List of Windows 7 telemetry updates to avoid

Discussion in 'privacy general' started by Stefan Froberg, Aug 24, 2015.

  1. morph000

    morph000 Registered Member

    Joined:
    Apr 13, 2003
    Posts:
    21
    Well...no...
    Once again HOW do you know what any component does? How, for example, would you know if the print services driver also records keyboard input and sends it to M$.
    YOU DON'T. We can't simply assume a new service is a bad one or that a process does solely what its name suggests it does.
    A lot of telemetry in W10 is hard coded so trying to block anything M$ via the HOSTS file is a waste of time.
    A router based intercept method would be the way to go but the address space used by M$ would likely be way too big for the average router.

    Here's a *dumb* idea - cable netowrk to an older pc and only allow internet access via that pc and have that pc configured to block all M$ addresses.
     
  2. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Well off course you don't know what some component does in background. You can switch to Linux hoping that somebody is checking the source code and that they will inform other users of every suspicious line of code they find.
    Blocking all MS related IPs (that constantly change) is too much work for me personally. If I were suspicious of every bit that is sent to MS servers, I wouldn't use their products.
     
  3. chrcol

    chrcol Registered Member

    Joined:
    Apr 19, 2006
    Posts:
    982
    Location:
    UK
    kb3035583 is the gwx update.

    The problem is MS have reissued it 5 times since last july, every reissue unhides it.

    The GWX tool makes the PC appear as not compatible and stops the update been offered, it also adjusts a policy on the machine to deny OS updates.
     
  4. wildman

    wildman Registered Member

    Joined:
    Feb 18, 2004
    Posts:
    2,185
    Location:
    Home on the range.
    Microsoft does everything it can to install what it wants and not necessarily what the individual wants on one's machine. Try and uninstall an update almost requires one to have a PHD in computer technology and even then one may not be able to accomplish it. Nope it is time for Microsoft to stop their silly games or for the public to say by by Microsoft and go with Linux.
    Always,
    Wildman
     
  5. Chigwells

    Chigwells Registered Member

    Joined:
    Jan 23, 2013
    Posts:
    6
    I'm late reading this thread guess. I though I was doing well avoiding Win10 enforcement, but I just discovered kb3075249 on my machine, a Win8.1 laptop.

    In my updates history I see I allowed it to install 14th March. When I right-click it there is no possibility to uninstall. I tried uninstalling via elevated command prompt and PowerShell, via wusa /uninstall /kb:3075249 /quiet /norestart, with no joy. I get the dialogue that this update is required!

    I've search around and haven't been able to find any anyone else with a similar issue - refusing to uninstall, so apologies in advance if I've missed obvious posts.

    Can anyone advise how to remove it? Thanks in advance.

    Edit: I should mention that I have now have Windows Update set to let me select updates, and also have GWX installed. Unfortunately I only put all that in place at the end of March.



    date installed.png

    cannot uninstall.png
     
    Last edited: Jun 19, 2016
  6. gggirlgeek

    gggirlgeek Registered Member

    Joined:
    Mar 26, 2014
    Posts:
    13
    Location:
    USA
    @Chigwells: Try logging in to the ADMINISTRATOR account (not yours.) Enable it through Computer Management. Then make sure you're running any scripts as Admin.

    Try disabling the protection options in GWX temporarily. If that doesn't work uninstall GWX. Disable your internet adapter first so no telemetry gets through. Enable GWX again after the update is gone. (I haven't tried this though.)

    Also make sure all other security software is disabled including Windows defender, which is easy to forget about.

    Otherwise you'll have to roll back to a Restore Point or image backup of Windows before the update.
     
  7. TheWindBringeth

    TheWindBringeth Registered Member

    Joined:
    Feb 29, 2012
    Posts:
    2,171
  8. Stefan Froberg

    Stefan Froberg Registered Member

    Joined:
    Jul 30, 2014
    Posts:
    747
    Microsoft is really pushing it.

    I read the same thing from

    http://www.ghacks.net/2016/08/16/microsoft-to-push-all-in-one-windows-updates/

    So from october onward, home users can't cherry pick individual patches and only enterprise level windowses have choice of using that other bundle that contains just security patches.

