Dell, Toshiba and Lenovo Utilities Expose PCs To More Attacks

jones_supa writes: It turns out that OEM helper software is still often quite fragile and can expose systems wide open to attack. Currently Lenovo, Dell and Toshiba all have unpatched vulnerabilities in their various support utilities for Windows. These vulnerabilities were discovered by a security researcher who goes by the name Slipstream, and he has posted details onlinealong with proof-of-concept exploit code. The vulnerabilities allow arbitrary code execution, planting malicious files and modifying system registry values.

Bloatware is for Cows

You are all cows, and could do better with HOSTS FILE ENGINE. Cows say Mooo. Mooo! Moooo! Mooo cows Moooo. Moooo say the cows. YOU NON APK COWS!!!

Re:Bloatware is for Cows

"NON APK COWS" lol, this guy knows its stuff.

Yup

[sexconker]

We definitely need more outsourcing and H1-Bs. That would surely fix this.

Re:Yup

Most companies that produce PCs view the software side of things as a value-add - it's a checkbox criteria "put some shit on the box so we can say we have more shit". Unfortunately they view the software precisely like this - it's just shit, and it gets hacked together on a shoestring budget with no testing whatsoever. For most of us it'd be better if they just didn't add it in the first place.

Re:Yup

We definitely need more outsourcing and H1-Bs. That would surely fix this.

Oh, the classic discrimination when you have no arguments, who'd thought it?

Re:Yup

[houstonbofh]

No but the PC Decrapifier will... https://www.pcdecrapifier.com/

Re:Yup

[ArmoredDragon]

A note on this, that I think is very important, is that Microsoft likes to stress that genuine Windows guarantees you'll be free of malware and exploits, but this is just false. In fact, I might even go so far as to say that it's the least guarantee (with the exception of Chinese flea markets.)

The one and only way to guarantee that your copy of Windows isn't infected with malware is to do the following:

Download the ISO from The Pirate Bay (use terms like untouched or MSDN with the OS version you download) and run an SHA1 hash against it. Google the hash, and if it matches what Microsoft publishes on the MSDN site, then you have no chance of being compromised.

Burn that or copy it to a thumb drive, boot it from bios, press shift+f10, type 'diskpart', type 'list disk', then 'select disk #' (where # is the primary boot disk number you see listed; likely disk 0), then 'clean'. There, now you've eliminated any chance of malware (and yes, this also wipes out the recovery partition, but you don't want it anyways as it likely contains exploitable OEM crapplets, plus it's needlessly using up part of your primary disk.)

Re:Yup

[edtice1559]

Uh this is no more secure than if you paid for a retail copy and also verified the SHA1 or purchased an MSDN subscription. Vendor-installed OS may come already compromised or with malware installed. If you want to save money, you could achieve the same thing installing Linux and the steps to download are a lot simpler. I realize it's fun to get modded up for encouraging pirating Windows but it's not really a behavior that should be supported. The alternative to paid Windows is free Linux not pirated Windows.

Re:Yup

[Dutch+Gun]

Or, for people who would prefer not to install some third-party crapware to get rid of other third-party crapware... you could type "windows start" into search, and it shows "See which processes start up automatically when you start Windows". Click on this (or press CTRL-Shift-Escape and click on the "Startup" tab), and you see a list of these processes. You'll see a category called "Startup Impact", with values of Low, High, or None (if disabled). You can right-click and disable these items right from that list, or open the folder location so you can figure out what they are, etc.

Re:Yup

[ArmoredDragon]

Uh this is no more secure than if you paid for a retail copy and also verified the SHA1 or purchased an MSDN subscription.

The problem with a retail copy is that your software that rips it is invariably going to place its own timestamps and other variations in the file, so your checksum likely won't be valid. An MSDN subscription is also likely too expensive for most people.

I realize it's fun to get modded up for encouraging pirating Windows but it's not really a behavior that should be supported.

If you buy a computer that has Windows installed, and it comes with a COA, then you already own a paid copy of Windows. If you look at the license terms, the COA itself is proof that you own a copy of Windows, and so long as you install the same edition (home, pro, etc) and license channel type (retail, upgrade, OEM) to match that COA, then it's not a pirated copy. Want a simple way to ensure that? Easy: Download the best version possible (i.e. for 7, get ultimate, for 8+, get pro) and then when it asks, just type in the key listed on the COA. It will automatically select the version you've paid for and install it, and likewise it will even activate just fine with Microsoft's servers (or call in, if necessary.)

Re:Yup

[houstonbofh]

Convenience... Reinstalling an updating Windows can take over a day. The Dell Decrapifier (Old name) takes a few minutes. And it is trusted software these days.

Re:Yup

[PincushionMan]

The problem with a retail copy is that your software that rips it is invariably going to place its own timestamps and other variations in the file, so your checksum likely won't be valid. An MSDN subscription is also likely too expensive for most people.

This is decidedly not true, even back in the Windows 98 days. From what I recall, all you had to do was to ensure that the disc had the same name.

