cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
SilverOrange
Paper Tape
Posts: 2
Registered: ‎02-19-2015
Location: United States
Views: 2,669
Message 71 of 160

Re: Lenovo Pre-instaling adware/spam - Superfish - powerd by VisualSearch

I was looking at Lenovo for a potential gaming/heavy duty processing laptop. This just knocked them out of the park forever. I can't believe in todays age a company would do something this reckless. What happened if your data got compromised because of this? Would they help you? Pretty sure not. 

 

I fixed it for them, by the way.

 

Removal Instructions for VisualDiscovery Superfish application

Visual Discovery / Superfish was previously included on some thousands of consumer notebook products shipped in a short window between October and December to help customers potentially discover interesting products while shopping get unwanted ads on their computer and compromise their security.  However, user feedback was not positive, and we responded quickly and decisively:

 

  • Superfish has completely disabled server side interactions (since January) on all Lenovo products so that the product is no longer active.  This disables Superfish for all products in market.
  • Lenovo stopped preloading the software in January.
  • We will not preload this software in the future.

 

We have thoroughly investigated this technology and do not find any evidence to substantiate security concerns. (We don’t want too.)  But we know that users reacted to this issue with concern, and so we have taken direct action to stop shipping any products with this software. (So we don’t get sued.)  We will continue to review what we do and how we do it in order to ensure we put our user needs, experience and priorities first. (This is the most nothing answer ever.)

 

To be clear, Superfish technology is purely based on contextual/image and not behavioral. It does not profile nor monitor user behavior.  It does not record user information. It just makes it unsecure. It does not know who the user is. (Does any program?) Users are not tracked nor re-targeted. (It’s not that type of program.)   Every session is independent. (ok…?) Users are given a choice whether or not to use the product. (Really? Preinstalled?)  The relationship with Superfish is not financially significant; our goal was to enhance the experience for users. (And make some money because, whatever, **bleep** you.)  We recognize that the software did not meet that goal and have acted quickly and decisively. 

 

We are providing support on our forums for any user with concerns.  Our goal is to find technologies that best serve users.  In this case, we have responded quickly to negative feedback, and taken decisive actions to ensure that we address these concerns.

 

If users still wish to take further action to unistall (uninstall*) the application, please follow these steps:

 

 

Uninstalling Superfish Visual Discovery

 

  1. Go to Control Panel > Uninstall a Program
  2. Select Visual Discovery > Uninstall

Superfish will be removed from Program Files and Program Data directories, files in user directory will stay intact for the privacy reason. Registry entry and root certificate will remain as well.  The Superfish service will stop working as soon as it is uninstalled via above process, and following reboot. We think.

 

Moderator note: Comment removed which did not comply with the Forum Rules

 

lenny99
Paper Tape
Posts: 8
Registered: ‎11-30-2014
Location: United States
Views: 2,662
Message 72 of 160

Re: Lenovo Pre-instaling adware/spam - Superfish - powerd by VisualSearch

Hello, I see the Superfish certificiate in my certificate manager under "trusted root certification" .  I tried to delete it but it's warning me that deleting it might prevent some windows components from working properly.  This is so wrong.

Flepi
Ctrl-Alt-Del
Posts: 17
Registered: ‎02-11-2015
Location: france
Views: 2,616
Message 73 of 160

Re: Lenovo Pre-instaling adware/spam - Superfish - powerd by VisualSearch

silver orange :

 

Except it doesn't work Smiley Wink ssl certificats are still there and laptop isn't safe...

 

And what about recovery !! on our laptop we have a partition for recovery WITH superfish !!

 

 

DragonPurr
Punch Card
Posts: 6
Registered: ‎02-17-2014
Location: United States
Views: 2,541
Message 74 of 160

Re: Lenovo Pre-instaling adware/spam - Superfish - powerd by VisualSearch

Not only was this an immensely terrible idea from the very start, but the people who developed this crappy software misspelled its name. Its real name is DUPERPHISH !  This is more like MALWARE, and not just adware, as it secretly, without the user's knowledge, hijacks HTTPS SSL/TLS connections where you thought that you were connecting to a secure Web site such as a bank, financial institution, or online store.

