Risk
5/23/2012
10:13 AM
Connect Directly
RSS
E-Mail
50%
50%

Microsoft Bloatware Cleaning Offer Treats You Like Dirt

For just $99, Microsoft will eliminate the junk added to its Windows 7 PCs by OEM manufacturers. Steve Jobs would have enjoyed this development.

For followers of "the customer always comes first" cult, check out this great deal, available now at your local Microsoft Store: For just $99, a Windows genius will clear your Windows 7 desktop or laptop of OEM-installed bloatware.

Does it get any richer than this?

The average cost of a Windows PC notebook, as of February 2012, was just $513, according to market researcher NPD. In other words, making your Windows machine run well out of the box only requires paying Microsoft a 20% premium.

Let's contrast. Apple continues to generate record profits from its retail stores--minimalist, white-walled temples to product design and packaging, staffed by "geniuses" who help people configure their Apple devices for free. Meanwhile, the Microsoft "Signature" retail cleaning offer involves paying extra to nuke out-of-the-box junk. Now there's a customer experience destined for success.

To be clear, Microsoft also sells "Signature" PCs at its own chain of 22 retail stores and e-commerce shop. These PCs, which are billed as having been "optimized for top performance," don't hide their OEM origins, but subtract much of the added junkware. "We optimize all of our PCs with Microsoft Signature by removing unwanted software, adding antivirus, and tuning it for top speed," says the Microsoft website. "Brand new PCs should look and act brand new. That's why we remove all the unnecessary trialware and sample software that clutters up your PC to make it cleaner, faster and more fun to use."

Wall Street Journal technology review guru Walter Mossberg has advised consumers to consider buying the Signature version of any Windows machine. That's based on his tests of before-and-after--OEM versus Signature--laptops from HP, Sony, and Samsung, in which he found only slight speed gains from Signature, but a much better user experience.

Microsoft does include its own extra software on Signature machines by default: Windows Live Essentials (free email, instant messaging, photo-sharing, blogging), a Zune music and video player application, Microsoft Security Essentials, Internet Explorer "with Bing optimization," as well as starter versions of Microsoft Word and Excel. But upon request, Microsoft will remove its Signature add-ons.

Thankfully, few enterprise users see any OEM bloatware, thanks to the IT practice of wiping all new machines and installing a clean, junk-free client build. But for machines we use at home, excising bloatware on a new PC can be difficult. PC makers typically don't spell out which drivers or applications are necessary for their machines to function. Tellingly, Microsoft says its Signature service is backed by a specialized team, which investigates just what can be removed, versus what must be left present--but perhaps hidden in the Start menu to leave the desktop less cluttered.

You'll have to budget more than just a few minutes with the Windows "Add/Remove Programs" utility to remove bloatware on your own. One option is to look to dedicated bloatware-annihilation software such as PC Decrapifier, which costs one-quarter of Microsoft's service.

To recap: Microsoft builds an operating system that's tuned for high performance, OEM makers take money from third-party software developers to ship you a PC loaded with junk that slows it down, then you get to pay Microsoft to clean up the junk. Consumers are the clear losers here.

But Microsoft isn't the first company to attempt to charge extra with regards to bloatware purging. Notably, Sony in 2008 began offering a $50 "Fresh Start" option for some Vaio laptops. Aimed at professional users, the "upgrade" was sold as a way to maximize performance and hard drive space, especially in light of reviews highlighting the laptops' horrible startup times. After a public outcry, Sony backpedaled, and began offering the "clean" client build as a free option at the time of purchase.

Bloatware, however, isn't limited to the Windows realm. Most Android phones, for example, contain added junkware. Unfortunately, this software--which equipment manufacturers will install, then rarely if ever update--can introduce security vulnerabilities.

Last October, for example, security researcher Trevor Eckhart discovered that a logging application added by HTC to its smartphones could be inappropriately accessed by an attacker, who would be able to see a copy of all data logged. HTC pushed an emergency patch to fix the issue. But actually eliminating OEM add-ons requires relying on hardware hackers who create software to root the phones.

