If you are aware of updated information regarding telemetry and data collection in Windows 7 / 8 / 10, or know improved methods to disable it, please share it.

For Windows 10

General Privacy Guide's for Windows 10 version 1803 and 1809

This guide includes instructions on how to disable or remove various invasive or unwanted aspects of Windows 10. Some of what the guide includes instructions for:

- Basic Windows 10 set-up choices

- How to remove various apps, such as Windows Store, and other native Win 10 apps

- How to disable Cortana via registry

- How to remove various telemetry services and scheduled tasks

Some of what this guide shows instructions for may already be done by programs such as O&O ShutUp10.

For 1803: https://fdossena.com/?p=w10debotnet/index_1803.frag

For 1809: https://fdossena.com/?p=w10debotnet/index_1809.frag

For 1903: https://fdossena.com/?p=w10debotnet/index_1903.frag

Using an edition of Windows 10 that lets you set the telemetry as low as possible

Windows 10 Enterprise and LTSC allow you to use the group policy editor to lower the amount of data-harvesting to Security Only. The Security Only setting may appear in Windows 10 Pro, but setting the group policy to that setting in Pro doesn't have any effect as the Telemetry Only setting is disconnected from any functionality in Pro.

Licenses for Windows 10 Enterprise and LTSC can be purchased for cheap off of eBay.

To set data-collection to Security Only in Windows 10 Enterprise and LTSC:

1. Open the group policy editor

2. Navigate to: Computer Configuration -> Administrative Templates -> Windows Components -> Data Collection and Preview Builds

3. From the list of that sections policies, double-click on the policy titled Allow Telemetry

4. Set the policy to Enabled, and then set the policy to Security Only from the drop-down box

5. Click OK to close the window

O&O ShutUp10

O&O ShutUp10 is an excellent free piece of software that provides many options to reduce the amount of data that is harvested by Microsoft. I strongly recommend using it and reading the description of each item that can be enabled or disabled to stop a lot of unwanted data-harvesting.

Quoted from the developer's website:

Quote

O&O ShutUp10 means you have full control over which comfort functions under Windows 10 you wish to use, and you decide when the passing on of your data goes too far.

 

Using a very simple interface, you decide how Windows 10 should respect your privacy by deciding which unwanted functions should be deactivated.

 

O&O ShutUp10 is entirely free and does not have to be installed – it can be simply run directly and immediately on your PC. And it will not install or download retrospectively unwanted or unnecessary software, like so many other programs do these days!

O&O ShutUp10: https://www.oo-software.com/en/shutup10

Setting up a custom firewall to block Microsoft telemetry servers

Download and install this custom hosts file, and this custom PeerBlock Microsoft IP list which is regularly updated from information obtained via Wireshark: https://encrypt-the-planet.com/windows-10-anti-spy-host-file/

Review this thorough guide (a website account is needed to view it): https://encrypt-the-planet.com/completely-disable-windows-10-telemetry/

Spybot Anti-Beacon

Another good tool for blocking unwanted communication between a PC and Microsoft. It adds a lot of IPs to the Windows hosts file

Spybot Anti-Beacon: https://www.safer-networking.org/spybot-anti-beacon/

Debloat Windows 10

Use the free Debloat Windows 10 script to do as it says in its description:

Quote

#   Description:
# This script blocks telemetry related domains via the hosts file and related
# IPs via Windows Firewall.
#
# Please note that adding these domains may break certain software like iTunes
# or Skype. As this issue is location dependent for some domains, they are not
# commented by default. The domains known to cause issues marked accordingly.

Debloat Windows 10: https://github.com/W4RH4WK/Debloat-Windows-10/blob/master/scripts/block-telemetry.ps1

Manually block Microsoft data-collection servers in your Windows hosts file

There have been suggestions that Windows 10 ignores Microsoft servers in the hosts file, but Spybot Anti-Beacon adds a bunch of Microsoft servers to it and so maybe they know something different.

The Windows hosts file is located at C:\Windows\System32\drivers\etc. To open it, right-click and select "Open with", then choose Notepad and press OK. Then save the file when you're done editing it and then close it.

