FULL Kaspersky Kis Kav 10 11 2012 New Keys[04.11.2011]
The other part of the vbs file is even more interesting. It begins by loading the identity of the target app and its version into a variable and then firing off the GetKisApiCommand() method. As weve seen earlier, this function populates a Command variable with the commandUrl which was given when the frame was created. In the example shown in the earlier screenshot, the value of the Command variable is just https://www.kaspersky.com/protect/api/list-infected-sites. After the API call, Kaspersky appends a series of PHP commands to any HTTP responses, forcing the site to redirect them back to Kaspersky and ask them to deal with the request for real.
FULL Kaspersky Kis Kav 10 11 2012 New Keys[04.11.2011]
When I noticed that Kaspersky were the only provider offering a decryption bundle capable of securing sensitive information, I decided that I needed to take the next step. Since there was no way that I could guarantee the sanctity of my hack, I created a proof-of-concept script that was capable of extracting the secret from any security software that was web enabled. Of course, Kaspersky developers could have given up and redesigned their own application, which makes their effort to obfuscate their code even less acceptable to the community. In order to adequately convey the results of this research, I decided to just copy the entire application and run it myself.
The Kaspersky Anti-Hacker blocking system has been improved to prevent hackers from looking into your home network and prevent them to steal your data. The anti-malware ability has also been improved to keep your system protected even when the network is disconnected from the internet.