Chrome Extension "Smooth Gestures" moves to the dark side

Since yesterday, I noticed long delays while loading pages with Chrome. Today I noticed a weird site amongst the list of requests for a page on

Why is my browser trying to access ""?

Some googling revealed that since August 25th, an update of the chrome extension "Smooth Gestures" added code that tracks all the pages you visit. The tricky lines is this one:

trackerimg.src =
"" +
window.location.href.split(/\/+/g)[1]+"&r=" + Math.random();

It shows that only the hostname is being sent, but it still is a privacy violation.

The extension has already been removed from the Chrome Appstore and the website is offline now, but you still want to it!

It is disappointing that, although Google lets extension developers update their code automatically without user interaction, there is no mechanism in place to notify users of extension that are removed from the Appstore for whatever reason.

function pl_track(){
if (window.location.protocol == "https:") return;
if (window ===
if (!document.getElementById('hummingtrack'))
Suspicious code snippet from the Smooth Gestures Chrome Extension


Thanks man, thanks a lot for

Thanks man, thanks a lot for telling about that spyware. I had seen on careersbooster about the many apps which are spying on us although I wouldn't have had considered Smooth Gestures being among those.