Lenovo delivered with Superfish malware

[viking60]

Lenovo bought an adware program that should give the users a great experience. This software was called Superfish and it turns out that it can inject javascript and do other nasty stuff so people started to complain about it - a lot.

Lenovo realized that this was malware and stopped using it.

Superfish may have appeared on these models:

G Series: G410, G510, G710, G40-70, G50-70, G40-30, G50-30, G40-45, G50-45
U Series: U330P, U430P, U330Touch, U430Touch, U530Touch
Y Series: Y430P, Y40-70, Y50-70
Z Series: Z40-75, Z50-75, Z40-70, Z50-70
S Series: S310, S410, S40-70, S415, S415Touch, S20-30, S20-30Touch
Flex Series: Flex2 14D, Flex2 15D, Flex2 14, Flex2 15, Flex2 14(BTM), Flex2 15(BTM), Flex 10
MIIX Series: MIIX2-8, MIIX2-10, MIIX2-11
YOGA Series: YOGA2Pro-13, YOGA2-13, YOGA2-11BTM, YOGA2-11HSW
E Series: E10-30

Here is Lenovo's statement

To find out if you are infected you can press

This link
(check with all your browsers)

To remove the dangerous certificates that destroy https-connections:

1. Press Windows+r, and write «certmgr.msc.» then press enter.

2. Pick «Trusted Root Certification Authorities» and find «Certificates».

3. Find the Superfish-certificates, right-click and delete them.

4. Reboot and check that you are clean with the link above.

This takes care of the dangerous part.

If you want to remove annoying adds; have a look here

[dedanna1029]

Um, oops... Isn't the one I got a Flex? It just came in today... *checks

No it's a G70... whew!

[dedanna1029]

Sorry, that's Z70. So it seems the older models are the ones that got it.

[viking60]

Yes I think Lenovo reacted correctly in the statement above. They got the complaints and got rid of it immediately.

Good show!

You should be in the clear - are you happy with your new baby?

[dedanna1029]

I think I will be, once I'm able to get down to it. I've been so busy since it came in that I haven't been able to get to it yet (but I will here in an hour or so).