suspicious scripting activity

pam · Aug 5, 2004

Almost daily get McAfee message re: suspicious scripting
activity. Would Microsoft monitoring of system for
updates etc ever cause such a warning? I don't know how
to treat these warnings. thankyou!!

Doug Knox MS-MVP · Aug 5, 2004

Some utilities within Windows XP use HTA (Hypertext Application) files to do their job. These apps can contain VB or Java script that accesses the file system or Registry, and McAfee may complain about it. It should warn you about which application is doing it. Only you can make the decision as to allow it to continue, or not.

pam · Aug 5, 2004

Thanks Doug. re: McAfee warning me which app is doing it,
would the following contain a clue for me? I quote: "The
file C:\programfiles\support.com\client\bin\tgcmd.exe
contains suspicious scripting activity and has been
stopped. The script is attempting to call the Run method
within the IWshShell3 object." end quote. ??? thanks a
trillion for your help

-----Original Message-----
Some utilities within Windows XP use HTA (Hypertext

Application) files to do their job. These apps can
contain VB or Java script that accesses the file system or
Registry, and McAfee may complain about it. It should
warn you about which application is doing it. Only you
can make the decision as to allow it to continue, or not.

--
Doug Knox, MS-MVP Windows Media Center\Windows Powered Smart Display
Win 95/98/Me/XP Tweaks and Fixes
http://www.dougknox.com
--------------------------------
Per user Group Policy Restrictions for XP Home and XP Pro
http://www.dougknox.com/xp/utils/xp_securityconsole.htm
--------------------------------
Please reply only to the newsgroup so all may benefit.
Unsolicited e-mail is not answered.

"pam" <[email protected]> wrote in

message news:[email protected]...

Doug Knox MS-MVP · Aug 6, 2004

Pam,

This would indeed be one example. "support.com" is a valid application that some PC manufacturer's and other software vendors.

http://www.winpatrol.com/db/freesample/tgcmd.html gives a brief explanation. Some consider it spyware, some don't.

This link will give you lots of matching hits on a Google Search. Only you can decide whether to remove the software or not.

http://www.google.com/search?hl=en&ie=UTF-8&q="support.com"+tioga+"tgcmd.exe"

mshta.exe suspicious scripting activity	1	Oct 5, 2003
McAfee suspicious script warning when computer starts up	1	Sep 6, 2003
Script Error from Control Panel > User Accounts	2	Jan 27, 2006
Suspicious script in Help and Support	3	Jun 12, 2005
suspicious scripting activity	1	Jun 20, 2006
mshta.exe suspicious script - logon problem	2	Jan 25, 2004
Anyone Else Facing Public Folder Migration Errors in Exchange?	0	Sep 1, 2025
Suspicious messages	4	Jul 28, 2009

suspicious scripting activity

pam

Doug Knox MS-MVP

pam

Doug Knox MS-MVP

Ask a Question

Similar Threads