dslreports logo
Search similar:


uniqs
276

sk1939
Premium Member
join:2010-10-23
Silver Spring, MD
kudos:10
·blauworld
·Verizon FiOS
·T-Mobile US
Polycom VVX500
Greenwave FiOS-G1100
(Software) Sophos UTM Home Edition

sk1939

Premium Member

McAV and Adware

Apparently even some AV companies are getting in on the game to embed adware and associated junk.

»duo.com/blog/bring-your- ··· security

DonoftheDead
Old diver
Premium Member
join:2004-07-12
Clinton, WA
·Xfinity

DonoftheDead

Premium Member

Thanks for that! Just d/l'ed the PDF for securing new boxen/laptops. I already know most of it, but I'm sure there's something I may have missed. It's all getting too ridiculous. Now an AV program is getting in on ad crap. I call bullsh!t. I can defend myself against all this stuff, but the average user has no chance. They know this and are taking advantage of it to the max.
--
Please put the manhole covers back when you're done fishing.
Itguy2016
join:2015-09-01
Longwood, FL

Itguy2016 to sk1939

Member

to sk1939
First rule - any new laptop you purchase perform a full format of it.

I have 6 Lenovo Thinkpad Twists (one for each family member). I consider these to be one of the best laptops ever made with a huge caveat.. As they come installed by Lenovo the OS is totally compromised and full of rubbish. So the first thing I do is format them and they become remarkably good laptops.

The only except is Dell Signature Series laptops - signature series have no bloat on them at all.

Black Box
join:2002-12-21

Black Box

Member

said by Itguy2016:

I have 6 Lenovo Thinkpad Twists (one for each family member). I consider these to be one of the best laptops ever made with a huge caveat.. As they come installed by Lenovo the OS is totally compromised and full of rubbish. So the first thing I do is format them and they become remarkably good laptops.

Do not forget the spyware dropper baked into the factory BIOS. No matter what the user did, the Windows install was reinfected after each reboot. »Lenovo collects usage data on ThinkPad, ThinkCentre and ThinkStation PCs

This kind of crap permanently and irrevocably disqualifies a brand in my books.
--
Keep It Safe, Stupid!
Yes, I CanChat. Can You?
Itguy2016
join:2015-09-01
Longwood, FL

Itguy2016

Member

said by Black Box:

said by Itguy2016:

I have 6 Lenovo Thinkpad Twists (one for each family member). I consider these to be one of the best laptops ever made with a huge caveat.. As they come installed by Lenovo the OS is totally compromised and full of rubbish. So the first thing I do is format them and they become remarkably good laptops.

Do not forget the spyware dropper baked into the factory BIOS. No matter what the user did, the Windows install was reinfected after each reboot. »Lenovo collects usage data on ThinkPad, ThinkCentre and ThinkStation PCs

This kind of crap permanently and irrevocably disqualifies a brand in my books.

That's why I put the caveat however this problem is largely overstated and irrelevant in my case. If you dump their OS, and set the bios on Legacy+UEFI boot, then the problem is solved. This nonsense they used required a task event to reinstall itself if it was removed. But since the machine was totally wiped - the problem goes away. Thinkpad Twists haven't been made for a couple of years. I tend to purchase the i5 variant with 25GB SSD(boot) and 500GB HDD(data), pull out the crappy 5400RPM HDD and drop in my own SSD and fresh-install windows after turning on Legacy+UEFI. Problem solved, you have an amazingly fast productivity hybrid notebook/tablet for around $250. That's why I have 6 of them.

However, realize that there has never been any evidence this bios tampering happened on the 'Thinkpad' line. In fact the company I work for owns hundreds of them and we've had engineers digging into them for a couple years now not finding any issue.

Steve Gibson read a note from a listener saying that while Lenovo was corrupting their consumer PCs, they have kept their hands off the ThinkPad line.

Black Box
join:2002-12-21

Black Box

Member

said by Itguy2016:

This nonsense they used required a task event to reinstall itself if it was removed. But since the machine was totally wiped - the problem goes away.

I don' think you get how the dropper worked. When booting, the BIOS verified that the autochk.exe file is the infected one. If not, it replaced it with an infected version and only then gave control to the bootloader. So fresh a OS form clean CD would be infected at the first boot after the install.
--
Keep It Safe, Stupid!
Yes, I CanChat. Can You?