- Oct 4, 2006
- 2,779
- 1
- 81
I have been noticing lately a lot of people keep asking the same question on how to prevent the Windows 10 upgrade so here is a list of updates that need to be hidden in order to prevent the Windows 10 Upgrade or prevent updates that enable Telemetry, some of them are system preparation for the upgrade so you may not find them all in your updates list until a pre-requistie update was installed before.
If doing a clean installation of Windows 7 or 8, you need to scan the list of updates carefully everytime updates appear to ensure none of them re-appears as Micro$h4ft has been showing some of them again even if you hide them.
If you have already installed Windows and did a few updates, then head over to Control Panel > Programs and Features > View Installed Updates then go from the top to the bottom through the list to ensure none of them is installed, if you do find one installed, then uninstall it, reboot, then check for updates and once it appears right click on it and hide it.
These Windows 10 upgrade activation updates are like a virus really, only thing is, it's a legit virus
=============================================================
First of all, for Windows 7 users, let's install the Disable IE 10 and IE 11 toolkit in order for them to not showup in Windows Updates because if one installs them, he would get KB2670838 installed automatically as they come bundled with them which will break the AERO functionality on many systems and/or display blurry fonts in your browser on some sites.
IE10 BlockerToolkit
IE11 BlockerToolkit
Once you run any of the above downloaded EXEs, it will ask you to extract the contents to a folder. Select the folder you want then go through the Read Me File for instructions.
Here is how I blocked IE 10/11 on my system. Note that my computer name is PREDATOR hence you need to replace PREDATOR with your computer name.
=============================================================
KB2505438 (Although it claims to fix performance issues, it often breaks fonts)
KB2670838 (The EVIL Update, breaks AERO on Windows 7 and makes some fonts on websites fuzzy, Windows 7 specific update only, do not install IE10 or 11 otherwise it will be bundled with them, IE9 is the max version you should install)
KB2882822 (Very fishy update that just popped up with not enough detail about it)
KB2902907 (Microsoft Security Essentials)
KB2952664 ("Get Windows 10" Assistant)
KB2976978 (Windows 10 Upgrade preparation for Windows 8)
KB2977759 (Windows 10 Upgrade preparation for Windows 7)
KB2990214 (Windows 10 Upgrade preparation for Windows 7)
KB3012973 (Force Trigger Download and Install of Windows 10)
KB3015249 (Adds telemetry points to consent.exe in Windows 7 & Windows 8)
KB3021917 (Windows 10 Upgrade preparation + Telemetry)
KB3022345 (Telemetry)
KB3035583 (GWX Update installs the "Get Windows 10" app in Windows 7 & Windows 8)
KB3042058 (Microsoft claims its a security update but it contains Winlogon Spying)
KB3044374 (Windows 10 Upgrade for Windows 8 systems)
KB3050267 (Windows 10 upgrade preparation but also adds the option in GPEDIT to disable Windows 10 upgrade altogether so you may want to actually install this)
KB3064683 (Windows 10 Upgrade for Windows 8)
KB3065987 (Windows 10 Upgrade for Windows 7)
KB3065988 (Windows 10 Upgrade for Windows 8)
KB3068708 (Telemetry)
KB3072318 (Windows 10 Upgrade preparation for Windows 8)
KB3074677 (Windows 10 Upgrade preparation)
KB3075249 (Telemetry)
KB3075851 (Windows 10 Upgrade for Windows 7)
KB3075853 (Windows 10 Upgrade for Windows 8)
KB3080149 (Telemetry)
KB3081437 (Windows 10 Upgrade preparation)
KB3081454 (Windows 10 Upgrade preparation)
KB3081954 (Telemetry Update for Windows 7)
KB3083324 (Windows 10 Upgrade preparation for Windows 7)
KB3083325 (Windows 10 Upgrade preparation for Windows 8)
KB3083710 (Update for the Windows Update client with sketchy details for Windows 7, see this thread)
KB3083711 (Update for the Windows Update client with sketchy details for Windows 8, see this thread)
KB3086255 (Flagged as an Important update. It disables SafeDisc games in Windows Vista, 7, and 8/8.1)
KB3088195 (Miscorosft Claims it's a security update but also has a key logger on the Kernel Level)
KB3090045 (Windows 10 Upgrade Update for Windows 7/8)
KB3093983 (Microsoft claims it's a security update but it contains IE spying)
KB3102810 (Fixes an issue regarding long wait while searching for Windows Updates but also has Windows 10 Upgrade preparation for Windows 7)
KB3102812 (Fixes an issue regarding long wait while searching for Windows Updates but also has Windows 10 Upgrade preparation for Windows 8)
KB3112343 (Windows 10 Upgrade for Windows 7)
KB3112336 (Windows 10 Upgrade for Windows 8)
KB3112343 (Windows 10 Upgrade for Windows 7)
KB3123862 (Windows 10 Upgrade for Windows 7 & 8)
KB3135445 (Windows 10 Upgrade for Windows 7)
KB3135449 (Windows 10 Upgrade for Windows 8)
=============================================================
To uninstall any of the above listed updates, simply copy/paste one of the below commands according to which update you want to install in an elevated command prompt then hit enter:
wusa /uninstall /kb:2505438 /norestart
Replace the number in red with the KB Update # you want to uninstall.