For Android lovers, there's an alternative. Google sells Nexus phones with just the Android operating system, and they regularly take top marks for design, performance, and security. Thus it's no surprise that last week, the news broke that Google plans to sell more phones using this model. "This is clearly a bid to get rid of the carrier-branded bloatware that many users don't like and often don't use," says Chris Spera at BYTE.

Here's to a new consumer rallying cry: Ban the bloat.

Employees and their browsers might be the weak link in your security plan. The new, all-digital Endpoint Insecurity Dark Reading supplement shows how to strengthen them. (Free registration required.)

Comment  | 
Print  | 
More Insights
Comments
Threaded  |  Newest First  |  Oldest First
davesg
50%
50%
davesg,
User Rank: Apprentice
5/23/2012 | 5:53:45 PM
re: Microsoft Bloatware Cleaning Offer Treats You Like Dirt
Are you new?
dbruce770
50%
50%
dbruce770,
User Rank: Apprentice
5/24/2012 | 10:33:00 PM
re: Microsoft Bloatware Cleaning Offer Treats You Like Dirt
The computer is cheaper with the bloatware than it otherwise would be. Its a cut-throat industry that earns very average returns on capital and basically anything that reduces costs for the manufacturers gets passed along to customers as savings. Its very simple economics. So your whole "recap" paragraph is pure rubbish. It should read: "You get a computer cheaper than it otherwise would be if you allow the bloatware. If you want the bloatware to disappear, you have to give those savings back".

Now does it sound so evil?
cxf
50%
50%
cxf,
User Rank: Apprentice
5/28/2012 | 1:34:41 PM
re: Microsoft Bloatware Cleaning Offer Treats You Like Dirt
Clearly there is a quasi ad model approach by PC manufacturers that ad crapware to their operating images. A true consumer friendly business would give the consumer the option for a clean, ad free install and make M$'s service obsolete for a fraction of the price.
Register for Dark Reading Newsletters
Partner Perspectives
What's This?
In a digital world inundated with advanced security threats, Intel Security seeks to transform how we live and work to keep our information secure. Through hardware and software development, Intel Security delivers robust solutions that integrate security into every layer of every digital device. In combining the security expertise of McAfee with the innovation, performance, and trust of Intel, this vision becomes a reality.

As we rely on technology to enhance our everyday and business life, we must too consider the security of the intellectual property and confidential data that is housed on these devices. As we increase the number of devices we use, we increase the number of gateways and opportunity for security threats. Intel Security takes the “security connected” approach to ensure that every device is secure, and that all security solutions are seamlessly integrated.
Featured Writers
White Papers
Cartoon
Current Issue
Dark Reading's October Tech Digest
Fast data analysis can stymie attacks and strengthen enterprise security. Does your team have the data smarts?
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-3304
Published: 2014-10-30
Directory traversal vulnerability in Dell EqualLogic PS4000 with firmware 6.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the default URI.

CVE-2013-7409
Published: 2014-10-30
Buffer overflow in ALLPlayer 5.6.2 through 5.8.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a .m3u (playlist) file.

CVE-2014-3446
Published: 2014-10-30
SQL injection vulnerability in wcm/system/pages/admin/getnode.aspx in BSS Continuity CMS 4.2.22640.0 allows remote attackers to execute arbitrary SQL commands via the nodeid parameter.

CVE-2014-3584
Published: 2014-10-30
The SamlHeaderInHandler in Apache CXF before 2.6.11, 2.7.x before 2.7.8, and 3.0.x before 3.0.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted SAML token in the authorization header of a request to a JAX-RS service.

CVE-2014-3623
Published: 2014-10-30
Apache WSS4J before 1.6.17 and 2.x before 2.0.2, as used in Apache CXF 2.7.x before 2.7.13 and 3.0.x before 3.0.2, when using TransportBinding, does properly enforce the SAML SubjectConfirmation method security semantics, which allows remote attackers to conduct spoofing attacks via unspecified vect...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Follow Dark Reading editors into the field as they talk with noted experts from the security world.