If you buy a computer that has Windows installed, and it comes with a COA, then you already own a paid copy of Windows. If you look at the license terms, the COA itself is proof that you own a copy of Windows, and so long as you install the same edition (home, pro, etc) and license channel type (retail, upgrade, OEM) to match that COA, then it's not a pirated copy. Want a simple way to ensure that? Easy: Download the best version possible (i.e. for 7, get ultimate, for 8+, get pro) and then when it asks, just type in the key listed on the COA. It will automatically select the version you've paid for and install it, and likewise it will even activate just fine with Microsoft's servers (or call in, if necessary.)

Also not true. There's a way outside Microsoft to pre-activate software (at least Windows 7). All that are needed are some certificate files in the OEM/$$/OOBE section of your install DVD or USB.

Let me direct you to MDL, specifically the Projects & Applications area. To be clear, this is not a piracy site, this is just a bunch of hackers working on things like BIOS mods (allowing your laptop to run all WiFi cards / unlocking hidden menus), Pre-install activation, retail copies from digital river, and K-M-S servers for Enterprise and VL versons of Windows. Not for piracy, but just so they can figure out how those things work.

Anyway, back on topic, it's easy to roll your own disc to do a fresh install, as long as you can get it from a trusted location. Sadly, as of Windows 7, you can no longer slipstream service packs into your source discs, so you have to download each new version manually. I'd been slipstreaming Service Packs back into my discs since the Windows 2000 days. Nu2.nu was a great reference for getting ISOs to boot off of CD ROMs that had the El Torito extensions required.

Re:Yup

[ArmoredDragon]

This is decidedly not true, even back in the Windows 98 days. From what I recall, all you had to do was to ensure that the disc had the same name.

This depends on a few things; namely, what retail copy did you buy? Not all of them are on MSDN, as that isn't its intent. In addition, as I stated, some tools add their own bits and do things in their own manner. Using a tool like dd will get you a proper hash, but again, assuming you have the right disc.

Also not true.

It's very much true, and nothing you say below contradicts what I said.

There's a way outside Microsoft to pre-activate software (at least Windows 7). All that are needed are some certificate files in the OEM/$$/OOBE section of your install DVD or USB.

Why go through all of that when you can just type in the key? Granted in some cases the ei.cfg file is set so that it's only for a certain edition, but if you simply delete it you don't have that problem.

Sadly, as of Windows 7, you can no longer slipstream service packs into your source discs, so you have to download each new version manually.

Not true, the process is just different. You can still slipstream drivers, updates, etc as well. You just have to use the dism tool on the WIM files. In fact, MDL describes that process quite well.

well, of course they do

[turkeydance]

haven't they always?

Re:well, of course they do

[perpenso]

haven't they always?

I don't know. I've been building my own PCs and installing OEM Windows since 486 days. I also use this thing called the "No" or "Cancel" button when installers and websites generously offer me things I was not looking for. I really don't understand many of the PC/Windows problems that so many talk about. ;-)

Re:well, of course they do

Jimmy, you're a very special child. It would seem you have the ability to tell the difference between actual content, and ads.

Re:well, of course they do

[hairyfeet]

And there is always PC Decrapifier for those PCs that come with "restore partitions" filled with crap, so I really don't get the big deal either.

Of course this is one more reason to go to your local system builder, the only software I install other than Windows is freeware that people can use like a full AV, Libre Office, Pale Moon and Comodo Dragon browsers with Adblock Plus,all spyware free.

Re:well, of course they do

[unixisc]

I don't know about these 3, but I have an Acer that came w/ a lot of utilities to make Windows 8 more usable. After I upgraded to Windows 10, they're totally useless. When I add a new user, they don't even show up.

Re:well, of course they do

you might not want to admit that in public, some of it is free for non-commercial use. installing it as a system builder is commercial use unless you have permission

Re:well, of course they do

[hairyfeet]

Citation? The Browsers are FOSS as is LO, the AV has a license for free or small business use, so care to name what license you speak of oh insightful one, or are you just talking out your rectum?

Re:well, of course they do

[RH434]

I DO know. I have been building PC's and installing OEM Windows since the 286 days. Way back then, Windows was a program not an operating system. You used DOS and had complete control over your drive, partitions, memory and installation of selected programs. (Anyone remember DEBUG C:8000) Today, the OEM loads it for you, with multiple sometimes hidden partitions with bloatware they were paid to install with Windows and other exploitable software as the OP stated. It is not the same as just checking NO when they "ask" you to install their software. Most of the time they don't even ask.

Re:well, of course they do

[perpenso]

You are confused about the checkboxes being referred to. I am referring to something like the installer of a program you genuinely want that has a default opt-in checkbox offering to install some 3rd party's toolbar/extension for the web browser.

Crapware does not solely come from PC vendor bundling. It also come from various websites and software application bundle's, insidiously default opt-in with respect to the later.

OEM Windows is only part of the solution to a clean PC. One must also pay attention to installers and such. Look for checkboxes, select custom installations rather than default, explore the list of things to be installed and disable things as appropriate.

Doh!

[deviated_prevert]

You have a doughnut in the low level of your operating system that can communicate online without OS kernel protection, so essentially you boot to ram a executable that can modify the OS section of windows with impunity. About the same as Homer Simpson putting a doughnut into the reactor core to moderate the control rods!