To uninstall all the bad updates in one shot, Download this batch file:
"Remove Telemetry-Win10 Upgrade Updates Script"
=======================================================================
Additionally, please go to Task Scheduler and disable the following items:
=============================================================
Finally, create an empty TXT in notepad and copy/paste the below text then save it as hosts without any extension; then copy this file to C :Windows\System32\drivers\etc overwriting the existing file then reboot.
This hosts file will block OpenCandy Malware, Telemetry, and a few dangerous domains like SourceForge. Feel free to remove any entry you don't want to block.
=============================================================
If doing a clean installation of Windows 7 or 8, you need to scan the list of updates carefully everytime updates appear to ensure none of them re-appears as Micro$h4ft has been showing some of them again even if you hide them.
If you have already installed Windows and did a few updates, then head over to Control Panel > Programs and Features > View Installed Updates then go from the top to the bottom through the list to ensure none of them is installed, if you do find one installed, then uninstall it, reboot, then check for updates and once it appears right click on it and hide it.
These Windows 10 upgrade activation updates are like a virus really, only thing is, it's a legit virus
=============================================================
First of all, for Windows 7 users, let's install the Disable IE 10 and IE 11 toolkit in order for them to not showup in Windows Updates because if one installs them, he would get KB2670838 installed automatically as they come bundled with them which will break the AERO functionality on many systems and/or display blurry fonts in your browser on some sites.
IE10 BlockerToolkit
IE11 BlockerToolkit
Once you run any of the above downloaded EXEs, it will ask you to extract the contents to a folder. Select the folder you want then go through the Read Me File for instructions.
Here is how I blocked IE 10/11 on my system. Note that my computer name is PREDATOR hence you need to replace PREDATOR with your computer name.
=============================================================
KB2505438 (Although it claims to fix performance issues, it often breaks fonts)
KB2670838 (The EVIL Update, breaks AERO on Windows 7 and makes some fonts on websites fuzzy, Windows 7 specific update only, do not install IE10 or 11 otherwise it will be bundled with them, IE9 is the max version you should install)
KB2882822 (Very fishy update that just popped up with not enough detail about it)
KB2902907 (Microsoft Security Essentials)
KB2952664 ("Get Windows 10" Assistant)
KB2976978 (Windows 10 Upgrade preparation for Windows 8)
KB2977759 (Windows 10 Upgrade preparation for Windows 7)
KB2990214 (Windows 10 Upgrade preparation for Windows 7)
KB3012973 (Force Trigger Download and Install of Windows 10)
KB3015249 (Adds telemetry points to consent.exe in Windows 7 & Windows 8)
KB3021917 (Windows 10 Upgrade preparation + Telemetry)
KB3022345 (Telemetry)
KB3035583 (GWX Update installs the "Get Windows 10" app in Windows 7 & Windows 8)
KB3042058 (Microsoft claims its a security update but it contains Winlogon Spying)
KB3044374 (Windows 10 Upgrade for Windows 8 systems)
