Many Windows users are unhappy with Microsoft’s choice to spy on its users and many privacy conscious users even opted to not to update to Windows 10 and stick with older version of Windows i.e. Windows 7, Windows 8 or Windows 8.1.
But now it seems like Microsoft’s goal to snoop on its users is so strong that they have now released several updates for their older versions of Windows that provides them with a capability to spy on Windows 7, 8 and 8.1 users too.
==========
Run the following command to check for multiple updates
First do
Launch Command Prompt using ‘Windows’ + ‘R’ keys on your keyboard
In the Command Prompt box, type cmd or cmd.exe and press ‘Enter’ key on your keyboard
A new window will open. Now type PowerShell and press ‘Enter’ key to enter Windows PowerShell mode
enter
get-hotfix -id KB2876229,KB2923545,KB971033,KB3075249,KB3080149,KB2970228,KB3035583,KB2990214,KB3021917,KB3068708,KB2592687,KB2660075,KB2506928,KB2952664,KB3050265,KB2726535,KB2994023,KB3022345,KB2545698,KB3065987,KB3083324,KB3112343,KB2505438,KB454826,KB2670838,KB2977759,KB3068707,KB3123862,KB3075851
==========
The two recent Windows updates having the identification number, KB3075249 and KB3080149, grants a capability to Windows to capture and send your data to company’s servers.
Here’s how Microsoft has described these two updates:
KB3075249 – This update adds telemetry points to the User Account Control (UAC) feature to collect information on elevations that come from low integrity levels.
KB3080149 – This package updates the Diagnostics and Telemetry tracking service to existing devices. This service provides benefits from the latest version of Windows to systems that have not yet upgraded. The update also supports applications that are subscribed to Visual Studio Application Insights.
So once both of these updates are installed on your computer then Microsoft may possibly spy on you in a similar way Microsoft Windows 10 does, and all your data will be sent to Microsoft servers.
That is not all. Privacy-conscious users of Windows have pointed out that there are numerous other updates released by Microsoft that either grant the company an access to your data or forcefully updates your existing version of Windows 7, 8 or 8.1 to the latest operating system release, Windows 10.
If you want to stick to Windows 7, 8 or 8.1 and want to remain untracked then we will recommend you to stay away from the following updates:
==========
KB2876229
(SKYPE, If you want Skype then install it)
KB2923545
(RDP)
KB971033
(Windows Activation Technologies)
KB3075249
(Update that adds telemetry points to consent.exe in Windows 8.1 and Windows 7)
(Diagnostics Tracking Service)
(optional)
(Update that adds telemetry points to consent.exe in Windows 8.1 and Windows 7)
(Diagnostics Tracking Service)
(optional)
KB3080149
(Update for customer experience and diagnostic telemetry)
(Diagnostics Tracking Service)
(optional)
(Update for customer experience and diagnostic telemetry)
(Diagnostics Tracking Service)
(optional)
KB2970228
KB3075851
(Windows Update Client for Windows 7 August 2015)
KB3123862
(Updated capabilities to upgrade Windows 8.1 and Windows 7)
KB3035583
(Get Windows 10)
(C:\Windows\System32\GWX\GWXConfigManager.exe)
(Update enables additional capabilities for Windows Update notifications in Windows 8.1 and Windows 7 SP1)
(optional)
(was updated and re-issued which is why they re-appeared (and will probably keep reappearing as Microsoft tweaks them every month or so)
(Microsoft has now changed KB3035583 to be (recommended), which will have that update download and install automatically)
KB2952664
(Get Windows 10)
(x2 Compatibility update for upgrading Windows 7 = Windows 7 nagware patch that touts the Windows 10 upgrade)
(optional)
(was updated and re-issued which is why they re-appeared (and will probably keep reappearing as Microsoft tweaks them every month or so)
KB2990214
(Get Windows 10)
(Update that enables you to upgrade from Windows 7 to a later version of Windows)
(KB article contains the Wu.upgrade.ps.dll file)
(optional)
(obsolete)
KB3021917
(Get Windows 10)
