home

Superfish Inc.

Publisher Information

Superfish Inc. is a software publisher located in Grandville, Michigan in the United States*. The company is a primary distributor of unwanted software. Thre are 4 additional code signing certificates issued to this publisher.
Authority:
Thawte, Inc.

Valid from:
7/28/2013 8:00:00 PM

Valid to:
7/27/2014 7:59:59 PM

Subject:
CN=Superfish Inc., O=Superfish Inc., L=Grandville, S=Michigan, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
3e32431476cfb3e1f90955b25396a6f4

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Superfish, PUP.Service.Superfish, PUP.Installer.Superfish, PUP.Superfish.Installer (M), PUP.Superfis (M), PUP (M)
100.00%

Trend Micro House Call
Suspici.AC6CFC03, ADW_SUPERFISH, Suspicious_GEN.F47V0220, TROJ_GEN.R0CCC0OBM15, Suspicious_GEN.F47V0221, Suspicious_GEN.F47V0711
40.00%

MicroWorld eScan
Adware.Superfish.C, Adware.Superfish.B, Gen:Variant.Adware.Superfish.1, Adware.Agent.PHZ
36.00%

Bitdefender
Adware.Superfish.C, Adware.Superfish.B, Gen:Variant.Adware.Superfish.1, Adware.Agent.PHZ
36.00%

Lavasoft Ad-Aware
Adware.Superfish.C, Adware.Superfish.B, Gen:Variant.Adware.Superfish.1, Adware.Agent.PHZ
36.00%

Emsisoft Anti-Malware
Adware.Superfish, Gen:Variant.Adware.Superfish, Adware.Agent.PHZ
36.00%

G Data
Adware.Superfish, Gen:Variant.Adware.Superfish, Adware.Agent.PHZ
36.00%

AVG
Superfish.4d6
36.00%

F-Secure
Adware.Superfish.C, Adware.Superfish.B, Gen:Variant.Adware.Superfish.1, Adware.Agent.PHZ
32.00%

Malwarebytes
PUP.Optional.SuperFish
28.00%

1 / 68      (Adware)
visualdiscovery.exe (VisualDiscovery.exe by Superfish)  (090506c596d1dd52ddfa70c22217b259)

1 / 68      (Adware)
windowshopper-irontraffic.exe  (568ba4c5db14660f77940ca93c2f3439)

1 / 68      (Adware)
similarproducts-dzqvnws.exe  (541dc2b31ee76460a68f01d5b7a7f8de)

1 / 68      (Adware)
run.exe  (c75b62d7049b3b8f87ccb68bc8a6f350)

1 / 68      (Adware)
simipackage.exe  (edccb6fdc82a1cb14b911869469c4fba)

1 / 68      (Adware)
windowshopper.exe  (39bc2ade6a826122afcfcdc32d43eadc)

1 / 68      (Adware)
windowshopper-zlbvtcf.exe  (3a4a92d6c7ebde22936fccfc9b776c96)

1 / 68      (Adware)
visualdiscovery.exe (VisualDiscovery.exe by Superfish)  (63b249ab601b5f8496691ae2954c4677)

2 / 68      (Adware)
WSHelper.dll (WSHelper extention. by Superfish)  (981ffbd9d380ac3fa2b08d7aef40eb55)

10 / 68    (Adware)
VDWFP.sys (VDWFP.sys by Superfish)  (5b0e3e3a2c04dc476ac501073a6e2989)

1 / 68      (Adware)
superfish.dll (Superfish IE extention. by Superfish)  (ef3f6ee2f8271bfa688338c79fe52897)

3 / 68      (Adware)
uninstall.exe (Superfish Inc. VisualDiscovery by Superfish)  (bb3a8ac01600bb7879aee059bffa0e79)

19 / 68    (Adware)
visualdiscovery.exe (VisualDiscovery.exe by Superfish)  (090506c596d1dd52ddfa70c22217b259)

19 / 68    (Adware)
VDWFP.sys (VDWFP.sys by Superfish)  (354fd3e855e6b6a467d85b1fb0487843)

19 / 68    (Adware)
vdwfpinstaller.exe (VDWFPInstaller.exe by Superfish)  (792fc64f10a39329bd2f24ee03e9cefa)

12 / 68    (Adware)
uninstall.exe (Superfish Inc. VisualDiscovery by Superfish)  (4ee37c7116789dfbbb70571b39a5b212)

18 / 68    (Adware)
Run.exe (Run by Superfish)  (98abceea301a9f266f31ea4cabe30486)

15 / 68    (Adware)
VDWFP64.sys (VDWFP64.sys by Superfish)  (51b7f06bb9c6fa78bf1d1606d88834d5)

16 / 68    (Adware)
superfishcert.dll (SuperfishCert.dll by Superfish)  (e63c8fbe09eed4aa93f26d88f4ad0db6)

19 / 68    (Adware)
visualdiscovery.exe (VisualDiscovery.exe by Superfish)  (b110c2aee25e8f3cb50d5251478e4c5e)

1 / 68      (Adware)
windowshopper-zvkjtgg.exe  (64f6bfb74cad8b3581e89e3548c38c3c)

2 / 68      (Adware)
similarproducts.exe  (40d09031540b16901db10f1200e576da)

1 / 68      (Adware)
1392373196_windowshopper_mzqnzmz.exe  (ae1e01dce0db39c841dfb9790d4c2c5d)

1 / 68      (Adware)
similarproducts_zllesmi.exe  (d48d496a35708f03bbbac21a33e98cdb)

1 / 68      (Adware)
superfish.dll (Superfish IE extention. by Superfish)  (53a9e62ef9b3e68c41e62b586166dea6)

The certificates below are also signed by Superfish Inc..

6811B38827E880329B97481639E08413  (Jul 15, 2014 to Jul 26, 2016)

6B29F7EFEEDE5E4984EFB651DA4094  (Jul 22, 2012 to Jul 28, 2013)

39E3025E79A3F698B7244A8ABFC54145  (Aug 07, 2011 to Jul 27, 2012)

7F3067C3FBDB0049AAB62DE287B1ADFB  (Aug 01, 2010 to Jul 28, 2011)

* Note, the details and description above are based on the code signing digital signature issued to Superfish Inc. by Thawte, Inc. on July 28, 2013 with the serial number '3e32431476cfb3e1f90955b25396a6f4'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.