    That ghacks.net article mentions WSUS Offline Update tool that might ( o_O ) be of help if all you want is just security updates without nothing extra
     
  9. lexx

    lexx Registered Member

    Joined:
    Sep 21, 2016
    Posts:
    1
    Location:
    UK
    i know this has been going on for some time but why dont you just untick recommended updates in windows 7/8 , stops the GWX from coming onto back onto the systems i service (after i have ran me batch file to remove telemetry updates) and stops all the telemetry updates as well from been installed

    use WSUS Offline Update tool or use linux os if you want control over updates

    the one off manual cumulative rollup update they are releasing (470mb or so) are only for security updates, so 1 update instead of 150 updates, recommend keeping computer offline install the may cumulative 470mb security rollup update then start the internet afterwards as your system will be sitting there for 30 minutes to 8 hours checking for updates depending on CPU type and speed (like mine is right now but its stuck at downloading stage and will for next 2-3 hours) only have a i7-920 so not much faster or same speed than current released AMD cpus

    don't really like windows 10 update model as you can't choose what updates you dont want, not easily any way, harder to support in a business environment as an upgrade can brake the software on the systems or brick a system or can tie it up for hours when it does an anniversary upgrade (in order as posted), wish they released LTSB version one you could actually Buy as individual license instead of having to use 3rd party KMS activation service (not strictly official.. but systems do have pro keys on them) or have mass license (i assume pay MS yearly for Volume license) i been testing it in a VM seems to work well as it like using a striped down version of windows 7
     
  10. seti

    seti Registered Member

    Joined:
    Oct 10, 2016
    Posts:
    10
    Location:
    california
    Thanks for sharing brother, keep up the good work.
     
  11. TS4H

    TS4H Registered Member

    Joined:
    Nov 5, 2013
    Posts:
    523
    Location:
    Australia
    I am sorry Seti i am no longer maintaing that list. Other and more knowledgeable people have a much better list and script for these KB's. Please lookup user "TheWindBringeth" in this forum however. I am not sure if he is still maintaining a list but he would be the best person to ask and thank.

    Regards.
     
  12. TheWindBringeth

    TheWindBringeth Registered Member

    Joined:
    Feb 29, 2012
    Posts:
    2,171
    I have my notes through October 4th, which isn't the same as a list of things people should remove:
    Code:
    <!doctype html>
    <html>
    <head>
    <meta charset="utf-8">
    <title>Windows Update Notes</title>
    <style type="text/css">
    body {font: 13px arial, helvetica, sans-serif;}
    table.data {border-collapse:collapse;}
    table.data td, table.data th {text-align:left; border:1px solid black; padding:3px;}
    table.data th {background-color:#7C96C3; color:white;}
    table.data tr:nth-child(odd) td {background-color:#f3f5fa;}
    td {vertical-align:top; white-space:nowrap;}
    td.cmdDesc {padding-right:8px;}
    div.hdr {font-weight:bold; margin-bottom:6px;}
    div.topgap {margin-top:8px;}
    div#footnotes {visibility:hidden;}
    </style>
    <script type="text/javascript">
    var verInfoStr = 'Windows Update Notes - October 4 2016';
    
    var updatesByYearTbl = [
      [ '979198', '2009'],
      ['2492172', '2010'],
      ['2662694', '2011'],
      ['2800436', '2012'],
      ['2921911', '2013'],
      ['3028013', '2014'],
      ['3132806', '2015'],
      [ '894199', '2016'],
    ];
    