(Update to Windows 7 SP1 for performance improvements (telemetry))
(optional)
KB3083324
(Get Windows 10)
(Windows Update Client for Windows 7 and Windows Server 2008 R2: September 2015)
(optional)
(replacement for KB3065987)
(KB article contains the Wu.upgrade.ps.dll file)
KB3065987 (*see below)
(Get Windows 10)
(KB article contains the Wu.upgrade.ps.dll file)
(Windows Update Client for Windows 7 and Windows Server 2008 R2: July 2015)
(optional)
(obsolete)
(replacement for KB2990214)
KB3068708
(Telemetry Update for customer experience and diagnostic telemetry)
(Diagnostics Tracking Service)
(optional) (replacement for KB3022345)
KB2592687
KB2660075
KB2506928
KB3050265
(Windows Update Client for Windows 7: June 2015 = WU service updated to accept upgrade to W10 + other fixes)
KB2726535
KB2994023
KB3022345
(Caused false sfc result)
(Update for customer experience and diagnostic telemetry)
(Diagnostics Tracking Service)
(optional)
(obsolete)
(Replaced by KB3068708 Telemetry)
(Update for customer experience and diagnostic telemetry -> Replaced by KB3080149)
KB2545698
(IE9)
KB3112343
KB3075851
(Windows Update Client for Windows 7 August 2015)
KB3123862
(Updated capabilities to upgrade Windows 8.1 and Windows 7)
KB3035583
(Get Windows 10)
(C:\Windows\System32\GWX\GWXConfigManager.exe)
(Update enables additional capabilities for Windows Update notifications in Windows 8.1 and Windows 7 SP1)
(optional)
(was updated and re-issued which is why they re-appeared (and will probably keep reappearing as Microsoft tweaks them every month or so)
(Microsoft has now changed KB3035583 to be (recommended), which will have that update download and install automatically)
KB2952664
(Get Windows 10)
(x2 Compatibility update for upgrading Windows 7 = Windows 7 nagware patch that touts the Windows 10 upgrade)
(optional)
(was updated and re-issued which is why they re-appeared (and will probably keep reappearing as Microsoft tweaks them every month or so)
KB2990214
(Get Windows 10)
(Update that enables you to upgrade from Windows 7 to a later version of Windows)
(KB article contains the Wu.upgrade.ps.dll file)
(optional)
(obsolete)
KB3021917
(Get Windows 10)
(Update to Windows 7 SP1 for performance improvements (telemetry))
(optional)
KB3083324
(Get Windows 10)
(Windows Update Client for Windows 7 and Windows Server 2008 R2: September 2015)
(optional)
(replacement for KB3065987)
(KB article contains the Wu.upgrade.ps.dll file)
KB3065987 (*see below)
(Get Windows 10)
(KB article contains the Wu.upgrade.ps.dll file)
(Windows Update Client for Windows 7 and Windows Server 2008 R2: July 2015)
(optional)
(obsolete)
(replacement for KB2990214)
KB3068708
(Telemetry Update for customer experience and diagnostic telemetry)
(Diagnostics Tracking Service)
(optional) (replacement for KB3022345)
KB2592687
KB2660075
KB2506928
KB3050265
(Windows Update Client for Windows 7: June 2015 = WU service updated to accept upgrade to W10 + other fixes)
KB2726535
KB2994023
KB3022345
(Caused false sfc result)
(Update for customer experience and diagnostic telemetry)
(Diagnostics Tracking Service)
(optional)
(obsolete)
(Replaced by KB3068708 Telemetry)
(Update for customer experience and diagnostic telemetry -> Replaced by KB3080149)
KB2545698
(IE9)
KB3112343
KB2505438
(Slow performance in applications that use the DirectWrite API on a computer that is running Windows 7 or Windows Server 2008 R2 = It often breaks fonts (see also KB454826))
KB2670838
(Platform update for Windows 7 SP1 and Windows Server 2008 R2 SP1 = breaks AERO functionality and gives you blurry fonts on some websites)
KB2977759
(Compatibility update for Windows 7 RTM = W10 Diagnostics Compatibility telemetry)
KB3068707
(Customer experience telemetry points (update appears to be nuked from microsoft.com))
==========
HOW TO SEARCH FOR SNOOPING WINDOWS UPDATES
If you are still using Windows 7 or Windows 8 and want to keep your data away from the access of Microsoft then we will highly recommend you to stay away from the above-mentioned updates.
guide to finding updates installed
Step #1 – Launch Command Prompt using ‘Windows’ + ‘R’ keys on your keyboard.
