Lenovo Superfish Certificates

Viruses and worms
1

I have just read about the pre-installed Adware on Lenovo laptops. I got one as a Christmas present last year and have discovered that Superfish Certificates on it. Can you please advise how I remove this?

I refer you to my previous topic https://forum.avast.com/index.php?topic=165709.0 where I was instructed to run various scans to remove istart123.com. Will I have to go through all of that again?

Many thanks.

2
Will I have to go through all of that again?
We need fresh FRST logs
3

This is not an answer to the question, and since I am new here I did not want to start another thread. My question is – how do I know if I have Superfish on my Lenovo All-In-One desktop computer ?
Thank you to all who answer.

4

Lenovo have issued Superfish Uninstall Instructions, which sorted the problem for me, no thanks to Avast. >:(

http://support.lenovo.com/us/en/product_security/superfish_uninstall

5

As of yet no AV detects this as it is a signed programme with a Lenovo certificate
Malwarebytes added the detection just two days ago after this broke http://www.geekstogo.com/forum/topic/347493-removal-instructions-for-superfish/

6

Dear potential victims of this Komodia SDK ad-scam. There is an online test out there.

You can easily test against Superfish CA or the minor Komodia Vulnerability: [i]https://filippo.io/Badfish/[/i]
People that have the following software may have their Inernet connections intercepted: Keep My Family Secure, Easy hide IP Classic, Lavasoft Ad-aware Web Companion, Staffcop version 5.6 & 5.8, Kurupira Webfilter and Qustodio’s parental control software.Also Hide-my-ip is being mentioned in this respect. Do the test via the link I provided (Thanks to Karl Koscher, Paul Pearce, Marc Rogers and all the others that discovered and divulged this).
My results all negative in all the browsers I use: https://www.uploady.com/download/j3A6Y9k2FOc/iwsGATLJRJ2nzr2X

polonus

P.S. Thanks Pondus for bringing me here :wink:

7

Search results from the time that this was not the big issue it seems to be right now: http://www.file.net/process/superfishieaddon.dll.html
Everybody is pointing at each other now, like little toddlers in Kindergarten.
Who’s responsible? I am not, I am not ;D
Can we now safely dump Lavasoft Ad-aware Web Companion software as well?
Weak security certificates growing into an ever bigger problem.

Read: http://www.pcworld.com/article/2141881/beat-it-bloatware-how-to-clean-the-crap-off-your-pc.html

polonus

P.S. As Superfish unfolds this cannot be reached: http://www.komodia.com/products/komodias-ssl-decoderdigestor

pol

8

Latest update -komodia - going there:

Site is offline due to DDOS with the recent media attention.

Some people say it’s not DDOS but a high volume of visitors, at the logs it showed thousand of connections from repeating IPs.

You can see a copy of the site at the Internet Archive.

Contact point is: Barak Weichselbaum (barak@komodia.com)

polonus

9

Well this is going to have the reverse effect it will bit them in the backside and wallet - rather than being on a nice little earner pushing out targeted ads - people are going to be very wary of buying any Lenovo products.

I know I will be very wary and I’m looking for a new laptop (to replace my win7 netbook) and Lenovo was a brand high up the list, but not any longer.

Trust has to be earned, often over years and can be thrown away in one instance like this.

10

Hi DavidR,

As I now have established this developing scandal goes much further than some self designed certs from that Israeli firm used for adware pushing, I fear we are only seeing the tip of the proverbial iceberg. And to put the blame utterly and completely on these poor Israeli Komodia coders, isn’t fair either.
They just developed rather advanced technology for image comparison that they used in this way. I am afraid they are not the only developers and coders that fell for this easy money scheme. The “Interwebs Wild West” is urgently in need of some sheriff to re-establish law and order and not another butcher that checks his own beef.

polonus

11

Yes,

But the advantage of Levono laptops ( still ) is that you can easy remove/replace parts you ( don’t ) need/trust ! That is why Security Specialists, Hackers and Activists like them a lot :slight_smile:

Greetz, Red.

12

Sure. I’m out. I remember the old times we have only to be worried about pre-installed crapware. Now he have to be worried also for the hardware. It’s becoming difficult to trust in a Chinese company nowadays.
Recently, Motorola was acquired and soon stop to publish their kernel code before releasing the final product (Android updates). Which are in these kernels?

13

Which kind of defeats the point of buying one in the first place, for most that is good value for money. If you are going to swap out the HDD/SDD because of the adware/malware on it or wiping it completely and starting from scratch with a clean install of windows, etc. etc.

This is both time consuming and adding more expense, it just isn’t worth it when you add the hassle factor to owning a Lenovo product.

14

You can’t trust anyone ! But with Levono you have at least a choice who or what you trust, or not :wink:

Greetz, Red.

15

I am talking about Security Specialists, Hackers and Activists. People who could be targets of Gouvernements, Secret Services etc. And I can assure you, those people don’t use Windows :wink:

Greetz, Red.

16

Hi Rednose,

Are you gonna send them a Lenovo present?

polonus