One can dream

I really wish that there was a way to force hardware manufacturers to ship a vanilla OS without the value-added crapware. Maybe then older Android devices could get security updates, Windows and Android would be more secure and I wouldn't rage when stories like this hit the news. Again and again and again.

Re:One can dream

[mikael]

You can. Those local shops that build PC's for you can also get you a vanilla Windows install CD without the crudware. Your on your own with hardware drivers though.

Re:One can dream

[dwywit]

Most mainboards have the driver disc included - although the driver disc also has "value-added" crapware. I mostly use Gigabyte boards - you just have to install the drivers individually, rather than let the disc's autorun install everything.

90-day trial of Norton Internet Security? Thanks, but no thanks.

Really?

They just figured this sh*t out NOW?
I knew that their badly programmed softwares, that used way more resources than necessary, would be used for attacks long ago, that's why I always just create the recovery disks and then do a completely clean install of pre-built PCs.

Re:Really?

[justthinkit]

Yeah, but there is a new threat/consideration.

I wanted to perma-block Windows 10 on the machines I look after. Ran the batch file that turns everything off. Job done.

Two days later I notice the GWX icon on an HP machine. The "helpful" HP utilities (that I never consciously invoke myself) must have summoned the evil that is WX.

So I re-ran the perma-blocker AND did my best to kill all vestiges of HP helpers on the machine. So far so good.

Re:Really?

Cool story bro.

Re:Really?

Could you please post that batch file or give us a link to it?

Re:Really?

The best is when you try to uninstall HP Security Centre, but Windows refuses to run the uninstaller because... wait for it... HP _revoked_ the certificate the uninstaller is signed with! Oh it's hilarious - let me get this straight:

1. HP signs crapware with certificate X.
2. HP pre-installs crapware on a zillion PCs/laptops.
3. HP certificate ends up in the hands of retards who use it to sign a bunch of malware.
4. HP panics and revokes the certificate.

And now, due to HP's endless stream of incompetent boobery, I can no longer uninstall their garbage.

Re:Really?

[justthinkit]

Couple I've looked at:

DisableWinTracking

I'm not sure where I got BlockWindows, so I'll just upload it here:
BlockWindows

onlinealong - is that word?

awesome editing

PC does what?

No amount of marketing can undo the technical incompetence of these companies.

Put it THIS way then... apk

I've been "p.r.'ing" APK Hosts File Engine 9.0++ SR-4 32/64-bit http://start64.com/index.php?o... around /. since mid 2012 when I 1st released version 5.0++ - 99% of the time in response to users using inferior browser addons!

Guess what:

NOT A SINGLE ONE OF YOU HAS FOUND A SINGLE BUG IN IT!

* :)

(When I write a ware, there AREN'T ANY & it's "bulletproof + bug free" - you 'naysayer troll "ne'er-do-wells"' are my proof thereof, lol - thanks!)

IF there was one? I'm sure that BY NOW you'd have found it... none to date, period.

NOW, how come "lil' ole' me" can write code like that, but these systemware makers can't?

APK

P.S.=> No single usermode slower messagepassing overheads laden browser addon does more for more speed, security, reliability, or anonymity online... apk

Re:Put it THIS way then... apk

may allah make all your goats pretty

Re:Put it THIS way then... apk

Go back to writing letters to your minders in the ward and quit spamming.

Re:Put it THIS way then... apk

You know, you figure after at least 15 years; it would become apparent who the real troll is...
http://arstechnica.com/civis/v...
http://www.thorschrock.com/200...

May I suggest some meditation? (I doubt the meds are working).

Re:Put it THIS way then... apk

I've been pimping APK Hosts File Engine 9.0++ SR-4 32/64-bit...

TFTFY, shilly-billy.

Re:Put it THIS way then... apk

NOT A SINGLE ONE OF YOU HAS FOUND A SINGLE BUG IN IT!

One does not find what one does not seek.

also need a lot more lowercase because apk yells and slashdot don't like that.

Windose Again

Oh FFS:

"LSCTaskService is further associated with a file called LSCController.dll, which contains methods that can be called using HTTP GET and POST requests to its port. LSCTaskService can be made to run arbitrary code in the unprotected directory %APPDATA%\LSC\Local Store with system privileges, using a LSCController method called RunInstaller."

So javascript on a website can run arbitrary code with system privileges! FFS.

And Dell too? Having been caught installing a backdoor cert on its PCs, here it is again.

Re:Windose Again

[viperidaenz]

It's not Window's fault.

it's not really any different than buying a pre-installed Linux computer that has a OEM utility running as root that does the same thing.

Re:Windose Again

[TylerJWhit]

If Windows coded it, it's Windows fault.

This is why I went with a refurb

My mother's old Lenovo T41 recently crapped out on her finally and she almost went ahead and replaced it with a new Lenovo on her own. Luckily I stopped her with a stern lecture and bought her a spotless refurb'd HP elite book with a clean install of just win7pro that will do everything she needs and more. She had a huge disdain for anything "used" at first but when I educated her on superfish and other factory-grade malware that reassured her and she's loving it.

Now... if I get a call from her about allowing win 10 to overwrite that clean win7pro install I took an entire weekend to harden then I'm taking the elite book back and keeping it for myself (after scrubbing win 10 right back off).