KB3050267 (Windows 10 upgrade preparation but also adds the option in GPEDIT to disable Windows 10 upgrade altogether so you may want to actually install this)
KB3064683 (Windows 10 Upgrade for Windows 8)
KB3065987 (Windows 10 Upgrade for Windows 7)
KB3065988 (Windows 10 Upgrade for Windows 8)
KB3068708 (Telemetry)
KB3072318 (Windows 10 Upgrade preparation for Windows 8)
KB3074677 (Windows 10 Upgrade preparation)
KB3075249 (Telemetry)
KB3075851 (Windows 10 Upgrade for Windows 7)
KB3075853 (Windows 10 Upgrade for Windows 8)
KB3080149 (Telemetry)
KB3081437 (Windows 10 Upgrade preparation)
KB3081454 (Windows 10 Upgrade preparation)
KB3081954 (Telemetry Update for Windows 7)
KB3083324 (Windows 10 Upgrade preparation for Windows 7)
KB3083325 (Windows 10 Upgrade preparation for Windows 8)
KB3083710 (Update for the Windows Update client with sketchy details for Windows 7, see this thread)
KB3083711 (Update for the Windows Update client with sketchy details for Windows 8, see this thread)
KB3086255 (Flagged as an Important update. It disables SafeDisc games in Windows Vista, 7, and 8/8.1)
KB3088195 (Miscorosft Claims it's a security update but also has a key logger on the Kernel Level)
KB3090045 (Windows 10 Upgrade Update for Windows 7/8)
KB3093983 (Microsoft claims it's a security update but it contains IE spying)
KB3102810 (Fixes an issue regarding long wait while searching for Windows Updates but also has Windows 10 Upgrade preparation for Windows 7)
KB3102812 (Fixes an issue regarding long wait while searching for Windows Updates but also has Windows 10 Upgrade preparation for Windows 8)
KB3112343 (Windows 10 Upgrade for Windows 7)
KB3112336 (Windows 10 Upgrade for Windows 8)
KB3112343 (Windows 10 Upgrade for Windows 7)
KB3123862 (Windows 10 Upgrade for Windows 7 & 8)
KB3135445 (Windows 10 Upgrade for Windows 7)
KB3135449 (Windows 10 Upgrade for Windows 8)
=============================================================
To uninstall any of the above listed updates, simply copy/paste one of the below commands according to which update you want to install in an elevated command prompt then hit enter:
wusa /uninstall /kb:2505438 /norestart
Replace the number in red with the KB Update # you want to uninstall.
To uninstall all the bad updates in one shot, Download this batch file:
"Remove Telemetry-Win10 Upgrade Updates Script"
Code:
@echo off
echo [---Uninstalling updates, please be patient---]
wusa /uninstall /kb:2505438 /quiet /norestart
wusa /uninstall /kb:2670838 /quiet /norestart
wusa /uninstall /kb:2882822 /quiet /norestart
wusa /uninstall /kb:2902907 /quiet /norestart
wusa /uninstall /kb:2952664 /quiet /norestart
wusa /uninstall /kb:2976978 /quiet /norestart
wusa /uninstall /kb:2977759 /quiet /norestart
wusa /uninstall /kb:2990214 /quiet /norestart
wusa /uninstall /kb:3012973 /quiet /norestart
wusa /uninstall /kb:3015249 /quiet /norestart
wusa /uninstall /kb:3021917 /quiet /norestart
wusa /uninstall /kb:3022345 /quiet /norestart
wusa /uninstall /kb:3035583 /quiet /norestart
wusa /uninstall /kb:3042058 /quiet /norestart
wusa /uninstall /kb:3044374 /quiet /norestart
wusa /uninstall /kb:3050267 /quiet /norestart
wusa /uninstall /kb:3064683 /quiet /norestart
wusa /uninstall /kb:3065987 /quiet /norestart
wusa /uninstall /kb:3065988 /quiet /norestart
wusa /uninstall /kb:3068708 /quiet /norestart
wusa /uninstall /kb:3072318 /quiet /norestart