Step #2 – In the Command Prompt box, type cmd or cmd.exe and press ‘Enter’ key on your keyboard.
Step #3 – A new window will open. Now type PowerShell and press ‘Enter’ key to enter Windows PowerShell mode.
Now there are two methods to check whether any of the snooping updates has been installed on your system or not.
If you want to check for updates one-by-one then use Step #4a,
Else, if you want to speed up the searching processes then use Step #4b.
Step #4a – Run the following command to check for a single update. Just change the update code to search for another update. get-hotfix -id KB3075249
Step #4b – Run the following command to check for multiple updates. You can separate each update with a comma and add as many update numbers that you want to check. Here is an example command to check for four updates: get-hotfix -id KB3075249,KB3080149,KB2876229,KB2923545
Once the above command is processed successfully and if any update is found then the command prompt will return some information about the update like its source, description, ID and installation date. As shown in the screenshot above.
And in case no update is found on the system then the command prompt will return with some errors written in a red colored text. The error message should read, “Cannot find the requested hotfix.” This shows that the searched update number is not installed on the system. As shown in the below screenshot.
Step # 5 – When you are done with the searching process, type exit and press ‘enter’ key to exit from the Windows PowerShell mode.
==========
HOW TO REMOVE/UNINSTALL SNOOPING WINDOWS UPDATES
If you want to uninstall any update from your system then use the following guide:
Step #1 – Launch Command Prompt using ‘Windows’ + ‘R’ keys on your keyboard.
Step #2 – In the Command Prompt box, type cmd or cmd.exe and press ‘Enter’ key on your keyboard.
Step #3 – A new window will open. Execute the following command to uninstall any update from your system. Just change the update number you want to uninstall.
enter
wusa /uninstall /kb:xxxxxxx
Step #4 – A new Windows Update Standalone Installer prompt will pop up, asking you if you want to uninstall the following Windows update.
==========
For the following two updates, it is recommended to install them but to modify the registry with following procedure after installing them:
KB3065988 Windows Update Client for Windows 8.1 and Windows Server 2012 R2: July 2015
(*) KB3065987 Windows Update Client for Windows 7 and Windows Server 2008 R2: July 2015
After installing either of the above updates, open regedit and navigate to
HKEY_LOCAL_MACHINE-> SOFTWARE -> Policies -> Microsoft -> Windows
Right-click on Windows and select option to create a new key and name it “WindowsUpdate”
Now right-click on the WindowsUpdate key you just created and select option to create new 32-bit DWORD and name it “DisableOSUpgrade”
Right-click on DisableOSUpgrade and select modify option and change value from 0 to 1
The following services should be removed:
In an elevated command prompt run the following:
sc stop DiagTrack
sc stop dmwappushservice
sc delete DiagTrack
sc delete dmwappushservice
echo "" > C:\ProgramData\Microsoft\Diagnosis\ETLLogs\AutoLogger\AutoLogger-Diagtrack-Listener.etl
note - if you have error for command echo "" > C:\ProgramData\Microsoft\Diagnosis\ETLLogs\AutoLogger\AutoLogger-Diagtrack-Listener.etl
do the following
Show hidden system files
Right-click C:\ProgramData\Microsoft\Diagnosis and go to security and add your user with full access
Do this for the ETLLogs and Autologger folder too
Do this for the AutoLogger-Diagtrack-Listener.etl file
then run the command again
now continue below
Open the Task Scheduler (Win key then type “sched”). Under Task Scheduler Library ->Microsoft -> windows delete the following items:
Everything under “Application Experience”
Everything under “Autochk”
Everything under “Customer Experience Improvement Program”
Under “Disk Diagnostic” delete only the “Microsoft-Windows-DiskDiagnosticDataCollector”
Under “Maintenance” “WinSAT” “Media Center” and click the “status” column, then select all non-disabled entries and disable them.