PCs are for poors.

I think anyone who has been on Slashdot for a while can afford a Mac at this point. PC problems are not "stuff that matters".

Should have used apps!

Modern app appers know that only apps can app apps, so App, Appovo, and Appshiba should all use appy app apps, not LUDDITE utilities!

Apps!

Re:Should have used apps!

s/app/Llanfairpwllgwyngyll

Re:Should have used apps!

s/Llanfairpwllgwyngyll/Llanfairpwllgwyngyllgogerychwyrndrobwllllantysiliogogogoch

Re:Should have used apps!

[KGIII]

For those that don't speak the language, that's Welsh for, "Hello."

Use your consumer powers

[AHuxley]

Consider hardware brands that are more about a real clean OS install.
Consider other better OS options.

Re:Use your consumer powers

The included tools aren't entirely useless, for lenovo at least. I like the lenovo thinkpad power manager and the solution center. The power manager has an easy to use battery saving option - just point and click and you get +2 hours battery life and a slightly slower system! The solution center has a reassuring one-click hardware test (my thinkpad is second hand). I guess I have to drop the solution center now, thanks to this exploit, there are individual tools for the hardware tests in the lenovo site.

Editing this from myself (you need to hear it)

"P.S.=> No single usermode slower messagepassing overheads laden browser addon does more for more speed, security, reliability, or anonymity online & FOR LESS + more efficiently, vs. "Bolting on 'MoAr' illogically - instead using what you already have that does it FAR better on most any & all levels... apk" - by Anonymous Coward on Wednesday December 09, 2015 @08:28PM (#51092555)

Had to add that in above in bold - JUST FOR YOU - & even Allah knows the truth of those words from me are unshakeable reality too...

(God don't make no junk, & neither do I - since as I said last post? You're all YET to find a SINGLE BUG in my work in all you ac trolls + "ne'er-do-well" naysayers (especially the blowhard windbag ones, lol...)).

APK

P.S.=> From yours truly "The Lord of Hosts" (since you're wont to bring up religious things), so-to-speak... apk

Re:Editing this from myself (you need to hear it)

You are living proof that God fucks up. There is no other explanation for a spamming little cunt like you.

"Genuine Windows" of course

The whole OEM thing was a bad idea. You should have always bought a machine, a GENUINE hologrammed Windows (XP/Vista/7) disc with a KEY and sticker, and the OEM could optionally supply another disc with "Recommended Dell/Lenovo/Toshiba/Sony software". But no, pre-installed crapware and all available again from Alt-F11.

Now with Windows 10 it does not matter any more. The standard upgrade disc I pull out is a Linux distro... works every time and no OEM crapware. :)

Re:"Genuine Windows" of course

yes just even more holes cause 90% of it is written by loosers with no day jobs in programming and a direct ball hugging tie to amazon

thats better

I'ts not crapware, it's subsidy-ware

It's value added software, that REDUCES the PRICE of your computer, you could say it's not "crapware" but subsidy-ware.

If this valuable software was not included, you could expect to pay 1.5X to 2X for your computer.

In fact I would go so far to say, that if the software is removed, payment should be made to the OEM.

Perhaps a software/hardware interlock could be designed, so if you want a non-subsidized PC, you simply enter your credit card , pay the manufacturer the true cost of the PC, and voilà, no more subsidy-ware.

Re:I'ts not crapware, it's subsidy-ware

You should also pay the TV networks/TV show producers if you skip ads or avoid looking at ads or even close your eyes.

Refer to episode 2 of UK science-fiction drama Black Mirror...

Re:I'ts not crapware, it's subsidy-ware

[KGIII]

They've already proven that they can't write secure software and you want us to give them our credit card?

Editing this from myself (you need to hear it)

"P.S.=> No single usermode slower messagepassing overheads laden browser addon does more for more speed, security, reliability, or anonymity online & FOR LESS + more efficiently, vs. "Bolting on 'MoAr' illogically - instead using what you already have that does it FAR better on most any & all levels... apk" - by Anonymous Coward on Wednesday December 09, 2015 @08:28PM (#51092555)

Had to add that in above in bold - JUST FOR YOU - Allah knows the truth of those words from me too...

(God don't make no junk, & neither do I - since as I said last post? You're all YET to find a SINGLE BUG in my work in all you ac trolls + "ne'er-do-well" naysayers (especially the blowhard windbag ones, lol...)).

APK

P.S.=> From yours truly "The Lord of Hosts" (since you're wont to bring up religious things), so-to-speak... apk

Really? Such shocking news...

[JustAnotherOldGuy]

"It turns out that OEM helper software is still often quite fragile and can expose systems wide open to attack"

Yes, we know.

In other news, water is still wet, the Sun still rises in the East.

LMAO - you're the ones trolling me idiot... apk

See subject: From here on down http://it.slashdot.org/comment... : who're you *trying* to fool other than yourself as to who the trolls are around here?