You can try adding these Microsoft data-collection servers to your Windows hosts file:

Quote

0.0.0.0 134.170.30.202
0.0.0.0 137.116.81.24
0.0.0.0 204.79.197.200
0.0.0.0 23.218.212.69
0.0.0.0 23.218.212.69
0.0.0.0 65.39.117.230
0.0.0.0 65.55.108.23
0.0.0.0 a.ads1.msn.com
0.0.0.0 a.ads2.msads.net
0.0.0.0 a.ads2.msn.com
0.0.0.0 a.rad.msn.com
0.0.0.0 a-0001.a-msedge.net
0.0.0.0 a-0002.a-msedge.net
0.0.0.0 a-0003.a-msedge.net
0.0.0.0 a-0004.a-msedge.net
0.0.0.0 a-0005.a-msedge.net
0.0.0.0 a-0006.a-msedge.net
0.0.0.0 a-0007.a-msedge.net
0.0.0.0 a-0008.a-msedge.net
0.0.0.0 a-0009.a-msedge.net
0.0.0.0 ac3.msn.com
0.0.0.0 ad.doubleclick.net
0.0.0.0 adnexus.net
0.0.0.0 adnxs.com
0.0.0.0 ads.msn.com
0.0.0.0 ads1.msads.net
0.0.0.0 ads1.msn.com
0.0.0.0 aidps.atdmt.com
0.0.0.0 aka-cdn-ns.adtech.de
0.0.0.0 a-msedge.net
0.0.0.0 apps.skype.com
0.0.0.0 az361816.vo.msecnd.net
0.0.0.0 az512334.vo.msecnd.net
0.0.0.0 b.ads1.msn.com
0.0.0.0 b.ads2.msads.net
0.0.0.0 b.rad.msn.com
0.0.0.0 bs.serving-sys.com
0.0.0.0 c.atdmt.com
0.0.0.0 c.msn.com
0.0.0.0 cs1.wpc.v0cdn.net
0.0.0.0 rpt.msn.com
0.0.0.0 arc.msn.com
0.0.0.0 flex.msn.com
0.0.0.0 g.msn.com
0.0.0.0 h1.msn.com
0.0.0.0 cdn.atdmt.com
0.0.0.0 cds26.ams9.msecn.net
0.0.0.0 choice.microsoft.com
0.0.0.0 choice.microsoft.com.nsatc.net
0.0.0.0 compatexchange.cloudapp.net
0.0.0.0 corp.sts.microsoft.com
0.0.0.0 corpext.msitadfs.glbdns2.microsoft.com
0.0.0.0 db3aqu.atdmt.com
0.0.0.0 df.telemetry.microsoft.com
0.0.0.0 diagnostics.support.microsoft.com
0.0.0.0 ec.atdmt.com
0.0.0.0 edge.quantserve.com
0.0.0.0 fe2.update.microsoft.com.akadns.net
0.0.0.0 feedback.microsoft-hohm.com
0.0.0.0 feedback.search.microsoft.com
0.0.0.0 feedback.windows.com
0.0.0.0 fpt.live-partner.com
0.0.0.0 i1.services.social.microsoft.com
0.0.0.0 i1.services.social.microsoft.com.nsatc.net
0.0.0.0 lb1.www.ms.akadns.net
0.0.0.0 live.rads.msn.com
0.0.0.0 m.adnxs.com
0.0.0.0 m.hotmail.com
0.0.0.0 msedge.net
0.0.0.0 msnbot-65-55-108-23.search.msn.com
0.0.0.0 msntest.serving-sys.com
0.0.0.0 oca.telemetry.microsoft.com
0.0.0.0 oca.telemetry.microsoft.com.nsatc.net
0.0.0.0 onesettings-bn2.metron.live.com.nsatc.net
