Utility to detect Win10 telemetry?

B

Bird222

[H]ard|Gawd
Joined
Dec 1, 2000
Messages
1,287
Is there something that I can install on Win10 to see if it is still 'phoning home'? I have done various tweaks to limit/stop the spying but I would like to know if I have stopped it all.
 
Run your traffic through wireshark and see if something phones home. The data is encrypted so you won't be able to tell if it's normal windows update or other telemetry though.
 
Fiddler decrypts it as far as I've seen.

Edit: Yep, here's an example from my machine. Removed some of the internal stuff (our machines emit additional telemetry)

Code: 
{
  "name": "Microsoft.ApplicationInsights.aif312cbd799dbb4c48a7da3cc2a931cb70.Event",
  "time": "2016-08-18T15:35:46.1487352-07:00",
  "seq": "r7GQ6is34U2wyO8HPQ9c/w:691",
  "iKey": "AIF-312cbd79-9dbb-4c48-a7da-3cc2a931cb70",
  "tags": {
  "ai.internal.sdkVersion": "0.17.2.169",
  "ai.session.id": "2c9fad4d-78dc-4234-9832-fffaa7ebae19",
  "ai.user.id": "d92dd9e0-91d0-4700-af33-f80aa222e88e",
  "ai.device.type": "0",
  "ai.device.id": "0"
  },
  "data": {
  "baseType": "EventData",
  "baseData": {
  "ver": 2,
  "name": "vs/scopestudio/jobview/dataskewclick",
  "measurements": {
  "Reserved.TimeSinceSessionStart": 1901501,
  "Context.Solution.LastSolutionBuildID": 580471531,
  "Context.Default.VS.Core.BuildNumber": 25420,
  "Context.Default.VS.Core.User.Location.GeoId": 244,
  "Reserved.SequenceNumber": 691
  },
  "properties": {
  "Reserved.EventId": "ea4e0410-67c7-4f15-a637-b0a7272a7cb7",
  "Reserved.SessionId": "2c9fad4d-78dc-4234-9832-fffaa7ebae19",
  "Context.Solution.SolutionSessionID": "{66e32c80-43db-4cf1-946e-f22fe480756f}",
  "Context.Solution.SolutionID": "{9cad9fbd-7041-a2eb-bef4-7e2d53731233}",
  "Context.Solution.ActiveProjectGuid": "{15a77659-ae1c-47fc-8fa8-ad23d4664c08}",
  "Context.Default.VS.Core.Machine.Id": "1e3c3f05-9515-4f42-a5f1-32864129f21f",
  "Context.Default.VS.Core.TelemetryApi.ProductVersion": "14.1.677-update44B2499E",
  "Context.Default.VS.Core.User.Type": "Internal",
  "Context.Default.VS.ABExp.Flights": "tn-rsv-14u3;fwlargebuffer;muidflt184cf;lazytoolboxinit",
  "Context.Default.VS.Core.MacAddressHash": "951f8dad308922fb859132248340083bac6e33125da2bf6553e929b92d75aec9",
  "Context.Default.VS.Core.SkuName": "VS Enterprise",
  "Context.Default.VS.Core.BranchName": "D14REL",
  "Context.Default.VS.Core.OS.Version": "10.0.14393.4",
  "Context.Default.VS.Core.User.Id": "d92dd9e0-91d0-4700-af33-f80aa222e88e",
  "Context.Default.VS.Core.ExeVersion": "14.0.25420.1",
  "Context.Default.VS.Core.ExeName": "devenv",
  "Context.Default.VS.Core.User.IsOptedIn": "True",
  "Reserved.ChannelUsed": "aivortex"
  }
  }
  }
}
 
Last edited:
Heh, I wouldnt go about downloading anti-anything executables from internet. 90% of them are malware.
 
there's no way of stopping it all...MS will always be 1 step ahead...stop 1 telemetry update and 2 more hidden ones are still there...you just have to resign yourself to the fact that using W10 means giving up a bit of your privacy...don't use that computer to hack the Pentagon or look up child porn
 
You must log in or register to reply here.
Back
Top