Re: suspicious scripting activity

From: pam (anonymous_at_discussions.microsoft.com)
Date: 08/06/04 

Date: Thu, 5 Aug 2004 15:24:38 -0700

Thanks Doug. re: McAfee warning me which app is doing it,
would the following contain a clue for me? I quote: "The
file C:\programfiles\support.com\client\bin\tgcmd.exe
contains suspicious scripting activity and has been
stopped. The script is attempting to call the Run method
within the IWshShell3 object." end quote. ??? thanks a
trillion for your help
>-----Original Message-----
>Some utilities within Windows XP use HTA (Hypertext
Application) files to do their job. These apps can
contain VB or Java script that accesses the file system or
Registry, and McAfee may complain about it. It should
warn you about which application is doing it. Only you
can make the decision as to allow it to continue, or not.
>
>--
>Doug Knox, MS-MVP Windows Media Center\Windows Powered
Smart Display
>Win 95/98/Me/XP Tweaks and Fixes
>http://www.dougknox.com
>--------------------------------
>Per user Group Policy Restrictions for XP Home and XP Pro
>http://www.dougknox.com/xp/utils/xp_securityconsole.htm
>--------------------------------
>Please reply only to the newsgroup so all may benefit.
>Unsolicited e-mail is not answered.
>
>"pam" <anonymous@discussions.microsoft.com> wrote in
message news:0b5a01c47afe$8aa22320$a401280a@phx.gbl...
>> Almost daily get McAfee message re: suspicious
scripting
>> activity. Would Microsoft monitoring of system for
>> updates etc ever cause such a warning? I don't know
how
>> to treat these warnings. thankyou!!
>.
>

Relevant Pages

  • Re: file scripting object
    ... I wouldn't want my app to be a known crasher either, ... notify the user and tell him to get whoever broke scripting to fix it again. ... or even putting scrrun.dll in the installer. ... I have used the file scripting object in my application. ...
    (microsoft.public.fox.programmer.exchange)
  • Re: VFP table lookup on a PDA
    ... I think your scripting approach will work well. ... think of straight web client and server side scripting before, ... >> PDAs will be Windows Mobile based. ... >> Is anyone running a similar app? ...
    (microsoft.public.fox.programmer.exchange)
  • Re: suspicious scripting activity
    ... "support.com" is a valid application that some PC manufacturer's and other software vendors. ... McAfee warning me which app is doing it, ... > contains suspicious scripting activity and has been ... and McAfee may complain about it. ...
    (microsoft.public.windowsxp.security_admin)
  • Re: [RFC] Should we create a raw input interface for IRs ? - Was: Re: [PATCH 1/3 v2] lirc core d
    ... Scripting always needs to be done in user space. ... Mapped single keycodes are presented on these devices for each ... You could make a "remote" that ... If you don't like it write a GUI app for ...
    (Linux-Kernel)
  • Re: [RFC] Should we create a raw input interface for IRs ? - Was: Re: [PATCH 1/3 v2] lirc core d
    ... Scripting always needs to be done in user space. ... Mapped single keycodes are presented on these devices for each ... You could make a "remote" that ... If you don't like it write a GUI app for ...
    (Linux-Kernel)