0.0.0.0 onesettings-cy2.metron.live.com.nsatc.net
0.0.0.0 onesettings-db5.metron.live.com.nsatc.net
0.0.0.0 onesettings-hk2.metron.live.com.nsatc.net
0.0.0.0 pre.footprintpredict.com
0.0.0.0 preview.msn.com
0.0.0.0 pricelist.skype.com
0.0.0.0 rad.live.com
0.0.0.0 rad.msn.com
0.0.0.0 redir.metaservices.microsoft.com
0.0.0.0 reports.wes.df.telemetry.microsoft.com
0.0.0.0 s.gateway.messenger.live.com
0.0.0.0 s0.2mdn.net
0.0.0.0 schemas.microsoft.akadns.net
0.0.0.0 secure.adnxs.com
0.0.0.0 secure.flashtalking.com
0.0.0.0 services.wes.df.telemetry.microsoft.com
0.0.0.0 settings.data.glbdns2.microsoft.com
0.0.0.0 settings-sandbox.data.microsoft.com
0.0.0.0 settings-win.data.microsoft.com
0.0.0.0 sls.update.microsoft.com.akadns.net
0.0.0.0 sqm.df.telemetry.microsoft.com
0.0.0.0 sqm.telemetry.microsoft.com
0.0.0.0 sqm.telemetry.microsoft.com.nsatc.net
0.0.0.0 ssw.live.com
0.0.0.0 static.2mdn.net
0.0.0.0 statsfe1.ws.microsoft.com
0.0.0.0 statsfe2.update.microsoft.com.akadns.net
0.0.0.0 statsfe2.ws.microsoft.com
0.0.0.0 survey.watson.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com.nsat­c.net
0.0.0.0 telecommand.telemetry.microsoft.com.nsatc.net
0.0.0.0 telemetry.appex.bing.net
0.0.0.0 telemetry.appex.bing.net:443
0.0.0.0 telemetry.microsoft.com
0.0.0.0 telemetry.urs.microsoft.com
0.0.0.0 v10.vortex-win.data.microsoft.com
0.0.0.0 v10.vortex-win.data.metron.live.com.nsatc.net
0.0.0.0 view.atdmt.com
0.0.0.0 vortex.data.glbdns2.microsoft.com
0.0.0.0 vortex.data.microsoft.com
0.0.0.0 vortex.data.metron.live.com.nsatc.net
0.0.0.0 vortex-bn2.metron.live.com.nsatc.net
0.0.0.0 vortex-cy2.metron.live.com.nsatc.net
0.0.0.0 vortex-db5.metron.live.com.nsatc.net
0.0.0.0 vortex-hk2.metron.live.com.nsatc.net
0.0.0.0 vortex-sandbox.data.microsoft.com
0.0.0.0 vortex-win.data.microsoft.com
0.0.0.0 vortex-win.data.metron.live.com.nsatc.net
0.0.0.0 watson.live.com
0.0.0.0 watson.microsoft.com
0.0.0.0 watson.ppe.telemetry.microsoft.com
0.0.0.0 watson.telemetry.microsoft.com
0.0.0.0 watson.telemetry.microsoft.com.nsatc.net
0.0.0.0 wes.df.telemetry.microsoft.comnet
0.0.0.0 wes.df.telemetry.microsoft.com

