[aida] Change of direction for Aida 6.0
Gerardo Richarte
gera at corest.com
Mon Apr 27 05:33:11 CEST 2009
GeertC wrote:
> I just installed the 6.0 beta and when loading the Demo page I get the
> attached VirusScan Alert message (must be the corporate virus scanner as I
> am testing it at work during my lunch break). Needles to say, as a result
> the demo is not working as expected.
>
> http://www.nabble.com/file/p23249251/AIDAweb%2BAlert.png
>
uhm... Exploit-obscuredHtml doesn't look like a real detection, more
like a very cheap heuristic. There are a few compression algorithms for
javascript pages that are very legit, and are quite likely detected by
this antivirus as an infected file. I tried generating the scripts.js
file here, and what I see doesn't look like it has anything that could
be detected as obscuredHtml. (I have a one-click Aida/Scribo image)
Could you personally send me a copy of that file? if you want, zip it
and protect it with "AidaScribo" as password. I'm interesting in taking
a look, and I'll share what I find.
gera
PD: In my real life I work in a security company
More information about the Aida
mailing list