wusa /uninstall /kb:3074677 /quiet /norestart
wusa /uninstall /kb:3075249 /quiet /norestart
wusa /uninstall /kb:3075851 /quiet /norestart
wusa /uninstall /kb:3075853 /quiet /norestart
wusa /uninstall /kb:3080149 /quiet /norestart
wusa /uninstall /kb:3081437 /quiet /norestart
wusa /uninstall /kb:3081454 /quiet /norestart
wusa /uninstall /kb:3081954 /quiet /norestart
wusa /uninstall /kb:3083324 /quiet /norestart
wusa /uninstall /kb:3083325 /quiet /norestart
wusa /uninstall /kb:3083710 /quiet /norestart
wusa /uninstall /kb:3083711 /quiet /norestart
wusa /uninstall /kb:3086255 /quiet /norestart
wusa /uninstall /kb:3088195 /quiet /norestart
wusa /uninstall /kb:3090045 /quiet /norestart
wusa /uninstall /kb:3093983 /quiet /norestart
wusa /uninstall /kb:3102810 /quiet /norestart
wusa /uninstall /kb:3102812 /quiet /norestart
wusa /uninstall /kb:3107998 /quiet /norestart
wusa /uninstall /kb:3112336 /quiet /norestart
wusa /uninstall /kb:3112343 /quiet /norestart
wusa /uninstall /kb:3123862 /quiet /norestart
wusa /uninstall /kb:3135445 /quiet /norestart
wusa /uninstall /kb:3135449 /quiet /norestart
echo [---Uninstall complete, restart your computer to finish---]
Additionally, please go to Task Scheduler and disable the following items:
=============================================================
Finally, create an empty TXT in notepad and copy/paste the below text then save it as hosts without any extension; then copy this file to C :Windows\System32\drivers\etc overwriting the existing file then reboot.
This hosts file will block OpenCandy Malware, Telemetry, and a few dangerous domains like SourceForge. Feel free to remove any entry you don't want to block.
Code:
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
127.0.0.1 bi.bisrv.com
127.0.0.1 www.softonic.com
127.0.0.1 softonic.com
127.0.0.1 sourceforge.net
127.0.0.1 www.bestvistadownloads.com
127.0.0.1 image.online-convert.com/convert-to-ico
127.0.0.1 tracking.opencandy.com.s3.amazonaws.com
127.0.0.1 media.opencandy.com
127.0.0.1 cdn.opencandy.com
127.0.0.1 tracking.opencandy.com
127.0.0.1 api.opencandy.com
127.0.0.1 offer.alibaba.com
127.0.0.1 a.ads1.msn.com
127.0.0.1 a.ads2.msads.net
127.0.0.1 a.ads2.msn.com
127.0.0.1 ads1.msads.net
127.0.0.1 ads1.msn.com
127.0.0.1 adsmockarc.azurewebsites.net
127.0.0.1 ads.msn.com
127.0.0.1 b.ads1.msn.com
127.0.0.1 b.ads2.msads.net
127.0.0.1 bingads.microsoft.com
127.0.0.1 dl.delivery.mp.microsoft.com
127.0.0.1 oca.telemetry.microsoft.com
127.0.0.1 oca.telemetry.microsoft.com.nsatc.net
127.0.0.1 reports.wes.df.telemetry.microsoft.com
127.0.0.1 sb.scorecardresearch.com
127.0.0.1 spynet2.microsoft.com
127.0.0.1 spynetalt.microsoft.com
127.0.0.1 sqm.df.telemetry.microsoft.com
127.0.0.1 sqm.microsoft.com
127.0.0.1 sqm.telemetry.microsoft.com
127.0.0.1 sqm.telemetry.microsoft.com.nsatc.net
127.0.0.1 survey.watson.microsoft.com
127.0.0.1 telecommand.telemetry.microsoft.com
127.0.0.1 telecommand.telemetry.microsoft.com.nsatc.net
127.0.0.1 telemetry.appex.bing.net
127.0.0.1 telemetry.microsoft.com
127.0.0.1 telemetry.urs.microsoft.com
127.0.0.1 vortex-sandbox.data.microsoft.com
127.0.0.1 vortex-win.data.microsoft.com
127.0.0.1 watson.live.com
127.0.0.1 watson.microsoft.com
127.0.0.1 watson.ppe.telemetry.microsoft.com
127.0.0.1 watson.telemetry.microsoft.com
127.0.0.1 watson.telemetry.microsoft.com.nsatc.net
127.0.0.1 wes.df.telemetry.microsoft.com
::1 localhost
Last edited: