A Traffic Analysis of Windows 10

Discussion in 'Windows 10' started by Rite, Aug 23, 2015.

  1. Rite

    Rite MDL Member

    Sep 26, 2009
    139
    21
    10
  2. abbodi1406

    abbodi1406 MDL KB0000001

    Feb 19, 2011
    8,100
    27,027
    270
    Old posted info, by weeks

    move on people
     
  3. Rite

    Rite MDL Member

    Sep 26, 2009
    139
    21
    10
    ====================================

    How do YOU disable telemetry?
     
  4. coromonadalix

    coromonadalix MDL Senior Member

    Jul 21, 2009
    426
    85
    10
    Disabled mine with install wim tweak ... removed packages
     
  5. Rite

    Rite MDL Member

    Sep 26, 2009
    139
    21
    10
    MDL link please.
     
  6. manix

    manix MDL Junior Member

    Aug 18, 2012
    80
    20
    0
    #6 manix, Aug 23, 2015
    Last edited: Aug 23, 2015
    That's fake. Please stop posting it.
     
  7. murphy78

    murphy78 MDL DISM Enthusiast

    Nov 18, 2012
    6,682
    10,139
    210
    #7 murphy78, Aug 23, 2015
    Last edited by a moderator: Apr 20, 2017
    There are 2 telemetry keys you need to be aware of.
    One is for normal compiled programs.
    The other is for Windows Apps.
    Here are 2 scripts you can use to disable them:

    Telemetry_enable_disable.cmd:
    Code:
    @echo off
    
    
    title Disable/Enable Windows Telemetry
    color 1f
    :Begin UAC check and Auto-Elevate Permissions
    :-------------------------------------
    REM  --> Check for permissions
    >nul 2>&1 "%SYSTEMROOT%\system32\cacls.exe" "%SYSTEMROOT%\system32\config\system"
    
    
    REM --> If error flag set, we do not have admin.
    if '%errorlevel%' NEQ '0' (
    echo:
    echo   Requesting Administrative Privileges...
    echo   Press YES in UAC Prompt to Continue
    echo:
    
    
        goto UACPrompt
    ) else ( goto gotAdmin )
    
    
    :UACPrompt
        echo Set UAC = CreateObject^("Shell.Application"^) > "%temp%\getadmin.vbs"
        echo UAC.ShellExecute "%~s0", "", "", "runas", 1 >> "%temp%\getadmin.vbs"
    
    
        "%temp%\getadmin.vbs"
        exit /B
    
    
    :gotAdmin
        if exist "%temp%\getadmin.vbs" ( del "%temp%\getadmin.vbs" )
        pushd "%CD%"
        CD /D "%~dp0"
    :--------------------------------------
    
    
    :Check the key:
    (reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection" /v "AllowTelemetry"|find /i "0x0")>NUL 2>NUL
    if %errorlevel% NEQ 0 GOTO :KEYOFF
    
    
    :KEYON
    echo ============================================================
    echo Windows Telemetry currently disabled.
    echo Would you like to re-enable it? (Y/N)
    echo ============================================================
    echo.
    choice /c yn /n
    If %ERRORLEVEL% NEQ 1 GOTO :QUIT
    
    
    Echo Deleting Telemetry Registry key
    REG DELETE "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection" /v "AllowTelemetry" /F>NUL 2>NUL
    IF %ERRORLEVEL% NEQ 0 GOTO :ERROR
    Echo.
    
    
    Echo Windows Telemetry enabled
    Echo.
    goto :QUIT
    
    
    
    
    :KEYOFF
    echo ============================================================
    echo Windows Telemetry is currently enabled.
    echo Would you like to disable it? (Y/N)
    echo ============================================================
    echo.
    choice /c yn /n
    If %ERRORLEVEL% NEQ 1 GOTO :QUIT
    
    
    Echo Changing Registry key
    reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection" /v "AllowTelemetry">NUL 2>NUL
    if %errorlevel% equ 1 REG DELETE "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection" /v "AllowTelemetry" /F>NUL 2>NUL
    REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection" /v "AllowTelemetry" /D 0 /T REG_DWORD /F>NUL 2>NUL
    IF %ERRORLEVEL% NEQ 0 GOTO :ERROR
    Echo.
    
    
    Echo Windows Telemetry disabled
    Echo.
    goto :QUIT
    
    
    
    
    :QUIT
    echo ============================================================
    echo Press any key to exit...
    echo ============================================================
    pause>NUL
    goto :EOF
    
    
    :ERROR
    echo ============================================================
    echo The script ran into an unexpected error setting reg key.
    echo Press any key to exit...
    echo ============================================================
    pause>NUL
    goto :EOF
    App_Telemetry_Enable_Disable.cmd:
    Code:
    @echo off
    
    
    title Disable/Enable Windows App Telemetry
    color 1f
    :Begin UAC check and Auto-Elevate Permissions
    :-------------------------------------
    REM  --> Check for permissions
    >nul 2>&1 "%SYSTEMROOT%\system32\cacls.exe" "%SYSTEMROOT%\system32\config\system"
    
    
    REM --> If error flag set, we do not have admin.
    if '%errorlevel%' NEQ '0' (
    echo:
    echo   Requesting Administrative Privileges...
    echo   Press YES in UAC Prompt to Continue
    echo:
    
    
        goto UACPrompt
    ) else ( goto gotAdmin )
    
    
    :UACPrompt
        echo Set UAC = CreateObject^("Shell.Application"^) > "%temp%\getadmin.vbs"
        echo UAC.ShellExecute "%~s0", "", "", "runas", 1 >> "%temp%\getadmin.vbs"
    
    
        "%temp%\getadmin.vbs"
        exit /B
    
    
    :gotAdmin
        if exist "%temp%\getadmin.vbs" ( del "%temp%\getadmin.vbs" )
        pushd "%CD%"
        CD /D "%~dp0"
    :--------------------------------------
    
    
    :Check the key:
    (reg query "HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\PushNotifications" /v "ToastEnabled"|find /i "0x0")>NUL 2>NUL
    if %errorlevel% NEQ 0 GOTO :KEYOFF
    
    
    :KEYON
    echo ============================================================
    echo Windows App Telemetry currently disabled.
    echo Would you like to re-enable it? (Y/N)
    echo ============================================================
    echo.
    choice /c yn /n
    If %ERRORLEVEL% NEQ 1 GOTO :QUIT
    
    
    Echo Changing Telemetry Registry key
    REG ADD "HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\PushNotifications" /v "ToastEnabled" /D 1 /T REG_DWORD /F>NUL 2>NUL
    IF %ERRORLEVEL% NEQ 0 GOTO :ERROR
    Echo.
    
    
    Echo Windows App Telemetry enabled
    Echo.
    goto :QUIT
    
    
    
    
    :KEYOFF
    echo ============================================================
    echo Windows App Telemetry is currently enabled.
    echo Would you like to disable it? (Y/N)
    echo ============================================================
    echo.
    choice /c yn /n
    If %ERRORLEVEL% NEQ 1 GOTO :QUIT
    
    
    Echo Changing App Telemetry Registry key
    REG ADD "HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\PushNotifications" /v "ToastEnabled" /D 0 /T REG_DWORD /F>NUL 2>NUL
    IF %ERRORLEVEL% NEQ 0 GOTO :ERROR
    Echo.
    
    
    Echo Windows App Telemetry disabled
    Echo.
    goto :QUIT
    
    
    
    
    :QUIT
    echo ============================================================
    echo Press any key to exit...
    echo ============================================================
    pause>NUL
    goto :EOF
    
    
    :ERROR
    echo ============================================================
    echo The script ran into an unexpected error setting reg key.
    echo Press any key to exit...
    echo ============================================================
    pause>NUL
    goto :EOF
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  8. Pyr3x

    Pyr3x MDL Junior Member

    Oct 4, 2012
    70
    5
    0
    Do we have a "master copy" of all the host entries we need to make to block most of Microsofts outbound DNS requests? I already took what I could find in almost every tool I can find that disables telemetry. I setup a DNS server and blocked all of these at the server. I'd like to ensure I have all the hosts. It would be nice if we could start a project tracker for it. LMAO
     
  9. Lucas Rey

    Lucas Rey MDL Member

    Feb 16, 2010
    111
    22
    10
    #9 Lucas Rey, Aug 23, 2015
    Last edited by a moderator: Apr 20, 2017
  10. murphy78

    murphy78 MDL DISM Enthusiast

    Nov 18, 2012
    6,682
    10,139
    210
    #10 murphy78, Aug 23, 2015
    Last edited by a moderator: Apr 20, 2017
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  11. Nimbus2000

    Nimbus2000 MDL Member

    May 5, 2010
    198
    104
    10
    I simply DO NOT run Windows 10 on ANY computer with personal information. I have Win 10 installed on 1 computer for testing purposes. All of my other computers have Linux and Win 7. Unfortunately, now that Microsot is adding spyware to older versions of Windows, I can no longer trust them either. :(
     
  12. AzTec

    AzTec MDL Member

    Aug 4, 2009
    118
    27
    10
    #12 AzTec, Aug 23, 2015
    Last edited: Aug 23, 2015
    win 10 pro insider can download what it wants, tis only test machine, very little net use, main pc win se7en sp1 out of the box, no updated added, except to run 8 core processor, win se7en wont run them all.

    You never here about peeps complaing about facebook or any of the other like them, and they would be far worse, and nope dont have them either, but still download over 100gb mth without the use of torrents.

    Win Ten is no better that I have found, so still sticking with se7en

    Think about it, 80,000,000 pc's with ten and they are going to find you..............what 2050
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  13. Lucas Rey

    Lucas Rey MDL Member

    Feb 16, 2010
    111
    22
    10
    Don't know why, but in my case that's the result (windows 10 pro). Setting to 0 to disable DataCollection will result in "Some settings are managed by your organization" message, plus some settings disabled. Restoring to value "3" or just delete the "AllowTelemetry" value will fix the settings window.
     
  14. 10aout

    10aout MDL Novice

    Aug 8, 2015
    17
    2
    0
    Sure, because this is exactly what is happening: writing the Policy key is what does group policy, on domain-joined computers at login time, based on the instructions stored on the organization server. This is a tool available since Windows 2000 and it is often used within enterprises.
     
  15. murphy78

    murphy78 MDL DISM Enthusiast

    Nov 18, 2012
    6,682
    10,139
    210
    You might not have very high computer comprehension, so let me explain.

    1- these reg keys are modified by the group policy editor
    2- the group policy editor manages either computer or user settings to override defaults
    3- the settings app explains that they've been "managed" which is what is done by the group policy editor

    It's not rocket science.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...