Now you can reboot.
When you open Windows Update again it will ask to install whichever updates above were removed. Right-click on each one and select “hide”.
Finally, log in to your broadband router and look for an option like “content filtering” or “block sites”.
Add the following hosts to be blocked. On my Netgear router each host is a keyword that must be added.
note - below address can be added to host file
134.170.30.202
137.116.81.24
204.79.197.200
23.218.212.69
65.39.117.230
65.55.108.23
a-0001.a-msedge.net
choice.microsoft.com
choice.microsoft.com.nsatc.net
compatexchange.cloudapp.net
corp.sts.microsoft.com
corpext.msitadfs.glbdns2.microsoft.com
cs1.wpc.v0cdn.net
df.telemetry.microsoft.com
diagnostics.support.microsoft.com
fe2.update.microsoft.com.akadns.net
feedback.microsoft-hohm.com
feedback.search.microsoft.com
feedback.windows.com
i1.services.social.microsoft.com
i1.services.social.microsoft.com.nsatc.net
oca.telemetry.microsoft.com
oca.telemetry.microsoft.com.nsatc.net
pre.footprintpredict.com
redir.metaservices.microsoft.com
reports.wes.df.telemetry.microsoft.com
services.wes.df.telemetry.microsoft.com
settings-sandbox.data.microsoft.com
sls.update.microsoft.com.akadns.net
sqm.df.telemetry.microsoft.com
sqm.telemetry.microsoft.com
sqm.telemetry.microsoft.com.nsatc.net
statsfe1.ws.microsoft.com
statsfe2.update.microsoft.com.akadns.net
statsfe2.ws.microsoft.com
survey.watson.microsoft.com
telecommand.telemetry.microsoft.com
telecommand.telemetry.microsoft.com.nsatc.net
telemetry.appex.bing.net
telemetry.appex.bing.net:443
telemetry.microsoft.com
telemetry.urs.microsoft.com
vortex.data.microsoft.com
vortex-sandbox.data.microsoft.com
vortex-win.data.microsoft.com
watson.live.com
watson.microsoft.com
watson.ppe.telemetry.microsoft.com
watson.telemetry.microsoft.com
watson.telemetry.microsoft.com.nsatc.net
wes.df.telemetry.microsoft.com
==========
WINMCE
KB2952664 - hidden 27/02/2016
KB3021917 - hidden 27/02/2016
KB3035583 - hidden 27/02/2016
KB2990214
KB3065987
KB3083324
KB3022345
KB3068708 - hidden 27/02/2016
KB3075249 - hidden 27/02/2016
KB3080149 - hidden 27/02/2016
KB2876229 - hidden 27/02/2016
KB2923545 - hidden 27/02/2016
KB2970228 - hidden 27/02/2016
KB2592687 - hidden 27/02/2016
KB2660075 - hidden 27/02/2016
KB2506928 - hidden 27/02/2016
KB3050265
KB2726535 - hidden 27/02/2016
KB2994023
KB2545698 - hidden 27/02/2016
KB3112343
KB971033 - hidden 27/02/2016 - Windows Activation Technologies
KB3065988 Windows Update Client for Windows 8.1 and Windows Server 2012 R2: July 2015
(*) KB3065987 Windows Update Client for Windows 7 and Windows Server 2008 R2: July 2015
After installing either of the above updates, open regedit and navigate to
HKEY_LOCAL_MACHINE-> SOFTWARE -> Policies -> Microsoft -> Windows
Right-click on Windows and select option to create a new key and name it “WindowsUpdate”
Now right-click on the WindowsUpdate key you just created and select option to create new 32-bit DWORD and name it “DisableOSUpgrade”
Right-click on DisableOSUpgrade and select modify option and change value from 0 to 1
The following services should be removed:
In an elevated command prompt run the following:
sc stop DiagTrack
sc stop dmwappushservice
sc delete DiagTrack
sc delete dmwappushservice
echo "" > C:\ProgramData\Microsoft\Diagnosis\ETLLogs\AutoLogger\AutoLogger-Diagtrack-Listener.etl
note - if you have error for command echo "" > C:\ProgramData\Microsoft\Diagnosis\ETLLogs\AutoLogger\AutoLogger-Diagtrack-Listener.etl
do the following
Show hidden system files
Right-click C:\ProgramData\Microsoft\Diagnosis and go to security and add your user with full access
Do this for the ETLLogs and Autologger folder too
Do this for the AutoLogger-Diagtrack-Listener.etl file
then run the command again
now continue below
Open the Task Scheduler (Win key then type “sched”). Under Task Scheduler Library ->Microsoft -> windows delete the following items:
Everything under “Application Experience”
Everything under “Autochk”
Everything under “Customer Experience Improvement Program”
Under “Disk Diagnostic” delete only the “Microsoft-Windows-DiskDiagnosticDataCollector”
Under “Maintenance” “WinSAT” “Media Center” and click the “status” column, then select all non-disabled entries and disable them.