Disconnect Microsoft telemetry server connections

From: https://docs.microsoft.com/en-us/windows/privacy/configure-windows-diagnostic-data-in-your-organization   (US page)

And:   https://docs.microsoft.com/en-gb/windows/privacy/configure-windows-diagnostic-data-in-your-organization   (UK page)

Quote

 

Endpoints

The Microsoft Data Management Service routes data back to our secure cloud storage. Only Microsoft personnel with a valid business justification are permitted access.

The following table defines the endpoints for Connected User Experiences and Telemetry component:

 

Windows release	Endpoint
Windows 10, versions 1703 and 1709	Diagnostics data: v10.vortex-win.data.microsoft.com/collect/v1              Functional: v20.vortex-win.data.microsoft.com/collect/v1              Windows Advanced Threat Protection is country specific and the prefix changes by country for example: de.vortex-win.data.microsoft.com/collect/v1              settings-win.data.microsoft.com
Windows 10, version 1607	v10.vortex-win.data.microsoft.com              settings-win.data.microsoft.com

 

 

The following table defines the endpoints for other diagnostic data services:

 

Service	Endpoint
Windows Error Reporting	watson.telemetry.microsoft.com
	ceuswatcab01.blob.core.windows.net
	ceuswatcab02.blob.core.windows.net
	eaus2watcab01.blob.core.windows.net
	eaus2watcab02.blob.core.windows.net
	weus2watcab01.blob.core.windows.net
	weus2watcab02.blob.core.windows.net
Online Crash Analysis	oca.telemetry.microsoft.com
OneDrive app for Windows 10	vortex.data.microsoft.com/collect/v1

 

Delete Telemetry Services
Delete Remnants of Diagtrack and Cortana
Task Scheduler Block
IP Re-Routing
Hosts File Block
Packages Uninstall Lists
PEERBLOCK for Blocking Telemetry
Windows 10 IP Range Block List
Apps Online Uninstall

Link: [REPO] Windows 10 TELEMETRY REPOSITORY

Disable Windows 10 Telemetry Service

Disclaimer: This suggestion has been reported to be deprecated and so likely has no effect on the amount of telemetry Windows 10 collects

It was previously suggested that some Windows 10 telemetry and data collection could be disabled by doing the following:

Go to Services and Applications -> Services in the left pane. In the services list, disable the following service:

Connected User Experiences and Telemetry service     (called "Diagnostics Tracking Service" in Windows 10 version 1151 and earlier)
dmwappushsvc

Again, doing this likely has no effect on the level of telemetry that is collected.

For Windows 7 and 8

The surest way to run Windows 7 telemetry-free is to install Windows 7 from an early-to-mid 2015 ISO and then permanently disable Windows Update.

I have a June 2015 ISO of Windows 7 available for download in this post:

Block Microsoft data-collection servers in your Windows hosts file

For this, follow the same instructions mentioned in the Windows 10 section of this guide.

Windows 7 / 8(.1): Guidance on avoiding telemetry-containing updates including a list of security-only updates with download links for each (updated February 2019):

https://www.askwoody.com/forums/topic/2000003-ongoing-list-of-group-b-monthly-updates-for-win7-and-8-1/

Windows 7 / 8(.1): A thorough guide to identifying telemetry updates, removing the Windows telemetry service, and blocking Microsoft's telemetry servers

https://www.ghacks.net/2017/02/11/blocking-telemetry-in-windows-7-and-8-1/

Aegis script: Disables, uninstalls, and blocks a bunch of Windows 7 / 8 telemetry & data-collection updates

Since around mid-2015 (and possibly a bit earlier), Microsoft has been back-adding telemetry harvesting into Windows 7 and 8(.1) through the updates that are installed by Windows Update. 

These updates are not required, and can be declined from installing and also will not be downloaded and installed if Windows Update is disabled. But, if a person has automatic updates enabled these updates will be automatically installed. If a person doesn't want these to be installed, they can be quickly uninstalled and blocked from being re-downloaded and installed by running a script that knows which updates to permanently block from being searched-for by Windows Update, and from being downloaded and installed.

Aegis Script is one such script, though it was last updated May 18, 2016.

The Aegis script will also remove and block any prompts in Windows 7 and 8 about downloading and installing Windows 10.

Original script link, and discussion: Script for Win 7/8 to block all telemetry updates and Windows 10 upgrade components

Direct-download backup link for Aegis v1.18: https://mega.nz/#!dhExAbBa!fehYhbTNz5dIBh72psfXLfwv9wMk0uhMpGli-c0pBn4

For a list of the Windows 7 and 8(.1) updates that the Aegis script addresses, and also of the post Aegis scrip Windows updates to avoid because they have telemetry in them, see the bottom of this post.

For identifying data-collection-containing updates since 2016, here is an updated list of which updates to avoid or uninstall: https://pastebin.com/jWX2zHdr

------------------------------------------------

Overview of what the Aegis script does

Direct-download backup link for Aegis v1.18: https://mega.nz/#!dhExAbBa!fehYhbTNz5dIBh72psfXLfwv9wMk0uhMpGli-c0pBn4

(This information was retrieved from an archived version of the voat.co page discussing Aegis, via http://pastebin.com/1Xb2h39Z, and was last updated March 27, 2016, and so will not mention any changes to the script after that time)

Description: Blocks 201 bad hosts, change windows update to check/notify (do not download/install), disable automatic delivery of internet explorer via windows update, disable ceip/gwx/skydrive(aka onedrive)/spynet/telemetry/wifisense, disable remote registry, disable 31 scheduled tasks, disable windows 10 download directory, remove diagtrack, sync time to ntp.org, hide/uninstall 50 kb updates (see below).

Directions: Download, unzip, disable anti-virus, right click on aegis.cmd, click "run as administrator", follow on-screen instructions.

Note: If unable to uninstall some kb's this post may help.

Internet Explorer:

Some updates which may contain critical security patches for ie, as well as automated delivery of ie and related updates, will be blocked. Due to the obvious security risk posed by running an unpatched browser we strongly advise to uninstall ie. If you plan to continue to use ie you should probably not run this script - or manually patch and do so at your own risk.

Liability:

All code except sed and setacl is provided as open source so you can look and see for yourself what it does. It has been thoroughly tested on my own systems and scanned with VirusTotal, and to the best of my knowledge it does not contain any harmful or malicious elements. However I assume no liability for any problems so use it at your own risk.

License:

There is no official license - you are welcome to modify and share my code and you do not have to give me credit. I do appreciate any feedback and I will give you credit if I use your ideas. This script is the product of a collaborative effort and does not belong to any one person.

Windows Update:

This script will not block Windows Update however it will change your Windows Update settings to 'check/notify but do not download/install'. If you have problems getting Windows Update to work properly after running the script you may need to run the Windows Update Troubleshooter or the System Update Readiness Tool. If you have recently installed updates and have not yet rebooted you should reboot before running the script. If you are on a fresh install you may want to install all updates before running Aegis for the first time, otherwise it may take a long time to update.

Here is a possibly-incomplete listing of updates that Aegis removes and blocks, using the format:

kb update ID

update description

kb971033

update for windows activation technologies

kb2882822

update for adding itracerelogger interface support

kb2902907

description not available, update was pulled by microsoft

kb2922324

description not available, update was pulled by microsoft

kb2952664

update for upgrading windows 7

Ugh, screw this.