 

Considering that Lenovo's officials in Beijing have strong ties to the Chinese government, and in light of the NSA's own hardware-based spying, I *NEVER* use a Lenovo computer for any kind of financial transaction. Nor do I store any really personal or sensitive information on a Lenovo computer.  They are only good for gaming and some casual Web surfing, and that's it.  I am not sure that I entirely trust the NSA's motives either... but I trust them more than having China or Russia siphoning data from me.

trainer
Paper Tape
Posts: 8
Registered: ‎02-19-2015
Location: US
Views: 2,446
Message 75 of 160

Re: Lenovo Pre-instaling adware/spam - Superfish - powerd by VisualSearch

I believe there is a Lenovo utility to create a new recovery based on the currently installed setup.  (I'm not excusing them, just trying to find the quickest way to fix the probem without reinstalling).

 

If you want to reinstall Windows clean, you can, legally and legitimately.

 

Windows 7 and 8.1 ISOs are available online.  A little googling will lead you to legitimate downloads direct from Microsoft.

 

If you have a Windows 7 machine, the product key should be on the bottom of your machine.

 

If you have a Windows 8.1 machine, the product key is in your UEFI, and when you install from an ISO, Windows will automatically retrieve the key.  All that's required is to click "Activate".

 

Drivers are on lenovo.com.

 

If you need to retrieve a product key for Office or Windows 7, use ProduKey.

trainer
Paper Tape
Posts: 8
Registered: ‎02-19-2015
Location: US
Views: 2,422
Message 76 of 160

Re: Lenovo Pre-instaling adware/spam - Superfish - powerd by VisualSearch

DragonPurr:

 

Given that the NSA is putting spyware in hard drive firmware, nothing is really safe.  Remove SuperFish, remove the root certificate, and use your computer like a computer.

lenny99
Paper Tape
Posts: 8
Registered: ‎11-30-2014
Location: United States
Views: 2,415
Message 77 of 160

Re: Lenovo Pre-instaling adware/spam - Superfish - powerd by VisualSearch

FYI: I found this useful guide:

Tom's Guide has an article named "Lenovo's Security-Killing Adware: How to Get Rid of It"

DragonPurr
Punch Card
Posts: 6
Registered: ‎02-17-2014
Location: United States
Views: 2,334
Message 78 of 160

Re: Lenovo Pre-instaling adware/spam - Superfish - powerd by VisualSearch

trainer: I agree that both hardware and the Internet are becoming more compromised with each passing month. But as I mentioned, I would still think or hope that the NSA's motives are less financially, commercially, industrially, and militarily destructive to people living in the U.S. than all of the rampant cyber-spying that Russia and China (and now increasingly from the Middle East) are actively engaging in. China has their equivalent of the NSA stationed in Shanghai, and their cyber-spy and hacking groups are part of their People's Liberation Army military forces. Lenovo's executives in their Beijing corporate headquarters have very close ties with China's government and military. You can add 2+2 together from that. Even if you consider yourself an innocent bystander in the cyber-wars, you still have to pick a side sometimes, and you hope that the side that you pick has less malicious intents.

 

I am not saying that we should ban all products made in China; that is not economically prudent and there are tons of excellent products manufactured in China. But I have never trusted Lenovo computers for handling financial transactions or storing various personal/sensitive information. One of China's main goals for cyber-spying is industrial espionage and stealing information/data that would be advantageous to their military, commercial, and industrial sectors. If you work for a high-tech company, for a government or military/defense-related organization, for a bank or financial instititution, or for an oil/solar/mining/energy company, you should avoid using Lenovo computers for work-related purposes, because China loves to hack, phish, Trojan, and back-door their way into these areas to steal information that may be strategically useful to them.  I also try really hard to avoid any food products, pet food, vitamins, etc. that are made in China because a lot of that is compromised by quality issues.

reyfer
Fanfold Paper
Posts: 3
Registered: ‎02-19-2015
Location: Caracas, Venezuela
Views: 2,183
Message 79 of 160

Re: Lenovo Pre-instaling adware/spam - Superfish - powerd by VisualSearch

After you uninstall the bloody thing, just go to your certificates, delete the superfish one, and reboot

dvsleno
Blue Screen Again
Posts: 3
Registered: ‎05-29-2013
Location: United States
Views: 2,181
Message 80 of 160

Re: Lenovo Pre-instaling adware/spam - Superfish - powerd by VisualSearch

YEAH LENOVO!

 

I hope Superfish paid you more money than what you're going to lose on this crap you allow on your computers. Only money hungry (non-caring about thier customers) corporate monsters would allow bloated crap on thier systems for a few non-meaningful dollars. If anything, all the crap ware you put in your images do more HARM than good for you guys.

And we're back...

Move delayed but still coming

Learn More

Check out current deals!


Shop current deals

Top Kudoed Authors