Sandboxie Plus (Sbie fork)

OK @DavidXanatos , I re-uploaded the installer to virustotal because it's the only way I know to see what the SHA256 Check Sums are.

Excellent, I think that all matches OK, but what is the Downloadly_ir_exe thing on the file name? That isn't present on the name of the installer. Also where it says Community - that is where the weird comment about the file showing on malshare.com is, if you need to check that out.


So if my SHA256 Check Sums is matching OK, then I can rest assured the file is clean and not been tampered with? Thanks so much for checking this out. Hopeefully someone else with Windows Defender can provide more details about those Temp files if you need them.

 

VT results are not allowed here. If you have a special problem with your antivirus you should ask it that special. Nevertheless, this thread contains answers to exclude sandboxie or its driver sbiedrv.sys.

Obfuscation does not change anything when the target file is written, any antivirus check files on writing. In fact, it has a dubious touch you should not do it.

You mentioned so often that this driver has a questionable certificate. And you are working on this special issue.

 

the file hash the hash summ 52ae02dbc7b6f1569adc041daaf5aff27beb3774d82a8f4bb6e0df82494c5f56 and is legit
Someone added somethign to the filename

The point of it is to have the file on the system and multiple attempts to bypass the antivirus, of-cause it will detect it but than it may delete it without asking and with the obfuscated original the tool can just retry it hoping you have fixed the issue.

Without the obfuscated original you would need to re run the installer every time your Antivirus fool breaks something.

 

Good point, but unfortunately it doesn't change the result. (at this moment) The installation is broken, either on download, execution (extraction) or installing files. To prevent scanning on download you have to secure content with a password. No scanner can look inside. But that is away from nsis options, I tried in 2012 similar with 4fc77d02a5fdcc2f1588c97970992cfa and abandoned it due this problem. ofc the package was secure but there exists installers where content is not scanable, and also not extractable.

 

I'm porting the old support pages to markup format and putting it up on my webpage: https://xanasoft.com/sandboxie/allpages/
30% is done not count the all the messages.

 

nice work, but a lot to do.

 

Malwarebytes already (since ~Sept 19) whitelisted SbieDrv.sys.
https://forums.malwarebytes.com/topic/264089-malwareai3719570885-reported-with-sandboxie/

 

hi
may I know why there is no more the zip portable version ?
there are all exe
thanks

 

because the plus installer has a "extract only" option, so the zip is redundant, plus upload to github is painstakingly slow.

 

David,

Thank you for your hard work.
I'm one of those fans that totally understand the value of Sandboxie.
Maybe, it could be a good idea to have a yearly Sandboxie usage fee, even for a minuscule amount of $10/year?
With so many Sandboxie users, it would be possible for you to cover all those set-up/running charges, and something could be left for your work.

 

The work is done except for all the pages with the SBIE messages,
with the right conversion tool its just a bit of hand massaging the few broken parts

please go through this index: https://xanasoft.com/sandboxie/allpages/
and tell ne whats still broken or whats obsolete i.e. all the licensing stuff...


Also I really should fill up my homepage with more content
Any Volunteers to help me with it?

 

Hello, I just installed your latest release sandboxie-plus 5.43.5 x64, everything looks good. Great work, i only have one concern and i don't know if it's my pc or it is the inteded way how this release should work.
When i start a process in a sandbox and i terminate it, this process stay on the control window with the status 'terminated'. If this is only a visual behaviour it doesn't matter much, but i'm wondering if, when i use the sandboxie api to list all processes pids, will i get the terminated processes too or only the ones running ? is it possible somehow to remove the terminated processes ?

 

@DavidXanatos Please PM Me.

 

https://user-images.githubusercontent.com/6278976/95850272-2e2bdc00-0d16-11eb-885c-2b08aab84596.png

 

Everyone should switch to Firefox anyway.

 

eh, no thanks

 

It does not seam to be possible you may need to enable something in your profile,
you can send me an email on my gmail.com address: xanatosdavid[at]....

 

Wonder if this will start causing new problems for SB Plus as of today's Windows update...

Windows 10 now blocks some third-party drivers from installing
https://www.bleepingcomputer.com/ne...cks-some-third-party-drivers-from-installing/

 

meh.... worst case I change the driver name or soemthing....

 

After seeing your comment Special I thought I'd give it a go, as so far I've only installed it on one machine. Happy to report I've just successfully installed Sandboxie 5.43.6 (64bit) on my Windows 1909 machine, over the top of 5.33.6. And... this time Windows Defender didn't squawk once! So looks like MS have added an exclusion to Windows Defender for SbieDrv.sys, and whatever it tripped up on that went to my Temp folder on my other machine.

Once I've finished what I'm doing I'll update my other machine which runs 2004. I'll post back if I run into issues.

 

Hello,

as chrome 86.x on sandboxie 5.33.2 (@ WIn 10 home) didn not work anymore (no acces to any website - allwas "crashed") I tried Sandboxie-Plus-x64-v0.4.2.exe from https://github.com/sandboxie-plus/Sandboxie/releases.
What I painfully miss is "quick recovery", that sandboxie 5.33.2 allways offered me, every time I downloaded a file. I could then decide for myself whether I wanted to keep it or not, what I and my kids often eally need (e.g. pictures for homework etc).

How can I get sandboxie 5.33.2 to work for Chrome 86..... again or
How can I get sandboxie-Plus-x64-v0.4.2. to offer "quick recovery"?

Thanks,
Tom

 

seems, I meen "instant recovery" - that dialogue that come everytime I downloaded a file....

 

@sbieuser due you mean the Immediate Recovery box that pops up at the end of a file download? If you do, it's still there for me on Chromium Edge and Sandboxie 5.43.6 (64bit). It's working well. What version of Sandboxie did you download?

EDIT - oops, just re-read your post and saw you downloaded the Sandboxie Plus version, not the classic version. Sorry, I'm not sure about that one...

 

@DavidXanatos Hello, i will just reupload my question seems it got lost between the other posts.
I just installed your latest release sandboxie-plus 5.43.5 x64, everything looks good. Great work, i only have one concern and i don't know if it's my pc or it is the inteded way how this release should work.
When i start a process in a sandbox and i terminate it, this process stay on the control window with the status 'terminated'. If this is only a visual behaviour it doesn't matter much, but i'm wondering if, when i use the sandboxie api to list all processes pids, will i get the terminated processes too or only the ones running ? is it possible somehow to remove the terminated processes ?