Jump to content

Why Kaspersky is injecting a script in my local react tests?


Go to solution Solved by Schulte,

Recommended Posts

Posted

Hello guys.

Recently I resume my developer job and noticed that Kaspersky injects a script in my HTML files when I use a local HTTP server to test them. Till now I only noticed that at localhost.

So, there are questions I want you help me to figure out:

  1. How do I switch this on/off? I want to have control over this feature , when it should run. Lots of mysterious errors are occurring and I’m pretty sure those are caused by this not requested/authorized injection.
  2. What does exactly this script do? So far I wasn’t able to unveil its function. It is not necessary explain the  nitty-gritties but an overview.

Bellow is a very dummy code that shows this unauthorized injection. 

<!-- ORIGINAL CODE -->

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<title>Document</title>
</head>
<body>
<div id="root"></div>
<script src="https://fb.me/react-0.14.3.js"></script>
<script src="https://fb.me/react-dom-0.14.3.js"></script>
<script src="https://unpkg.com/@babel/standalone/babel.min.js"></script>

<script type="text-babel">
function App(){
return <h1>Título</h1>
}
ReactDOM.render(<App/>, document.getElementById('root'));
</script>
</html>


<!-- CHANGED CODE -->
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<title>Document</title>
<script type="text/javascript" src="http://gc.kis.v2.scr.kaspersky-labs.com/FD126C42-EBFA-4E12-B309-BB3FDD723AC1/main.js?attr=CFygoTtd_0dj7vOjo78WcfU5roqNe253uQK56ySIW6HjZF9S422vqeSQDnDYV0Fi" charset="UTF-8"></script><link rel="stylesheet" crossorigin="anonymous" href="http://gc.kis.v2.scr.kaspersky-labs.com/E3E8934C-235A-4B0E-825A-35A08381A191/abn/main.css?attr=aHR0cDovL2xvY2FsaG9zdDo4MDgwLw"/></head>
<body>
<div id="root"></div>
<script src="https://fb.me/react-0.14.3.js"></script>
<script src="https://fb.me/react-dom-0.14.3.js"></script>
<script src="https://unpkg.com/@babel/standalone/babel.min.js"></script>

<script type="text-babel">
function App(){
return <h1>Título</h1>
}
ReactDOM.render(<App/>, document.getElementById('root'));
</script>
</html>

 

  • Solution
Posted

Hello @renatospaka, Welcome.

This script enables KIS to interact with the browser extension.

Go to ‘Settings->Network Settings’ and disable ‘Inject script into net traffic...’

Posted

Also, this is a this is a question answered many times in the community:

 

Flood and Flood's wife
Posted

Hello @harlan4096

Thanks for posting the information from the original Kaspersky Community, since shutdown, an extraordinary resource gone!

  • Maybe a Kaspersky admin could make a small pinned topic with the  information? 

Thank you🙏

Flood🐳 +🐋

Guest
This topic is now closed to further replies.


×
×
  • Create New...