Another built-in spyware application detected on Lenovo computers

The restored from the factory Thinkpad with preinstalled Windows 7 in the scheduler has an application that turns on once a day and collects data about how you use your computer. After that, all information is sent to the analytics company. Information about data collection is present in the user agreement, but is buried very deeply.

Over the past year, this is the third scandal about the pre-installed spyware in which Lenovo is involved: first, the company was caught on the Superfish installation, which grossly violated the user's security by installing the MitM certificate. Then they were caught loading non-removable self-installing software in the BIOS, to a place intended for custom drivers.

This scandal is particularly noteworthy in terms of the premium brand Thinkpad, purchased from IBM.
')
It is worth noting that in the 21st century, if you are not ready to pay for a product, then you yourself are a product. In the case of Lenovo devices, it seems that even if you pay for the product, it is still a product.

The task that made it pay attention to this is called the “Lenovo Customer Feedback Program 64”. In the description in the scheduler it appears: "This task uploads Customer Feedback Program data to Lenovo".

The task runs the Lenovo.TVT.CustomerFeedback.Agent.exe program located in C: \ Program Files (x86) \ Lenovo \ Customer Feedback Program. Other files in this folder:

Lenovo.TVT.CustomerFeedback.Agent.exe.config, Lenovo.TVT.CustomerFeedback.InnovApps.dll and Lenovo.TVT.CustomerFeedback.OmnitureSiteCatalyst.dll.
According to Wikipedia, Omniture is an online marketing and web analytics company, and SiteCatalyst is their client-side web analytics application.

Maybe on ThinkPads and no additional ads are shown, but monitoring and tracking data is being collected.

Yours, Servilon Team