Now you can reboot.
When you open Windows Update again it will ask to install whichever updates above were removed. Right-click on each one and select “hide”.
Finally, log in to your broadband router and look for an option like “content filtering” or “block sites”.
Add the following hosts to be blocked. On my Netgear router each host is a keyword that must be added.
note - below address can be added to host file
134.170.30.202
137.116.81.24
204.79.197.200
23.218.212.69
65.39.117.230
65.55.108.23
a-0001.a-msedge.net
choice.microsoft.com
choice.microsoft.com.nsatc.net
compatexchange.cloudapp.net
corp.sts.microsoft.com
corpext.msitadfs.glbdns2.microsoft.com
cs1.wpc.v0cdn.net
df.telemetry.microsoft.com
diagnostics.support.microsoft.com
fe2.update.microsoft.com.akadns.net
feedback.microsoft-hohm.com
feedback.search.microsoft.com
feedback.windows.com
i1.services.social.microsoft.com
i1.services.social.microsoft.com.nsatc.net
oca.telemetry.microsoft.com
oca.telemetry.microsoft.com.nsatc.net
pre.footprintpredict.com
redir.metaservices.microsoft.com
reports.wes.df.telemetry.microsoft.com
services.wes.df.telemetry.microsoft.com
settings-sandbox.data.microsoft.com
sls.update.microsoft.com.akadns.net
sqm.df.telemetry.microsoft.com
sqm.telemetry.microsoft.com
sqm.telemetry.microsoft.com.nsatc.net
statsfe1.ws.microsoft.com
statsfe2.update.microsoft.com.akadns.net
statsfe2.ws.microsoft.com
survey.watson.microsoft.com
telecommand.telemetry.microsoft.com
telecommand.telemetry.microsoft.com.nsatc.net
telemetry.appex.bing.net
telemetry.appex.bing.net:443
telemetry.microsoft.com
telemetry.urs.microsoft.com
vortex.data.microsoft.com
vortex-sandbox.data.microsoft.com
vortex-win.data.microsoft.com
watson.live.com
watson.microsoft.com
watson.ppe.telemetry.microsoft.com
watson.telemetry.microsoft.com
watson.telemetry.microsoft.com.nsatc.net
wes.df.telemetry.microsoft.com
WINMCE
KB2952664 - hidden 27/02/2016
KB3021917 - hidden 27/02/2016
KB3035583 - hidden 27/02/2016
KB2990214
KB3065987
KB3083324
KB3022345
KB3068708 - hidden 27/02/2016
KB3075249 - hidden 27/02/2016
KB3080149 - hidden 27/02/2016
KB2876229 - hidden 27/02/2016
KB2923545 - hidden 27/02/2016
KB2970228 - hidden 27/02/2016
KB2592687 - hidden 27/02/2016
KB2660075 - hidden 27/02/2016
KB2506928 - hidden 27/02/2016
KB3050265
KB2726535 - hidden 27/02/2016
KB2994023
KB2545698 - hidden 27/02/2016
KB3112343
KB971033 - hidden 27/02/2016 - Windows Activation Technologies