1. [kb2976978](https://support.microsoft.com/en-us/kb/2976978) | update for windows 8.1 and windows 8
2. [kb2977759](https://support.microsoft.com/en-us/kb/2977759) | update for windows 7 rtm
3. [kb2990214](https://support.microsoft.com/en-us/kb/2990214) | update that enables you to upgrade from windows 7 to a later version of windows
4. [kb3012973](https://support.microsoft.com/en-us/kb/3012973) | upgrade to windows 10
5. [kb3014460](https://support.microsoft.com/en-us/kb/3014460) | update for windows insider preview / upgrade to windows 10
6. [kb3015249](https://support.microsoft.com/en-us/kb/3015249) | update that adds telemetry points to consent.exe in Windows 8.1 and Windows 7
7. [kb3021917](https://support.microsoft.com/en-us/kb/3021917) | update for windows 7 sp1 for performance improvements
8. [kb3022345](https://support.microsoft.com/en-us/kb/3022345) | update for customer experience and diagnostic telemetry
9. [kb3035583](https://support.microsoft.com/en-us/kb/3035583) | update installs get windows 10 app in windows 8.1 and windows 7 sp1
10. [kb3042058](https://support.microsoft.com/en-us/kb/3042058) | update for cipher suite priority order (contains winlogon spying elements)
11. [kb3044374](https://support.microsoft.com/en-us/kb/3044374) | update that enables you to upgrade from windows 8.1 to windows 10
12. [kb3046480](https://support.microsoft.com/en-us/kb/3046480) | update for migrating .net when upgrading to later version of windows
13. [kb3058168](https://support.microsoft.com/en-us/kb/3058168) | activate windows 10 from windows 8 or windows 8.1, and windows server 2012 or windows server 2012 r2 kms hosts
14. [kb3064683](https://support.microsoft.com/en-us/kb/3064683) | update for windows 8.1 oobe modifications to reserve windows 10
15. [kb3065987](https://support.microsoft.com/en-us/kb/3065987) | update for windows update client for windows 7 and windows server 2008 r2 july 2015
16. [kb3065988](https://support.microsoft.com/en-us/kb/3065988) | update for windows update client for windows 8.1 and windows server 2012 r2 july 2015
17. [kb3068708](https://support.microsoft.com/en-us/kb/3068708) | update for customer experience and diagnostic telemetry
18. [kb3072318](https://support.microsoft.com/en-us/kb/3072318) | update for windows 8.1 oobe modifications to reserve windows 10
19. [kb3074677](https://support.microsoft.com/en-us/kb/3074677) | compatibility update for upgrading to windows 10
20. [kb3075249](https://support.microsoft.com/en-us/kb/3075249) | update that adds telemetry points to consent.exe in windows 8.1 and windows 7
21. [kb3075851](https://support.microsoft.com/en-us/kb/3075851) | update for windows update client for windows 7 and windows server 2008 r2 august 2015
22. [kb3075853](https://support.microsoft.com/en-us/kb/3075853) | update for windows update client for windows 8.1 and windows server 2012 r2 august 2015
23. [kb3080149](https://support.microsoft.com/en-us/kb/3080149) | update for customer experience and diagnostic telemetry
24. [kb3081437](https://support.microsoft.com/en-us/kb/3081437) | august 18, 2015, compatibility update for upgrading to windows 10
25. [kb3081454](https://support.microsoft.com/en-us/kb/3081454) | september 8, 2015, compatibility update for upgrading to windows 10
26. [kb3081954](https://support.microsoft.com/en-us/kb/3081954) | update for work folders improvements in windows 7 sp1 (contains telemetry elements)
27. [kb3083324](https://support.microsoft.com/en-us/kb/3083324) | update for windows update client for windows 7 and windows server 2008 r2 september 2015
28. [kb3083325](https://support.microsoft.com/en-us/kb/3083325) | update for windows update client for windows 8.1 and windows server 2012 r2 september 2015
29. [kb3083710](https://support.microsoft.com/en-us/kb/3083710) | update for windows update client for windows 7 and windows server 2008 r2 october 2015
30. [kb3083711](https://support.microsoft.com/en-us/kb/3083711) | update for windows update client for windows 8.1 and windows server 2012 r2 october 2015
31. [kb3086255](https://support.microsoft.com/en-us/kb/3086255) | september 8, 2015, security update for the graphics component in windows (breaks safedisc)
32. [kb3088195](https://support.microsoft.com/en-us/kb/3088195) | october 13, 2015, security update for windows kernel (reported to contain a keylogger)
33. [kb3090045](https://support.microsoft.com/en-us/kb/3090045) | windows update for reserved devices in windows 8.1 or windows 7 sp1 (windows 10 upgrade elements)
34. [kb3093983](https://support.microsoft.com/en-us/kb/3093983) | security update for internet explorer: october 13, 2015 (ie spying elements)
35. [kb3102810](https://support.microsoft.com/en-us/kb/3102810) | windows 10 upgrade elements
36. [kb3102812](https://support.microsoft.com/en-us/kb/3102812) | windows 10 upgrade elements
37. [kb3112343](https://support.microsoft.com/en-us/kb/3112343) | update for windows update client for windows 7 and windows server 2008 r2 december 2015
38. [kb3112336](https://support.microsoft.com/en-us/kb/3112336) | update for windows update client for windows 8.1 and windows server 2012 r2 december 2015
39. [kb3123862](https://support.microsoft.com/en-us/kb/3123862) | updated capabilities to upgrade windows 8.1 and windows 7
40. [kb3135445](https://support.microsoft.com/en-us/kb/3135445) | windows update client for windows 7 and windows server 2008 r2: february 2016
41. [kb3135449](https://support.microsoft.com/en-us/kb/3135449) | windows update client for windows 8.1 and windows server 2012 r2: february 2016
42. [kb3138612](https://support.microsoft.com/en-us/kb/3138612) | windows update client for windows 7 and windows server 2008 r2: march 2016
43. [kb3138615](https://support.microsoft.com/en-us/kb/3138615) | windows update client for windows 8.1 and windows server 2012 r2: march 2016
44. [kb3139929](https://support.microsoft.com/en-us/kb/3139929) | security update for internet explorer: march 8, 2016
45. [kb3146449](https://support.microsoft.com/en-us/kb/3146449) | updated internet explorer 11 capabilities to upgrade windows 8.1 and windows 7