    var updatesOfInterestTbl = [
      //  KB      Replaces    7    8    UC   Description
      [ '971033',        '', 'Y', ' ', ' ', 'Update for Windows Activation Technologies'],
      ['2876229',        '', 'Y', 'Y', ' ', 'Skype for Microsoft Update'],
      ['2902907',        '', ' ', ' ', ' ', 'NOT FOUND, possibly Microsoft Security Essentials related'],
      ['2922324',        '', ' ', ' ', ' ', 'NOT FOUND, no ideas either'],
      ['2952664',        '', 'Y', ' ', ' ', 'Compatibility update for upgrading Windows 7'],
      ['2976978',        '', ' ', 'Y', ' ', 'Compatibility update for Windows 8.1 and Windows 8 '],
      ['2976987',        '', ' ', ' ', ' ', 'NOT FOUND, looks like it might be a typo'],
      ['2977759',        '', 'Y', ' ', ' ', 'Compatibility update for upgrading Windows 7'],
      ['2990214',        '', 'Y', ' ', 'Y', 'Update that enables you to upgrade from Windows 7 to a later version of Windows'],
      ['3008188',        '', ' ', 'Y', 'Y', 'November 2014 Windows Update client improvements in Windows 8.1 or Windows Server 2012 R2'],
      ['3008273',        '', ' ', 'Y', 'Y', 'An update to enable an automatic update from Windows 8 to Windows 8.1'],
      ['3012973',        '', ' ', ' ', ' ', 'NOT FOUND, possibly the Upgrade to Windows 10 Pro'],
      ['3015249',        '', ' ', ' ', ' ', 'NOT FOUND, no ideas either'],
      ['3021917',        '', 'Y', ' ', ' ', 'Update to Windows 7 SP1 for performance improvements'],
      ['3022345',        '', 'Y', 'Y', ' ', 'Update for customer experience and diagnostic telemetry'],
      ['3035583',        '', 'Y', 'Y', ' ', 'Update installs Get Windows 10 app in Windows 8.1 and Windows 7 SP1'],
      ['3044374', '3008188', ' ', 'Y', 'Y', 'Update that enables you to upgrade from Windows 8.1 to Windows 10'],
      ['3046480',        '', 'Y', 'Y', ' ', 'Update helps to determine whether to migrate the .NET Framework 1.1 when you upgrade Windows 8.1 or Windows 7'],
      ['3050265', '2990214', 'Y', ' ', 'Y', 'Windows Update Client for Windows 7: June 2015'],
      ['3050267', '3044374', ' ', 'Y', 'Y', 'Windows Update Client for Windows 8.1: June 2015'],
      ['3063822',        '', ' ', ' ', ' ', 'NOT FOUND, possibly Microsoft Security Essentials related'],
      ['3064683',        '', ' ', 'Y', ' ', 'Windows 8.1 OOBE modifications to reserve Windows 10'],
      ['3065987', '3050265', 'Y', ' ', 'Y', 'Windows Update Client for Windows 7 and Windows Server 2008 R2: July 2015'],
      ['3065988', '3050267', ' ', 'Y', 'Y', 'Windows Update Client for Windows 8.1 and Windows Server 2012 R2: July 2015'],
      ['3068707',        '', ' ', ' ', ' ', 'NOT FOUND, but reported to be telemetry related'],
      ['3068708', '3022345', 'Y', 'Y', ' ', 'Update for customer experience and diagnostic telemetry'],
      ['3072318',        '', ' ', 'Y', ' ', 'Update for Windows 8.1 OOBE to upgrade to Windows 10'],
      ['3075249',        '', 'Y', 'Y', ' ', 'Update that adds telemetry points to consent.exe in Windows 8.1 and Windows 7'],
      ['3075851', '3065987', 'Y', ' ', 'Y', 'Windows Update Client for Windows 7 and Windows Server 2008 R2: August 2015'],
      ['3075853', '3065988', ' ', 'Y', 'Y', 'Windows Update Client for Windows 8.1 and Windows Server 2012 R2: August 2015'],
      ['3080149', '3022345', 'Y', 'Y', ' ', 'Update for customer experience and diagnostic telemetry'],
      ['3081954',        '', 'Y', ' ', ' ', 'Update for Work Folders improvements in Windows 7 SP1'],
      ['3083324', '3075851', 'Y', ' ', 'Y', 'Windows Update Client for Windows 7 and Windows Server 2008 R2: September 2015'],
      ['3083325', '3075853',  '', 'Y', 'Y', 'Windows Update Client for Windows 8.1 and Windows Server 2012 R2: September 2015'],
      ['3083710', '3083324', 'Y', ' ', 'Y', 'Windows Update Client for Windows 7 and Windows Server 2008 R2: October 2015'],
      ['3083711', '3083325', ' ', 'Y', 'Y', 'Windows Update Client for Windows 8.1 and Windows Server 2012 R2: October 2015'],
      ['3090045',        '', 'Y', 'Y', ' ', 'Windows Update for reserved devices in Windows 8.1 or Windows 7 SP1'],
      ['3112336',        '', ' ', 'Y', 'Y', 'Windows Update Client for Windows 8.1 and Windows Server 2012 R2: December 2015'],
      ['3112343',        '', 'Y', ' ', 'Y', 'Windows Update Client for Windows 7 and Windows Server 2008 R2: December 2015'],
      ['3123862',        '', 'Y', 'Y', ' ', 'Updated capabilities to upgrade Windows 8.1 and Windows 7'],
      ['3135445',        '', 'Y', ' ', 'Y', 'Windows Update Client for Windows 7 and Windows Server 2008 R2: February 2016'],
      ['3135449',        '', ' ', 'Y', 'Y', 'Windows Update Client for Windows 8.1 and Windows Server 2012 R2: February 2016'],
      ['3138612',        '', 'Y', ' ', 'Y', 'Windows Update Client for Windows 7 and Windows Server 2008 R2: March 2016'],
      ['3138615',        '', ' ', 'Y', 'Y', 'Windows Update Client for Windows 8.1 and Windows Server 2012 R2: March 2016'],
      ['3139929',        '', 'Y', 'Y', ' ', 'MS16-023: Security update for Internet Explorer: March 8, 2016'],
      ['3146449',        '', 'Y', 'Y', ' ', 'Updated Internet Explorer 11 capabilities to upgrade Windows 8.1 and Windows 7'],
      ['3150513',        '', 'Y', 'Y', ' ', 'Compatibility Update for Windows'],
      ['3161647',        '', 'Y', ' ', 'Y', 'Windows Update Client for Windows 7 and Windows Server 2008 R2: June 2016 (within KB3161608 rollup)'],
      ['3163023',        '', ' ', 'Y', 'Y', 'Windows Update Client for Windows 8.1 and Windows Server 2012 R2: June 2016 (within KB3161606 rollup)'],
      ['3163589',        '', 'Y', 'Y', '',  '"Your PC is running an outdated version of Windows" notification'],
      ['3164060',        '', 'Y', 'Y', '',  'The Get Windows 10 app (GWX) was unable to adjust your upgrade settings to decline the free upgrade offer automatically'],
      ['3173040',        '', 'Y', 'Y', '',  'Windows 8.1 and Windows 7 SP1 end of free upgrade offer notification'],
      ['3177467',        '', 'Y', ' ', 'Y', 'Servicing stack update for Windows 7 SP1 and Windows Server 2008 R2 SP1: September 20, 2016 '],
      ['3184143',        '', 'Y', 'Y', '',  'Remove software related to the Windows 10 free upgrade offer'],
    
