Due to the rise of new Crypto viruses Administrators are always on the lookout for new tips and tricks to prevent users from opening the odd dodgy email with a zip attachment that houses a crypto virus inside.
Some of the latest Cryptos have the .js/.je Javascript that uses the windows script host to launch the virus.
Why not just disable it, you can use either of these registry entries:
Per machine:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Script Host\Settings
Create new DWORD named Enabled value of “0”
Per User:
HKEY_LOCAL_User\SOFTWARE\Microsoft\Windows Script Host\Settings
Create new DWORD named Enabled value of “0”
When a user does accidentally opens it they will receive the following: