Not what you are looking for? Ask the experts!
Superfish in Cert8 db file
Someone posted something similar to this on the forums before, but it was locked with no answer and it was not solved.
I have a Lenovo Flex 2 running Windows 10.
This evening after running a scan my Norton Security popped up to tell me that it found: cert8.db contains threat Adware.Superfishremove and that I needed to get a repair tool from the Lenovo Website, according to the Norton website, which I did.
I scanned my laptop with this tool, and it was clear of any threat, without removing anything.
Manual removal instructions are here, on the Norton website:
And, on the Lenovo website:
I followed them, and there was nothing related to Superfish in my Add/Remove Programs, there was nothing labeled Superfish in Mozilla Firefox's Certificated Manager. I do not use Thunderbird.
I looked in Windows Certificates manager and there was nothing regarding Superfish in Trusted Roots Certificates (or any other certificates folder).
I went back to Norton Security to see where the file was that was flagged for Superfish and found that it resided in:
C:\Users\MyUserName\AppData\Roaming\Mozilla\Firefox\Profiles\zsuyyn3l.default in the file named Cert8, which is a database file. I opened the file with Notebook and could see the name Superfish, Inc. listed in the file several times, so I guess this is what it's picking up on.
This was detected by auto-protect, but I run a scan every day that my laptop is open and I've had this laptop for almost 2 years, so why is it just now picking this up if it originated sometime in 2015?
Can this file be deleted safely? The other person who posted a couple of years ago said that it just kept coming back.
Is this a false positive?