> you can never really be sure what is on the machine, can you?

Yes, but "not sure if it has spyware preinstalled" is much better than "sure it has spyware preinstalled".

If you are not sure if it has spyware installed, you also do not know what the spyware is doing exactly and it could potentially be worse than what the spyware you know of is doing.

I guess I could argue that the former is actually worse. If you know spyware is installed, you can opt to remove it. If you are not aware of the existance of spyware on the system, and it happens to have spyware, you are more vulnerable.

You could of course take the risk and assume that it does not have spyware, and maybe you're right and everything is fine, but you can not _know_ that it is fine.

That is completely inane. You're telling me that a superset of something is worse than the thing itself, which can only be true if "I know it has no spyware" is worse than "I know it has spyware".

The rest of your comment disingenuously assumes that a computer can only have one piece of spyware, and if you know what it is you can remove it and now you're safe. What if there's more spyware you don't know about? And if your remover is completely safe, why not just run it on all your computers, safe or not?

Not to mention that removing spyware from a computer turns it into a computer that might or might not have spyware.

consider that "sure it has spyware installed" also includes "not sure if it has _other, 'unknown-unknown'_ spyware installed". it's strictly worse.

Lenovo have been repeatedly caught doing this. They have shown that they do not want or plan to have this as an opt-in - instead they are trying to hide it better. It's obvious that it's their strategy, not some one time "mistake". (They put it in BIOS even! (!)). http://thehackernews.com/2015/09/lenovo-laptop-virus.html