New
#11
Do not connect computer to the Internet, do not use any form of communications period if you do not want anything out in the wild.
Windows is not sending anything private out.
I found the EvoRim Free Firewall you mentioned.
The Remap routing table you linked to has this entry on the first line:
104.107.13.214 255.255.255.255
This would be added to this Registry key, correct?
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\PersistentRoutes]
via this command, all of the lines in a regular batch (BAT) file, correct?
route -p add 104.107.13.214 MASK 255.255.255.255 0.0.0.0
Be aware there is also a method to add rules to block certain Microsoft Telemetry servers in the Windows Firewall. However, this page is 7 years old. This method uses a PowerShell script inside a batch (BAT) file: HOW TO DISABLE TELEMETRY ON WINDOWS 10 | SERVILON. Once you run the script in the batch file, the added rules will be displayed in Windows Firewall.
This page also shows how to stop or delete 2 keylogger services:
sc stop DiagTrack
sc stop dmwappushservice
or
sc delete DiagTrack
sc delete dmwappushservice
Finally, it has batch file commands to disable Task Scheduler Telemetry entries. On the bottom of the page, you must copy the commands into a batch file and run it.
Well look. Don't run this unless you want problems. Or without a backup. But it does remap routing table. Hosts and Firewall blocking are no good.
Documentation - Get Blackbird
Some telemetry is hard coded into windows so the only sure way to block is via routing table. That Blackbird program is hard to use and can break things and changes can be hard to undo.Blackbird does not edit the HOSTS file in any way, nor does it mess with your firewall settings.
It does not run in the background, instead relying on persistent routes and resolving hostnames to IP addresses each time Blackbird is applied by the user.
@Cypherdude
Keep in mind that using Microsoft's firewall to block Microsoft's telemetry, is kind of silly.
Any competent intelligence agency or criminal organisation has a very long reach. Fortunately you can still buy paper, pens, envelopes and stamps to communicate.
The responses here are what I'd expect.
Comparison of Windows 10 Privacy tools - gHacks Tech News
GitHub - Jamesits/dropWPBT: Disables the Windows Platform Binary Table (WPBT) in your UEFI firmware.
If you can find it, try Tiny10.
Check out Windows 10 AME and strip your ISO yourself...
I have a partial list of domains used by Windows 10 and most are blocked here at the domain level, even though I'm running Tiny10, there still a few external requests I blocked in the router flashed with Asus Merlin. Windows 10 uses an abundance of ASNs and one of those belongs to the CDN Akamai which is a pain to out right block since so many other websites use that CDN. If you know definitive IPs (I have a partial list), use OPNSense or pfSense. I use this too. LOL
Once upon a time the acronym PC stood for Personal Computer. Now YOU are the corporate cash cow. And it's not just Microsoft.
What? You thought Windows 10 was free because Microsoft wanted to be nice? Nothing in life is free. Nothing. It's paid for somehow in some way and in some fashion directly or indirectly. Those Apps you use for McDonalds deals, Starbucks, etc? Laced with telemetry. I could write a book on this stuff!
In my post about Edward Snowden I touched base on this. https://web.archive.org/web/20200908...pic.php?p=3099