I WIPED ARSTECHNICA OFF THE MAP in 2003-2006 @ Windows IT Pro easily - Jeremy Reimer got his website removed by Shaw of Canada his ISP & hosting provider + he was put on a tracking ticket by them for email harassment... his "henchman" Jay Little said "I am an EXPERT on Exchange" which much to his dismay worked against him @ "The Memory Optimization Hoax" where I proved to them AND Dr. Mark Russinovich (former "co-worker" of mine @ Sunbelt where we retailed our wares there & he bitched I outsold his work, awww) that that technology unhalted & sped up frozen Exchange Servers USING MICROSOFT'S OWN DOCUMENTATION TO DO IT (clearmem.exe is the same tech, but not GUI, & I designed the 1st program of that nature in GUI no less).

Jay Little then trolled & stalked me to other websites where I annihilated him on ramdrives as well - he was banned + had his website @ CrystalTech removed by that hosting provider for libeling me.

Bad move bringing up the DOLTS of Arstechnica - all they can do is "gossip" like old biddies behind my back, BUT OUTSIDE THEIR "PRIVATE PLAYPEN"? The results are QUITE different, see above, lol...

Thor SCHMUCK?

LMAO!

Hey - Ask him how CA is doing caught in reprehensible ILLEGAL ACTIVITIES & he tried using Computer Associates antivirus that I overturned on false positives (1/8 over time) were caught in ACCOUNTING SCANDALS FRAUD http://www.bing.com/search?q=c...

You're the same kind of scum, but you're just as easy to dispatch with truth & facts.

APK

P.S.=> Still, what I said is the truth - I write wares that are "bulletproof & bugfree" (since none of you ever find any bugs in my program APK Hosts File Engine 9.0++ SR-4 32/64-bit

Re:LMAO - you're the ones trolling me idiot... apk

You got b& from Ars after you got caught impersonating someone else.

You're lucky they didn't press charges, dumbass. By all rights you ought to be in prison.

I'll let others speak for me (they disagree)

"No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)

"his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)

"I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)

"APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)

"Actually, APK is totally right on this count. Adblock Plus on Firefox mobile is a dog on older, or lower end, phones. A hostfile based adblocker makes for a much better experience in this context. Of course, your phone has to be rooted, which isn't the case with Firefox + adblock." - by chihowa (366380) on Saturday May 16, 2015 @11:40AM (#49705641)

"his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)

"In a footnote, I would like to note that I find your hosts file admirable." - by vel-ex-tech (4337079) on Tuesday November 24, 2015 @10:27PM (#50999097)

APK

P.S.=>

"You are living proof that God fucks up" - by Anonymous Coward on Wednesday December 09, 2015 @11:20PM (#51093193)

No, YOU are living proof you're very stupid, as I have you outthought, out-smarted, & OUTED by contrary opinions from our fellow /.'ers saying quite otherwise of my wares & conduct here, troll! See above... lol!

See the 1st quote above & "eat your words" - it must truly BLOW to be a "ne'er-do-well" troll like you... apk

blatent malware

[slashmydots]

The last fairly new HP I worked on has no entry in the uninstall list for "Hp Support Assistant." I traced where the program launches from and it uses an acronym to hide behind. Then the uninstaller the directory actually references some HP solutions framework thing. I tried removing that from its entry on the control panel and it said it can't remove it because it was needed by the HP Support Assistant. So I ran the uninstaller directly from the directory and it did quite literally nothing. So I had to remove the entire directory and every reference to it in the various boot time locations in the registry to truly kill it. That's what I like to call malware. It literally violates US laws pertaining to software having to be removable by the user if they want. I'm sure there's some preinstallation EULA BS to get around it though. Great upgrade to that crapware, HP!

Re:blatent malware

[KGIII]

Which laws are those? I'd be interested in reading them.

Re:blatent malware

[sasparillascott]

Amazing the lengths they go through to make it so you can't uninstall their "utility" and HP isn't even on this "bad list". I wonder if that is because this guy just didn't get to them yet? I can understand the PC Vendors wanting it on there - for the consumers that call them and have no clue after they've botched things up...but making it so you can't uninstall it moves into the realm of them thinking its their computer and not mine.

This is the 2nd serious security botch up recently for Dell, the NSA must love them (remember it was outed recently they were installing a root certificate that is easily exploitable):

http://arstechnica.com/securit...

Whenever I get a new computer I image the drive (as is) so I can restore it (if & when I sell it in the future), have the associated drivers for it already downloaded separately and then nuke the drive from orbit repartitioning and fresh installing the OS...then only installing the hardware device drivers it needs. Even that isn't enough for some PC vendors (remember Lenovo was putting some of its monitoring software in the UEFI BIOS, nice extra feature of UEFI, so it would reinstall itself after you wiped the drive). Crazy.

Re:blatent malware

HP does install a lot of junk. 250 megs for a printer driver is absolutely insane.

I have found one of three ways to have a decent computing experience away from online trespassers:

1: Buy a Mac. Apple does have settings, but they are obvious and can be turned off. Once off, they stay off. Plus, Apple hardware can run Windows.

2: Build your own desktop with your own Windows copy. It may be more expensive than a cheapie from S-Mart, but you know what goes on it.

3: Buy the cheapie PC, dd the data from the HDD to a safe place, zero out the drive (dd if a HDD, blkdiscard if a SSD), then install a purchased copy of Windows. Downside of this is software pulled from the BIOS like LoJack for Laptops.

