Superfish is adware , typically associated with existing Chrome extensions . You should look at the list of extensions and check for a suspicious extension.
Find and remove Superfish
- Find the Chrome profile directory. The default location is listed in the user data directory at chromium.org .
- Go to the
Default\Extensions subdirectory of your user profile (if you use multiple Chrome profiles on your computer, there may be something else by default). - Search for "superfish" and you will quickly find the file containing this phrase.
- Take a look at the path (e.g.
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ jcheapnmfbmcccnbjhhkmleoiljgpmkl \js\sf-inject.js ) and copy this 32-character phrase. - Go to the extensions page in the Chrome browser (
chrome://extensions/ ). - Find the extension with the given identifier and delete it.
How to identify bad extensions
Now that you have removed it, you must take precautions not to get such extensions again. Fortunately, there are some indicators you can use to identify these extensions:
- They require "Access to your data on all sites . "
Most extensions do not need this permission, if you see it, you will be suspicious. - They are relatively popular (at least several thousand users).
- They are used for entertainment. In particular, if the extension "improves" Facebook, you can almost be sure that it contains some form of malware.
- Their description is more like an advertisement than a neutral description of functions.
If you know a little about the code, I recommend installing my Chrome extension source viewer to check the source code for the Chrome extensions before installing it.
Please note that the lack of advertising is not a guarantee for free advertising extensions. If an extension asks for a lot of permissions, and it belongs to a poor person, then he is highly likely to be compromised (I was offered 10 thousand Dollars a month for a popular extension with several thousand users. I resisted this offer, but I can imagine that many others do not do).
Distribution Authors
If you are contacted by Superfish (or any other advertising agency), decline the offer. Combining adware without user consent is prohibited in accordance with a single purpose policy .
The extension should have a narrow and understandable goal. Do not create an extension that requires users to accept packages of unrelated features , such as an email notifier and news headline aggregator. If the two parts of the functionality are clearly separated, they should be placed in two different extensions, and users should be able to install and uninstall them separately. For example, functionality that displays ratings and product reviews, as well as ads on web pages, should not be combined into one extension . In the same way, toolbars that provide a wide range of functionality or entry points to services are better delivered as separate extensions, so users can choose the services they need.
Rob w source share