpySweeper.exe
File version:5,8,1,82
Product version:5, 8
Size:5.17 MB (5,425,008 bytes)
Certificate
Issued to:Webroot Software
Authority (CA):VeriSign
Effective date:Sunday, November 16, 2008
Expiration date:Sunday, December 27, 2009
Digital DNA
Entropy:6.656446
File packed:No
.NET CLR:No
More details

BehaviorsBehaviors

Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'SpySweeper' → "C:\Program Files\Webroot\WebrootSecurity\SpySweeperUI.exe" /startintray

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00038970%
0.028634%
Kernel CPU:0.00020332%
0.013761%
User CPU:0.00018638%
0.014873%
Kernel CPU time:5,132 ms/min
100,923,805ms/min
CPU cycles:488,369/sec
17,470,203/sec
Memory
Private memory:23.49 MB
21.59 MB
Private (maximum):13.34 MB
Private (minimum):2.61 MB
Non-paged memory:23.49 MB
21.59 MB
Virtual memory:169.59 MB
140.96 MB
Virtual memory (peak):193.95 MB
169.69 MB
Working set:4.49 MB
18.61 MB
Working set (peak):28.97 MB
37.95 MB
Page faults:379,220/min
2,039/min
I/O
I/O read transfer:3.85 KB/sec
1.02 MB/min
I/O read operations:9/sec
343/min
I/O write transfer:5 Bytes/sec
274.99 KB/min
I/O write operations:1/sec
227/min
I/O other transfer:651 Bytes/sec
448.09 KB/min
I/O other operations:108/sec
1,671/min
Resource allocations
Threads:5
12
Handles:333
600
GUI GDI count:262
103
GUI USER count:72
49

BehaviorsProcess properties

Tray notification:Yes
Integrety level:Medium
Platform:64-bit
Command line:"C:\Program Files\webroot\spy sweeper\spysweeperui.exe" /startintray
Owner:User

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows Vista Home Premium 33.33%
Windows XP Professional 33.33%
Microsoft Windows XP 33.33%

Distribution by countryDistribution by country

Japan installs about 50.00% of Spy Sweeper.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Sony 100.00%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE