Additional software on computers sold with pre-installed Windows is the bane of many users. It would seem that the remedy for this blemish on the performance of Clean operating system installation, as it turns out, at Lenovo additional software automatically installing, even after such surgery.
crapware is unnecessary software bundled with computers sold with pre-installed Windows. Some of these applications not only takes up unnecessary disk space, but sometimes works in the background using computer resources. In one of our guides we wrote about how to get rid of such unwanted software (crapware), but some users still decides to perform a clean installation of Windows with media other than those provided by the hardware manufacturer, hoping to erase the hard drives or solid state media prevent installation of unwanted software. And so it is in theory, but not in the case of some computers sold by Lenovo. The Chinese giant has used cleverly designed tool for equipment manufacturers Windows Platform Binary Table (WPBT) by Microsoft designed for the possibility of adding the software UEFI eg. The application automatically installing operating systems software theft, even after a complete cleaning content HDD or SSD. This solution is designed to prevent the use of a computer, which has been blocked as a result of theft or loss. However, Lenovo has demonstrated creative and used this opportunity in a slightly different way.
One of the forum members Ars Technica website recently described their findings after performing clean Windows installation on one of the laptops from Lenovo. Despite the use of OEM of that DVD (containing only the operating system from Redmond), after the first time you connect your computer to the Internet appeared on the additional application normally served by a Chinese manufacturer – OneKey Optimizer. Quick investigation allowed us to identify the causes of such behavior laptop. Lenovo used as described earlier WPBT tool for substitution system file Autochk.exe is located in the C: Windows system32, which was made possible by zaszytemu in UEFI software. During the first run the new operating system, Microsoft’s not coming from the Autochk.exe file created two new services included in the Lenovo Service Engine (LSE) – LenovoUpdate.exe and LenovoCheck.exe that extracted the Internet and automatically and even install software without the user’s consent transmit to the server manufacturer’s containing data associated with a particular person Lenovo information to help you understand how visitors interact with their products .
This software behavior served by the Chinese producer is not only undesirable but also dangerous for the safety of users. Earlier this year detected a serious vulnerability in the mechanism and service WPBT LSE, allowing you to infect your computer with malware through swapping servers from which additional applications are downloaded. As a result of this discovery Microsoft developed for manufacturers of computer hardware new guidelines on the use of WPBT, and Lenovo in June resigned from the service LSE. All sold since then, the Chinese computer manufacturer no longer contain the UEFI additional software. In addition, on July 31 on the website of the Lenovo technical support were published two newsletters containing information about the UEFI firmware upgrade to use the LSE desktops and laptops.
And it would appear that everything is fine, if not for the fact that these newsletters were published quietly, and vulnerable to attacks Outside users were not informed about the need to update UEFI in order to remove the critical gaps in their computers. This is the second serious setback as Lenovo in recent months. The first was connected with that comes with computers preinstalled with the Windows operating system application Superfish. The list of sensitive use gaps in WPBT and LSE computers can be found below, and if your device on it lighter, we encourage you to as soon as possible off the LSE, software updates, BIOS / UEFI and take advantage of a utility for stripping additional files from the operating system.
Laptops:
- Flex 2 Pro 15 (Broadwell), Flex 2 Pro 15 (Haswell), Flex 3 1120 Flex 3 1470/1570, G40-80 / G50-80 / G50-80 Touch S41-70 / U41-70, S435 / M40-35, V3000, Y40-80, Yoga 3 11, Yoga 3 14 Z41-70 / Z51-70, Z70-80 / G70-80
Desktops:
- A540 / A740, B4030, B5030, B5035. B750, H3000, H3050, H5000, H5050, H5055, Horizon 2 27 Horizon 2e (Yoga Home 500), Horizon 2S, C260, C2005, C2030, C4005, C4030, C5030, X310 (A78) , X315 (B85)
No comments:
Post a Comment