Cyberhawk detects keylogger during Sandboxie 2.86 installati

[ab]

I was installing the Sandboxie 2.86 on my XP SP2 os.
The Cyberhawk ( a antiintrussion program) detected a keylogger in the Sandboxie installer and blocked it.
I had downloaded the installer from the official site of Sandboxie.

What should i do now?

Please help!

[Paul_K]

It's doubtful that your download actually contains a key logger if you got the download from the Sandboxie Download link at:
http://www.sandboxie.com/index.php?DownloadSandboxie

Do you have any experience with using the md5 sum verification procedure, in which the downloaded file is analyzed by a program that runs on your computer, and that program generates an md5 number - which can then be compared to the md5 number that is provided by the download site? It's a way of checking if you got a valid file downloaded.

The above Download page shows an "md5/sha1" link to the right of each of the 2 download files available. If you click on either of those links you will see the md5 numbers provided by Sandboxie.com, for different versions of the Sandboxie program downloads.
The procedure is for you to generate your own md5 numbers from the Sandboxie file you downloaded, and then compare your numbers with the md5 numbers shown on that page.

You can Google a search for md5sum, but you will mostly find a program that works in a black, DOS style box. That creates problems of it's own, since using it is somewhat awkward. I also have a program called md5summer. My version is kind of old, so I don't know if it's been updated recently. The version I have is meant primarily for generating md5 sums for a whole folder of items, although it will generate an md5 number for only one file.

Do an Internet search and perhaps you will find a program, to generate md5 sums, that you will be happy with - and then use it to check the md5 numbers for the Sandboxie file you downloaded, against the md5 numbers provided on the Sandboxie page.
Maybe someone else will suggest a program for you to use...

[Hank52]

This is the one I use. "Hash File Verifier", from KarenWare. Just point it to the File you want to Verify, and Generate the Checksum. (MD5, SHA-1, SHA-224, etc.). Very easy to use.

http://www.karenware.com/powertools/pthasher.asp

Oh Yeh, It's Freeware and no Spyware / Malware Included.

Ken:

[tzuk]

I want to point out the (perhaps most likely) possibility that ab did download the actual version 2.86 installer, and nevertheless Cyberhawk reports a key logger in it. In that case, Cyberhawk is reporting a false positive.

But just to make it clear:

Sandboxie does not contain any key loggers and is not spying on you.

[ab]

Thanks for the help! (':D')

I checked the md5 checksum of the installer. It matched with with the number given on the site. (97bb09bcb0d1f7b6c32ed955b35a75e3)

Also i found that the Cyberhawk reported a false positive as I did'n reported anything the second time I ran the setup file.

{ Using md5 was no problem as I have some experience with some linux boxes and command lines ('')
}

[tururu]

Hello, I had a similar problem solved quickly by Tzuk:

http://sandboxie.com/phpbb/viewtopic.php?t=1466[/url]

It seems that SBIE intercepts and takes control over processes and some security tools report this as an intrusion; but this is legitimate. That's how this beautiful program works... I guess.