      //  KB      Replaces    7    8    UC   Description
    ];
    
    var cmdsTbl = [
      ['Uninstall an update',                     'wusa /uninstall /kb:3035583'],
      ['Uninstall an update',                     'wusa /uninstall /kb:3035583 /quiet /norestart'],
      ['Check for installed update (PowerShell)', 'get-hotfix -id KB3035583'],
      ['Check for installed update',              'wmic qfe where HotFixID="KB3035583" list /format:list'],
      ['Show installed updates',                  'wmic qfe list /format:htable > "%USERPROFILE%/Desktop/InstalledUpdates.html"'],
      ['Show installed updates of interest',      'wmic qfe where ({hotFixIdOrList}) list /format:htable > "%USERPROFILE%/Desktop/InstalledUpdatesOfInterest.html"'],
      ['Show Scheduled Tasks Table',              'schtasks /query /v > "%USERPROFILE%/Desktop/ScheduledTasks.txt"'],
      ['Show Scheduled Tasks',                    'schtasks /query /v /fo LIST > "%USERPROFILE%/Desktop/ScheduledTasks.txt"'],
      ['Check for Scheduled Task',                'schtasks /query /v /fo LIST /tn "\\Microsoft\\Windows\\Customer Experience Improvement Program\\Consolidator"'],
      ['Change Scheduled Task',                   'schtasks /change /disable /tn "\\Microsoft\\Windows\\Customer Experience Improvement Program\\Consolidator"'],
    ];
    
    var searchUrlTemplates = [
    // These are for reference only.  They don't point to working search engines
    // ['S1', 'http://www.example.com/search?q={searchTerms}&foo={searchTerms}'],
    // ['S2', 'http://www.example.org/search?q={searchTerms}'],
    ];
    
    var kbUrlTemplate = 'https://support.microsoft.com/kb/{kb}';
    
    function getSearchLinks(kb) {
      var html = '';
      for(var i=0; i<searchUrlTemplates.length; i++) {
        if(i > 0)
          html += ' ';
        var text = searchUrlTemplates[i][0];
        var href = searchUrlTemplates[i][1].replace(/{searchTerms}/g, kb);
        html += '<a href="' + href + '">' + text + '</a>';
      }
      return(html);
    }
    
    function escapeHtml(str) {
      var div = document.createElement('div');
      div.appendChild(document.createTextNode(str));
      return div.innerHTML;
    };
    
    function showupdatesByYear() {
      var tbl = updatesByYearTbl;
      var html = '';
      for(var i=0; i<tbl.length; i++) {
        if(i > 0)
          html += ', ';
        html += '<a href="' + kbUrlTemplate.replace(/{kb}/g, tbl[i][0]) + '" target="_blank">' + tbl[i][1] + '</a>';
      }
      document.getElementById("updatesByYearHdr").innerHTML = "Description of Software Update Services and Windows Server Update Services changes in content for:";
      document.getElementById("updatesByYear").innerHTML = html;
    }
    
    function showupdatesOfInterest() {
      var tbl = updatesOfInterestTbl;
      var html = '<table class="data">';
      html += '<tr>'
      html += '<th>Search</th><th>KB</th><th>Replaces</th><th>Win7</th><th>Win8</th><th>UpdateClient</th><th>Description</th></tr>';
      for(var i=0; i<tbl.length; i++) {
        html += '<tr>';
        html += '<td>' + getSearchLinks('KB' + tbl[i][0]) + '</td>';
        html += '<td><a href="' + kbUrlTemplate.replace(/{kb}/g, tbl[i][0]) + '" target="_blank">KB' + tbl[i][0] + '</a></td>';
        html += '<td>'
        if(tbl[i][1] !== '') {
          html += '<a href="' + kbUrlTemplate.replace(/{kb}/g, tbl[i][0]) + '" target="_blank">KB' + tbl[i][1] + '</a>';
        }
        html += '</td>';
        html += '<td style="text-align:center">' + tbl[i][2] + '</td>';
        html += '<td style="text-align:center">' + tbl[i][3] + '</td>';
        html += '<td style="text-align:center">' + tbl[i][4] + '</td>';
        html += '<td>' + escapeHtml(tbl[i][5]) + '</td>';
        html += '</tr>';
      }
      html += '</table>';
      document.getElementById("updatesOfInterestHdr").innerHTML = updatesOfInterestTbl.length + ' Updates Of Interest:';
      document.getElementById("updatesOfInterest").innerHTML = html;
    }
    
    function showMiscCmds() {
      var tbl = cmdsTbl;
      var html = '<table class="cmds">';
      for(var i=0; i<tbl.length; i++) {
        html += '<tr><td class="cmdDesc">' + tbl[i][0] + ':</td><td>' + escapeHtml(tbl[i][1]) + '</td></tr>';
      }
      html += '</table>';
      tbl = updatesOfInterestTbl;
      var hotFixIdOrList = '';
      for(var i=0; i<tbl.length; i++) {
        if(i > 0) {
          hotFixIdOrList += ' OR ';
        }
        hotFixIdOrList += 'HotFixID="KB' + tbl[i][0] + '"';
      }
      document.getElementById("miscCmdsHdr").innerHTML = "Miscellaneous Commands:";
      document.getElementById("miscCmds").innerHTML = html.replace(/{hotFixIdOrList}/g, hotFixIdOrList);
    }
    
    function showNotes() {
      document.getElementById("footnotesHdr").innerHTML = "Footnotes:";
      document.getElementById("footnotes").style.visibility="visible";
    }
    
    function init() {
      document.title = verInfoStr;
      document.getElementById("verInfoStr").innerHTML = verInfoStr;
      showupdatesByYear();
      showupdatesOfInterest();
      showMiscCmds();
      showNotes();
    }
    </script>
    </head>
    <body onload="init();">
    <noscript>This page requires javascript</noscript>
    <div id="updatesByYearHdr" class="hdr"></div>
    <div id="updatesByYear"></div>
    <div id="updatesOfInterestHdr" class="hdr topgap"></div>
    <div id="updatesOfInterest"></div>
    <div id="miscCmdsHdr" class="hdr topgap"></div>
    <div id="miscCmds"></div>
    <div id="footnotesHdr" class="hdr topgap"></div>
    <div id="footnotes">
    <div>(1) My Updates Of Interest list should not be construed as a recommended block list.</div>
    <div>(2) Search links can be added to the Updates Of Interest table by modifying the searchUrlTemplates array.</div>
    <div>(3) Adapt this page and/or its lists to suit your own purposes :)</div>
    </div>
    <div id="verInfoStr" class="hdr topgap"></div>
    </body>
    </html>
    
     
  13. seti

    seti Registered Member

    Joined:
    Oct 10, 2016
    Posts:
    10
    Location:
    california
    That's very good, thanks a lot. Keep up the good work :thumb:
     
  14. Melita

    Melita Registered Member

    Joined:
    Nov 20, 2014
    Posts:
    138
    Location:
    Spain
    I want to get rid of Windows 7 OEM pre-installed version and do a clean re-install of the same OS from an installation disk. I avoided all the past telemetry updates listed here by disabling windows updates. When I re-install Win 7, I am planning to install only 'Critical' updates. Is this all right or do you think I should install those updates that are branded as 'Important' as well?
     
  15. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    8,013
    What you want to do is avoid the ones labeled "recommended" and "optional"... everything else is pretty much critical or important security-wise. Before 10 was released, they were sneaking things thru as "recommended" which were undesirable...
     
  16. Melita

    Melita Registered Member

    Joined:
    Nov 20, 2014
    Posts:
    138
    Location:
    Spain
    Thank you Kerodo. I'll watch out for the sneaky ones:ninja:
     
  17. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,430
    Location:
    Surrey, England.
    http://www.ghacks.net/2017/02/11/blocking-telemetry-in-windows-7-and-8-1/
     
  18. Callender

    Callender Registered Member

    Joined:
    Jan 9, 2015
    Posts:
    172
    Location:
    London UK
    Can't comment on Windows 10. For Windows 7 I remap routing table so that packets sent to MS Telemetry IP Addresses are re-routed to non-existent ones. I don't know enough about this to say that it is 100% effective.

    Code:
    Windows Registry Editor Version 5.00
    
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes]
    "89.255.251.5,255.255.255.255,0.0.0.0,1"=""
    "8.254.209.254,255.255.255.255,0.0.0.0,1"=""
    "68.232.34.200,255.255.255.255,0.0.0.0,1"=""
    "66.119.144.190,255.255.255.255,0.0.0.0,1"=""
    "65.55.39.10,255.255.255.255,0.0.0.0,1"=""
    "65.55.252.93,255.255.255.255,0.0.0.0,1"=""
    "65.55.252.92,255.255.255.255,0.0.0.0,1"=""
    "65.55.252.71,255.255.255.255,0.0.0.0,1"=""
    "65.55.252.63,255.255.255.255,0.0.0.0,1"=""
    "65.55.252.43,255.255.255.255,0.0.0.0,1"=""
    "65.52.108.29,255.255.255.255,0.0.0.0,1"=""
    "65.52.100.94,255.255.255.255,0.0.0.0,1"=""
    "65.52.100.93,255.255.255.255,0.0.0.0,1"=""
    "65.52.100.92,255.255.255.255,0.0.0.0,1"=""
    "65.52.100.91,255.255.255.255,0.0.0.0,1"=""
    "65.52.100.9,255.255.255.255,0.0.0.0,1"=""
    "65.52.100.7,255.255.255.255,0.0.0.0,1"=""
    "65.52.100.11,255.255.255.255,0.0.0.0,1"=""
    "64.4.6.100,255.255.255.255,0.0.0.0,1"=""
    "64.4.54.32,255.255.255.255,0.0.0.0,1"=""
    "64.4.54.22,255.255.255.255,0.0.0.0,1"=""
    "51.255.168.166,255.255.255.255,0.0.0.0,1"=""
    "23.99.160.139,255.255.255.255,0.0.0.0,1"=""
    "23.99.10.11,255.255.255.255,0.0.0.0,1"=""
    "23.102.21.4,255.255.255.255,0.0.0.0,1"=""
    "216.58.209.166,255.255.255.255,0.0.0.0,1"=""
    "208.111.158.143,255.255.255.255,0.0.0.0,1"=""
    "207.68.166.254,255.255.255.255,0.0.0.0,1"=""
    "207.46.223.94,255.255.255.255,0.0.0.0,1"=""
    "207.46.194.25,255.255.255.255,0.0.0.0,1"=""
    "207.46.101.29,255.255.255.255,0.0.0.0,1"=""
    "207.123.56.252,255.255.255.255,0.0.0.0,1"=""
    "204.244.77.138,255.255.255.255,0.0.0.0,1"=""
    "198.78.208.254,255.255.255.255,0.0.0.0,1"=""
    "194.44.4.208,255.255.255.255,0.0.0.0,1"=""
    "194.44.4.200,255.255.255.255,0.0.0.0,1"=""
    "185.13.160.61,255.255.255.255,0.0.0.0,1"=""
    "184.172.52.106,255.255.255.255,0.0.0.0,1"=""
    "173.194.113.220,255.255.255.255,0.0.0.0,1"=""
    "173.194.113.219,255.255.255.255,0.0.0.0,1"=""
    "168.63.108.233,255.255.255.255,0.0.0.0,1"=""
    "163.172.113.215,255.255.255.255,0.0.0.0,1"=""
    "157.56.91.82,255.255.255.255,0.0.0.0,1"=""
    "157.56.91.77,255.255.255.255,0.0.0.0,1"=""
    "157.56.77.139,255.255.255.255,0.0.0.0,1"=""
    "157.56.74.250,255.255.255.255,0.0.0.0,1"=""
    "157.56.23.91,255.255.255.255,0.0.0.0,1"=""
    "157.56.121.89,255.255.255.255,0.0.0.0,1"=""
    "157.55.129.21,255.255.255.255,0.0.0.0,1"=""
    "134.170.58.189,255.255.255.255,0.0.0.0,1"=""
    "134.170.58.123,255.255.255.255,0.0.0.0,1"=""
    "134.170.58.121,255.255.255.255,0.0.0.0,1"=""
    "134.170.58.118,255.255.255.255,0.0.0.0,1"=""
    "134.170.53.30,255.255.255.255,0.0.0.0,1"=""
    "134.170.53.29,255.255.255.255,0.0.0.0,1"=""
    "134.170.51.190,255.255.255.255,0.0.0.0,1"=""
    "134.170.185.70,255.255.255.255,0.0.0.0,1"=""
    "134.170.115.60,255.255.255.255,0.0.0.0,1"=""
    "131.253.18.253,255.255.255.255,0.0.0.0,1"=""
    "131.107.113.238,255.255.255.255,0.0.0.0,1"=""
    "111.221.29.177,255.255.255.255,0.0.0.0,1"=""
    "104.82.22.249,255.255.255.255,0.0.0.0,1"=""
    "104.82.14.146,255.255.255.255,0.0.0.0,1"=""
    
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\89.255.251.5,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\8.254.209.254,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\68.232.34.200,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\66.119.144.190,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.55.39.10,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.55.252.93,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.55.252.92,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.55.252.71,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.55.252.63,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.55.252.43,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.52.108.29,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.52.100.94,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.52.100.93,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.52.100.92,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.52.100.91,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.52.100.9,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.52.100.7,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\65.52.100.11,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\64.4.6.100,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\64.4.54.32,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\64.4.54.22,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\51.255.168.166,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\23.99.160.139,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\23.99.10.11,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\23.102.21.4,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\216.58.209.166,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\208.111.158.143,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\207.68.166.254,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\207.46.223.94,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\207.46.194.25,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\207.46.101.29,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\207.123.56.252,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\204.244.77.138,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\198.78.208.254,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\194.44.4.208,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\194.44.4.200,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\185.13.160.61,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\184.172.52.106,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\173.194.113.220,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\173.194.113.219,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\168.63.108.233,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\163.172.113.215,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\157.56.91.82,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\157.56.91.77,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\157.56.77.139,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\157.56.74.250,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\157.56.23.91,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\157.56.121.89,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\157.55.129.21,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\134.170.58.189,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\134.170.58.123,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\134.170.58.121,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\134.170.58.118,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\134.170.53.30,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\134.170.53.29,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\134.170.51.190,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\134.170.185.70,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\134.170.115.60,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\131.253.18.253,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\131.107.113.238,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\111.221.29.177,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\104.82.22.249,255.255.255.255,0.0.0.0,1
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\PersistentRoutes\104.82.14.146,255.255.255.255,0.0.0.0,1
    
    To add entries via Elevated Command Prompt:
    route -p add 8.254.209.254 MASK 255.255.255.255 0.0.0.0
    route -p add 68.232.34.200 MASK 255.255.255.255 0.0.0.0
    route -p add 66.119.144.190 MASK 255.255.255.255 0.0.0.0
    route -p add 65.55.39.10 MASK 255.255.255.255 0.0.0.0
    route -p add 65.55.252.93 MASK 255.255.255.255 0.0.0.0
    route -p add 65.55.252.92 MASK 255.255.255.255 0.0.0.0
    route -p add 65.55.252.71 MASK 255.255.255.255 0.0.0.0
    route -p add 65.55.252.63 MASK 255.255.255.255 0.0.0.0
    route -p add 65.55.252.43 MASK 255.255.255.255 0.0.0.0
    route -p add 65.55.108.23 MASK 255.255.255.255 0.0.0.0
    route -p add 65.52.108.29 MASK 255.255.255.255 0.0.0.0
    route -p add 65.52.100.94 MASK 255.255.255.255 0.0.0.0
    route -p add 65.52.100.93 MASK 255.255.255.255 0.0.0.0
    route -p add 65.52.100.92 MASK 255.255.255.255 0.0.0.0
    route -p add 65.52.100.91 MASK 255.255.255.255 0.0.0.0
    route -p add 65.52.100.9 MASK 255.255.255.255 0.0.0.0
    route -p add 65.52.100.7 MASK 255.255.255.255 0.0.0.0
    route -p add 65.52.100.11 MASK 255.255.255.255 0.0.0.0
    route -p add 64.4.6.100 MASK 255.255.255.255 0.0.0.0
    route -p add 64.4.54.32 MASK 255.255.255.255 0.0.0.0
    route -p add 64.4.54.22 MASK 255.255.255.255 0.0.0.0
    route -p add 23.99.10.11 MASK 255.255.255.255 0.0.0.0
    route -p add 23.218.212.69 MASK 255.255.255.255 0.0.0.0
    route -p add 23.102.21.4 MASK 255.255.255.255 0.0.0.0
    route -p add 216.58.209.166 MASK 255.255.255.255 0.0.0.0
    route -p add 207.68.166.254 MASK 255.255.255.255 0.0.0.0
    route -p add 207.46.223.94 MASK 255.255.255.255 0.0.0.0
    route -p add 207.46.194.25 MASK 255.255.255.255 0.0.0.0
    route -p add 207.46.101.29 MASK 255.255.255.255 0.0.0.0
    route -p add 207.123.56.252 MASK 255.255.255.255 0.0.0.0
    route -p add 204.79.197.200 MASK 255.255.255.255 0.0.0.0
    route -p add 198.78.208.254 MASK 255.255.255.255 0.0.0.0
    route -p add 194.44.4.208 MASK 255.255.255.255 0.0.0.0
    route -p add 194.44.4.200 MASK 255.255.255.255 0.0.0.0
    route -p add 185.13.160.61 MASK 255.255.255.255 0.0.0.0
    route -p add 173.194.113.220 MASK 255.255.255.255 0.0.0.0
    route -p add 173.194.113.219 MASK 255.255.255.255 0.0.0.0
    route -p add 168.63.108.233 MASK 255.255.255.255 0.0.0.0
    route -p add 157.56.91.82 MASK 255.255.255.255 0.0.0.0
    route -p add 157.56.91.77 MASK 255.255.255.255 0.0.0.0
    route -p add 157.56.77.139 MASK 255.255.255.255 0.0.0.0
    route -p add 157.56.74.250 MASK 255.255.255.255 0.0.0.0
    route -p add 157.56.23.91 MASK 255.255.255.255 0.0.0.0
    route -p add 157.56.121.89 MASK 255.255.255.255 0.0.0.0
    route -p add 157.55.129.21 MASK 255.255.255.255 0.0.0.0
    route -p add 134.170.58.189 MASK 255.255.255.255 0.0.0.0
    route -p add 134.170.58.123 MASK 255.255.255.255 0.0.0.0
    route -p add 134.170.58.121 MASK 255.255.255.255 0.0.0.0
    route -p add 134.170.58.118 MASK 255.255.255.255 0.0.0.0
    route -p add 134.170.53.30 MASK 255.255.255.255 0.0.0.0
    route -p add 134.170.53.29 MASK 255.255.255.255 0.0.0.0
    route -p add 134.170.51.190 MASK 255.255.255.255 0.0.0.0
    route -p add 134.170.185.70 MASK 255.255.255.255 0.0.0.0
    route -p add 134.170.115.60 MASK 255.255.255.255 0.0.0.0
    route -p add 131.107.113.238 MASK 255.255.255.255 0.0.0.0
    route -p add 111.221.29.177 MASK 255.255.255.255 0.0.0.0
    route -p add 104.82.22.249 MASK 255.255.255.255 0.0.0.0
    route -p add 104.82.14.146 MASK 255.255.255.255 0.0.0.0
    route -p add 131.253.18.253 MASK 255.255.255.255 0.0.0.0
     