4: Buy business tier machines like Dell Optiplexes. Business tier computers are more expensive, but are not subsidized by shitware, and don't come with additional "features". The main reason is that PC makers can piss off consumers, and consumers will forget all about it after the next Jersey Shore rerun... but piss off a PHB, they will remember it, and the next leasing agreement will be with the other vendor who will give the PHB a nicer overseas vacation package if he signs, switching to that brand.

With the fact that the cheapie PCs are installing crap even on a clean install, it might be best to just build your own for a desktop, or for a laptop, buy an OEM model.

I personally went with OS X. The Apple Tax is horrendous, but OS X is a decent alternative to Windows, and with virtualization, I can run Windows in a VM as a layer of security when browsing the web. It also is nice to be able to use utilities like obnam, attic, borgbackup, zbackup, zpaq, and other deduplication programs, in addition to Time Machine, while Windows backups are dicey at best.

Re:blatent malware

[slashmydots]

Really? Because it sounds like you're just a sarcastic jackass. There are two software laws in the US and this is one of them. You must get permissions to put software on a system. You must allow the software to be removable. You go look them up if you're so damn interested.

Re:blatent malware

[KGIII]

See, I did. I didn't find any such law. That's why I asked. If you have one by name then, by all means, I'd love to read it and see some case law.

Re:blatent malware

realy? ok its very nice
drtahghigh.com

Re: LMAO - you're the ones trolling me idiot... ap

Holy shit APK you bear a grudge. The whole internet is tired of you. Please FOAD.

I never impersonated ANYONE there!

Don't project THEIR modus operandi onto me: GOD & MWNH were 2 usernames there I caught using the same email address & they also impersonated me, & edited posts I did, you fucking lying little shit.

APK

P.S.=> This is WHY arstechnica's the LOSERS of the internet & total weasel scumbags... apk

Re:I never impersonated ANYONE there!

No. You sent emails to people pretending to be other people from Ars. Not the same thing at all.

Nobody impersonated you, although lots of folks posted stuff imitating your rants in order to poke fun at you. Again, not the same thing.

The forum admins at Ars edited some of your posts to remove content (language/personal info/personal attacks) which violated their TOS, which you agreed to when you signed up for the account, dumbass.

Schrock never worked for CA, so whatever CA did had nothing to do with him. CA's accounting practices had nothing to do with their software.

Hilarious that you can even think of claiming that you "wiped Ars off the map" when they're still doing just fine, and you're banned from there for life.

And what's that I hear on the radio...?

"Saturday in the park... I think it was the Fourth of July..."

It's pity for unprincipled losers... apk

See subject: That's all I feel for losers from arstechnica who are probably the same little trolling "ne'er-do-well" losers here doing this.

* Wouldn't surprise me ONE bit... that's all they're good for (being morons).

APK

P.S.=> Take YOUR OWN ADVICE & "FOAD" loser - The real entire internet's sick of you little useless fucks like Thor SCHMUCK (lol, ask him how Computer Associates had to downgrade the 'threat' from my program to ZERO/No Threat too) & Arstechnica (home of the underachiever online, lol)... apk

Re: Interesting, thank you I will try this out

[xiando]

A computer illiterate friend has a Windows-infected computer and would like to replace the HDD with a SSD and has been nagging me to do it (because I must know how since I've used GNU/Linux the past 15 years and have no idea how Windows works). If I can just download some ISO for the version already on the old hard-drive and type in the things on the sticker and it'll be a genuine copy then that's fantastic.

As for the parent poster who was talking about "pirating" Windows: Please go kill yourself or give me my money back. You can't buy a non-Windows-infected computer and most of us have paid for dozens for Windows licenses that we've never ever used. If I ever do "pirate" a Windows copy then you can subtract that one against the zillion I've already paid for.

Bullshit... apk

Ask Ars' Jeremy Reimer & Jay Little why they have to host their playpen private sites at servers other than CrystalTech or Shaw.

Reason = email harassment of myself by BOTH of them, online stalking me, death threats, + libelous edited photos of myself by them also...

(I emailed a few folks @ arstechnica but never pretending to be anyone else. I had NO NEED to do that, & I caught MWNH + GOD ("two users there" who are really the SAME person, talk about impersonating others & sockpuppeting) using the SAME EMAIL ADDRESS for both usernames!)

APK

P.S.=> They're all a pack of do nothing significant in computing losers (ever) & YOU are obviously one of them... apk

Re:Bullshit... apk

Ask Ars' Jeremy Reimer & Jay Little why they have to host their playpen private sites at servers other than CrystalTech or Shaw....

Oh, believe me, I have. And I know someone who was an admin at Shaw at that time. You are such a fucking liar. (Like that other poster said--you're lucky as hell not to be in prison.)

You're a classic bully--you taunt and torment someone until they get so pissed off, they act without thinking and then you start whining, "THEY'RE DOING TEH BAD STUFFS 2 ME BAWWWWWWWWWW". [<= TRIGGER WARNING: Libellous photo of APK]

As for your app having or not having bugs--that's a nonsense discussion because your app IS a bug, and you even BRAG about what makes it that way. Watch yourself get pwned right here, genius.

Dump it

When I buy a laptop, first thing I do, is set it up how it comes from the factory.
After all the updates, I shut it down, pull the HDD, place a post-it-note on it
with the expiration date of the warranty, the model/serial and stick it on the shelf.
Then I put in a fresh clean HDD, install the OS, software, updates, etc and use
it like that. If I have any warranty issues, I pop out MY drive, put in the factory
drive and send it off, if need be.
Keeps the crapware off, and MY data stays WITH ME.

I'll let others speak for me (they disagree)

"No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)

"his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)

"I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)

"APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)

"Actually, APK is totally right on this count. Adblock Plus on Firefox mobile is a dog on older, or lower end, phones. A hostfile based adblocker makes for a much better experience in this context. Of course, your phone has to be rooted, which isn't the case with Firefox + adblock." - by chihowa (366380) on Saturday May 16, 2015 @11:40AM (#49705641)

"his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)

"In a footnote, I would like to note that I find your hosts file admirable." - by vel-ex-tech (4337079) on Tuesday November 24, 2015 @10:27PM (#50999097)

* Gosh: All you had was a downmod vs. this same post last time PROVING YOU FAIL fool -> http://it.slashdot.org/comment...

APK

P.S.=>

"You are living proof that God fucks up" - by Anonymous Coward on Wednesday December 09, 2015 @11:20PM (#51093193)

No, YOU'RE you're stupid & outthought, out-smarted, & OUTED by contrary opinions from our fellow /.'ers saying otherwise of my wares & conduct here, troll! See the 1st quote above & "eat your words"... apk

Editing this from myself (you need to hear it)

"P.S.=> No single usermode slower messagepassing overheads laden browser addon does more for more speed, security, reliability, or anonymity online & FOR LESS + more efficiently using less RAM, CPU, & other I/O too vs. "Bolting on 'MoAr' illogically - instead using what you already have that does it FAR better on most any & all levels... apk" - by Anonymous Coward on Wednesday December 09, 2015 @08:28PM (#51092555)

Had to add that in above in bold - JUST FOR YOU - & even Allah knows the truth of those words from me are unshakeable reality too...

(God don't make no junk, & neither do I - since as I said last post? You're all YET to find a SINGLE BUG in my work in all you ac trolls + "ne'er-do-well" naysayers (especially the blowhard windbag ones, lol...)).

APK

P.S.=> From yours truly "The Lord of Hosts" (since you're wont to bring up religious things), so-to-speak... apk

Why'd Jeremy Reimer & Jay Little move sites?

See subject: Says it all - he got his ass kicked from their servers just like Jay Little his pal from arstechnica did from Crystaltech (for email harassment, stalking me site to site across the internet, death threats, & libelous edited photos they did of me).

* They're losers, like all of "arseholetechnica" is - underachievers & losers producing ZERO of worth (highschool termpaper articles? Give me a break!).

BOTTOM-LINE: (again) - I produced a ware with NO BUGS you morons can find, as there aren't any in my work (ever)... lol, you lose.

APK

P.S.=> You're slime over @ arstechnica - & everyone online KNOWS it about you all - total trolling "ne'er-do-well" TRASH, nothing more... wastes of life! apk

Put it THIS way then... apk

I've been "p.r.'ing" APK Hosts File Engine 9.0++ SR-4 32/64-bit http://start64.com/index.php?o...

Here around /. since mid 2012 when I 1st released version 5.0++ - 99% of the time in response to users using inferior browser addons!

Guess what:

NOT A SINGLE ONE OF YOU HAS FOUND A SINGLE BUG IN IT!

* :)

(When I write a ware there AREN'T ANY & it's "bulletproof + bug free" - you 'naysayer troll "ne'er-do-wells"' are my proof thereof, lol - thanks!)

IF there was one?

I'm sure that BY NOW you'd have found it... none to date, period.

NOW, how come "lil' ole' me" can write code like that, but these systemware makers can't?

APK

P.S.=> No single usermode slower messagepassing overheads laden CPU + RAM overconsuming bloated REDUNDANT browser addon does more for more speed, security, reliability, or anonymity online AND WITH LESS no less... apk

Dear "ne'er-do-well" billy (lol)... apk

See subject: At least I have something decent unlike a loser like you that has NOTHING (lol, truth) & what I have does the job giving users more speed, security, reliability,+ anonymity online than ANY other single redundant resource overconsuming messagepassing overheads laden bloated browser addon does by far with TONS less using something you already natively have no less!

* :)

(Why am I able to do this & you're not? Well, 1st of all, you're too STUPID & LIMITED in computing skills as well as a no-mind in terms of understanding of things networking!)

APK

P.S.=> It must REALLY blow to be a "ne'er-do-well" like YOU... lol, no joke! apk

Pity for unprincipled arseholetechnica losers

See subject: That's all I feel for losers from arstechnica who are probably the same little trolling "ne'er-do-well" losers here doing this.

* Wouldn't surprise me ONE bit... that's all they're good for (being morons).

By the way, why "downmod hide" the last time I posted this http://it.slashdot.org/comment... ? TRUTH HURT?? Yes... lol!

APK

P.S.=> Take YOUR OWN ADVICE & "FOAD" loser - The real entire internet's sick of you little useless fucks like Thor SCHMUCK (lol, ask him how Computer Associates had to downgrade the 'threat' from my program to ZERO/No Threat too) & ArsHOLEtechnica (home of the "ne'er-do-well" underachiever online, lol)... apk

Re: Interesting, thank you I will try this out

[PincushionMan]

No, the sticker is NOT guaranteed to work with a RETAIL or MSDN ISO. If you can get an ISO from that OEM it will likely work, but you still might have to activate by phone MS. If you grab a Dell OEM disc for a HP computer, you certainly will.

Instead of going that route, get a couple of extra files from the OEM Project, and you can install pre-activated copies of Windows 7 / 8 / 8.1. Here's a link to the project. Good luck.

There is also a z_a_D Loader (reverse those letters and remove the underscores) on that site. It could help you, in the case he has a Dell motherboard in a HP case, and wishes to have HP branding instead of Dell. Windows 7 only, and disk cannot have GPT. I know nothing about it though. You didn't hear it from me.

Re: Interesting, thank you I will try this out

[ArmoredDragon]

No, the sticker is NOT guaranteed to work with a RETAIL or MSDN ISO.

There's an easy to make it work if it doesn't: Simply delete the ei.cfg file. In fact, that's the only thing that sets the difference between the different version discs since Vista and up.

There is also a z_a_D Loader (reverse those letters and remove the underscores) on that site. It could help you, in the case he has a Dell motherboard in a HP case, and wishes to have HP branding instead of Dell. Windows 7 only, and disk cannot have GPT. I know nothing about it though. You didn't hear it from me.

If you're going that route, then just use any ol' ISO you want (so long as hash is correct) and tell the Daz loader to activate based on your BIOS SLIC image. It will convert whatever you have to an OEM copy, and it won't even need to install its bootloader.

You're the blind leading the blind

See subject: I expect too much sometimes from the likes of trolling menials (@ most/best) in the art & science of computing like yourself... lol!

* You wouldn't even KNOW how to go about it!

(My mistake/"my bad"/mea culpa)

APK

P.S.=> You trolling fools are SO WEAK it's pitiful - I hope you realize what a waste of life you all are before it's too late and you're just wormfood in a pine box 6 ft. under... do something USEFUL with your life instead of being a troll scum online... ok? apk

Re: Interesting, thank you I will try this out

[Ancil]

http://answers.microsoft.com/e...

If his computer was made by a manufacturer which is still around, he can get a recovery DVD from the company for a small fee.

If not, see the section of the page titled "What to do if you cannot get recovery media from your manufacturer". Basically, you take a retail copy of the OS in question and delete a .cfg file. That will allow you to install the OS using an OEM key. This is actually a lot easier if you use a thumb drive to install the OS rather than a DVD, since with a thumb drive your can just delete (or rename) the ei.cfg file.

AdBlock+ = inferior & 'souled-out' vs. hosts

See subject: Can adblock+ do 16 things hosts do 4 speed, security & reliability:

1.) Protect vs. bad sites (past ads)
2.) Protect vs. fastflux botnets + stop C&C talk
3.) Protect vs. dynamic dns botnets + stop C&C talk
4.) Protect vs. DGA botnets + stop C&C talk
5.) Protect vs. downed DNS (4 reliability)
6.) Protect vs. DNS redirect poisoning
7.) Protect vs. trackers
8.) Protect vs. spam
9.) Protect vs. phish
10.) Protect vs. caps
11.) Get past dns blocks
12.) Keep off dns request logs
13.) Speed up surfing (adblock & hardcoded favs)
14.) Works on anything webbound multiplatform.
15.) EZ data control
16.) Block ads more efficiently vs. addons

* ANSWER ="NO" on ab+ doing it as well or @ ALL + hosts = on devices natively.

APK

P.S.=> Ab+ does less vs. hosts less efficiently - hosts do MORE w/ less + Hosts start w/ IP stack before REDUNDANT inefficient addons BEGIN operation (as 1st resolver).

---

Ab+'s a 128-151mb memory hog http://cdn.ghacks.net/wp-conte... (hosts use 3-11mb w/ my program initially). Even FireFox 41 adblock eats 65++mb http://www.ghacks.net/2015/06/...

---

ClarityRay defeats it seeing addons via native browser methods!

---

Ab+'s bribed not to work by default http://www.businessinsider.com... & ABP bought out adblock http://www.theregister.co.uk/2...

---

Ab+ adds complexity in slower usermode (w/ more messagepassing overhead + context switch vs. hosts in kernelmode).

---

AdBlock's SLOWER: http://superuser.com/questions...

---

What's best?

APK Hosts File Engine 9.0++ SR-4 32/64-bit http://start64.com/index.php?o...

MalwareBytes' hpHosts Admin (MalwareBytes employee who verified its source is safe http://forum.hosts-file.net/vi... ) hosts & recommends it http://hosts-file.net/?s=Downl... & MalwareBytes = BEST antivirus http://www.av-test.org/en/news...

&

It's safe per 57 antivirus programs in its 64-bit model https://www.virustotal.com/en/...

+

32-bit model too https://www.virustotal.com/en/...

& Installer -> http://f.virscan.org/APKHostsF...