Author Topic: My friend's sandbox came up saying it found c:/windows/system32/TPSbattM.exe  (Read 3035 times)

0 Members and 1 Guest are viewing this topic.

Offline cheater87

  • Sr. Member
  • ****
  • Posts: 201
It says to put it in the sandbox which is recommended but her internet is down and she does not know if this is causing it or not. Her internet has been wonky for a while so avast has not been updated. Please respond soon ASAP. She has open in sandbox, open normal or cancel opening. What does cancel opening mean? Does it stay on the HDD and just not stay opened. The file origin says c:/windows/system32/TPSmain.exe
I have Opera, WOT, K9 Web Protection, Avast Free web shield and Behavior blocker only, Comodo Internet Security 10, and common sense. ^_^

Offline Dch48

  • Massive Poster
  • ****
  • Posts: 3151
TPSmain is a Toshiba power saver file and should be perfectly safe.
Avatar FX6327X desktop, FX-6300 CPU, RX 470 GPU, 8GB RAM, Windows 10 Home 64 bit
HP dv6-6140us laptop, A8-3500M APU, 8GB RAM, Windows 7 Home Premium 64 bit
RCA W101 v2 10" tablet, Intel Atom Bay Trail Z3735F processor, 2GB RAM, Windows 10 Home 32 bit

Offline cheater87

  • Sr. Member
  • ****
  • Posts: 201
Why is the sandbox reporting this file? I'm guessing she should hit open as normal then?
I have Opera, WOT, K9 Web Protection, Avast Free web shield and Behavior blocker only, Comodo Internet Security 10, and common sense. ^_^

Offline Dch48

  • Massive Poster
  • ****
  • Posts: 3151
Why is the sandbox reporting this file? I'm guessing she should hit open as normal then?
I would say yes and tell Avast to remember the answer so it doesn't alert again. The file is probably performing actions common to other things that are actually malicious so Avast is finding it suspicious.
Avatar FX6327X desktop, FX-6300 CPU, RX 470 GPU, 8GB RAM, Windows 10 Home 64 bit
HP dv6-6140us laptop, A8-3500M APU, 8GB RAM, Windows 7 Home Premium 64 bit
RCA W101 v2 10" tablet, Intel Atom Bay Trail Z3735F processor, 2GB RAM, Windows 10 Home 32 bit

Offline DavidR

  • Avast √úberevangelist
  • Certainly Bot
  • *****
  • Posts: 83960
  • No support PMs thanks
Why is the sandbox reporting this file? I'm guessing she should hit open as normal then?
Probably also because of its location (system32) and it probably isn't digitally signed.

If you/she are/is happy about its origin and legitimacy then Yes open it normally and have her check the Remember my decision for this program.
Windows 10 Home 2004 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 20.8.2432 (build 20.8.5684.602) UI-1.0.566/ WinPatrol+/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline cheater87

  • Sr. Member
  • ****
  • Posts: 201
Thanks we did as recommended.
I have Opera, WOT, K9 Web Protection, Avast Free web shield and Behavior blocker only, Comodo Internet Security 10, and common sense. ^_^