  19. Melita

    Melita Registered Member

    Joined:
    Nov 20, 2014
    Posts:
    138
    Location:
    Spain
    Thanks to both Dermot7 and Callender. I got things sorted out.
     
  20. Cartel

    Cartel Registered Member

    Joined:
    May 5, 2018
    Posts:
    1
    Location:
    Canada
    Any reason why this list contains Google IP's?
    thanks
     
  21. Callender

    Callender Registered Member

    Joined:
    Jan 9, 2015
    Posts:
    172
    Location:
    London UK
    I probably added them at some point and forgot about it.
     
  22. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    9,252
    So I'm compiling privacy FAQ. And I'd like to point to a list of Windows 7 telemetry stuff to remove.

    @TheWindBringeth said "I have my notes through October 4th, which isn't the same as a list of things people should remove".

    But is there a reliable list of stuff that people should remove?

    Or is this no longer doable with the most-recent Windows 7 updates?
     
  23. TheWindBringeth

    TheWindBringeth Registered Member

    Joined:
    Feb 29, 2012
    Posts:
    2,171
    @mirimir: Hi. As you would likely know, removing/blocking specific individual updates could be useful where the user understood what they were doing and it meshed well with the other steps they were taking to harden Windows 7. The newerish approach to updating, involving combined/rollup patches, isn't conducive to that approach. Yet some users and admins remain selective about which patches they apply, how they apply them (offline/online), and from where (Microsoft or own server). On that subject, you could consider a link to the AskWoody website. Example topic: https://www.askwoody.com/forums/topic/2000011-group-a-group-b-and-group-w-whats-the-difference/.

    I'm not very selective about *which* updates I apply. I try to address problematic features and aspects in other (rather context-specific) ways. FWIW, I think STIGs are a useful resource. A Windows 7 example: https://www.stigviewer.com/stig/windows_7/.
     
  24. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    9,252
    Thanks, AskWoody looks good :)
     
  25. DesuMaiden

    DesuMaiden Registered Member

    Joined:
    Jan 25, 2013
    Posts:
    599
    I mean, I don't want to sound like I am beatin down on dead horse, but why use Windows in the first place, unless you are someone who is hopelessly addicted to PC games? Most PC games suck, and the only, I repeat only, reason I still use Windows is to play certain PC games that can only be played on Windows. If it wasn't for those PC games , I would not be using Windows . Period. Not because I have something to hide from the government. It is just that Windows is an overall very lousy OS , and you are even more vulnerable to malware on it than any other OS. I don't trust anti-malware software because I learned the hard way that they usually fail at protecting you from malware in the first place...so I avoid doing things that can infect my computer with malware. And also I avoid using Windows whenever possible, except for the rare instances when I want to play certain PC games.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.