Disable KeyLogger in Windows 10 – DiagTrack

While it’s not completely clear at this time what DiagTrack is. What is known is the service acts as a built-in Key logger for the Windows OS. You can remove it by following the commands bellow. As with any operating system modification, you are responsible for your own actions going forward, please research ahead. We will offer the commands as reference only.

Any modification of your Windows 10 OS is done at your own risk.

1. Install Windows 10
2. Press Shift + F10 on the login screen to open command prompt (At installation Or open Command as Administrator after install)
3. Input the following commands:

sc delete DiagTrack

sc delete dmwappushservice

echo “” > C:\ProgramData\Microsoft\Diagnosis\ETLLogs\AutoLogger\AutoLogger-Diagtrack-Listener.etl

Exit – Reboot.


DiagTrack – The Diagnostics Tracking Service

When you acquire, install and use the Program, Microsoft collects information about you, your devices, applications and networks, and your use of those devices, applications and networks. Examples of data we collect include your name, email address, preferences and interests; browsing, search and file history; phone call and SMS data; device configuration and sensor data; and application usage. For example, when you:

  • install the Program, we may collect information about your device and applications and use it for purposes such as determining or improving compatibility,
  • use voice input features like speech-to-text, we may collect voice information and use it for purposes such as improving speech processing,
  • open a file, we may collect information about the file, the application used to open the file, and how long it takes and use it for purposes such as improving performance, or
  • enter text, we may collect typed characters and use them for purposes such as improving auto complete and spell check features.

Reference: Article: “Microsoft’s Windows 10 Preview has a (Built in key logger) DiagTrack”??

Windows 10 instructions for removing data leaking modules, services & daemons.

Microsoft has handed out Windows 10 upgrades for free. This has been a blessing and a curse to some who feel the new OS has excessive information gathering and privacy leaks built in. While we love the start menu we also do not like these leaks. So provided are “Fixes” that can be done, if you choose, that will limit some of the data leaks. Of course as you know executing any command or batch file is at your own responsibility, we have provided documentation that will help you if you choose to limit Windows 10 data gathering.

If you don’t know what you are doing please don’t run a command, research it. Also, as far as the PowerShell or Registry if you are not familiar with it please don’t go messing around. Also, is provided commands to limit or remove windows update and if you don’t know what you are doing it’s probably not best to completely remove the Windows update feature. Alas, after a wall of warnings here are the commands to modify your windows 10, please be careful…

Any modification of your Windows 10 OS is done at your own risk.
Complements of 4Chan

Pic complements of 4Chan

— Before / During Installation —

Do not use Express Settings. Hit Customize, and make sure everything is turned off.
It’s strongly preferred that you use a local account with Windows 10.

— After Installation —
Head to Settings > Privacy, and disable everything, unless there are some things you really need.
While within the Privacy page, go to Feedback, select Never in the first box, and Basic in the second box.

Head to Settings > Update and Security > Advanced Options > Choose how updates are delivered, and turn the first switch off.

Disable Cortana by clicking the Search bar/icon.

(Optional) Disable web search in Search by going to Settings, and turning off Search online and include web results.


— Slightly Complex —
Open up the Group Policy Editor by launching gpedit.msc as an administrator. Go through Computer Configuration > Administrative Templates > Windows Components > Data Collection and Preview Builds. Double click Telemetry, hit Disabled, then apply. NOTE: This only truly works in the Enterprise edition, but the final step provides a decent enough workaround for Pro users.

While still in the Group Policy Editor, go through Computer Configuration > Administrative Templates > Windows Components > OneDrive, double click Prevent the usage of OneDrive for file storage, hit Enabled, then apply.
Open up the Registry Editor by launching regedit as an administrator. Go through HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\DataCollection, select AllowTelemetry, change its value to 0, then apply.


— Modify the Host – For Talk-back —

First, download the Take Ownership tweak [http://www.howtogeek.com/howto/windows-vista/add-take-ownership-to-explorer-right-click-menu-in-vista/] and enable it. Then, head to the Hosts File by going through C:\Windows\System32\Drivers\Etc, take ownership of the hosts file, and add the following IPs into it: vortex.data.microsoft.com vortex-win.data.microsoft.com telecommand.telemetry.microsoft.com telecommand.telemetry.microsoft.com.nsatc.net oca.telemetry.microsoft.com oca.telemetry.microsoft.com.nsatc.net sqm.telemetry.microsoft.com sqm.telemetry.microsoft.com.nsatc.net watson.telemetry.microsoft.com watson.telemetry.microsoft.com.nsatc.net redir.metaservices.microsoft.com choice.microsoft.com choice.microsoft.com.nsatc.net df.telemetry.microsoft.com reports.wes.df.telemetry.microsoft.com services.wes.df.telemetry.microsoft.com sqm.df.telemetry.microsoft.com telemetry.microsoft.com watson.ppe.telemetry.microsoft.com telemetry.appex.bing.net telemetry.urs.microsoft.com telemetry.appex.bing.net:443 settings-sandbox.data.microsoft.com vortex-sandbox.data.microsoft.com


— Get rid of OneDrive —

Use this batch file, run it.


— Disabled automatic Windows Updates —
Open Admin Command Prompt and type: gpedit.msc
Manuever to: Computer Configuration -> Administrative Templates -> Windows Components -> Windows Update
Select it and select disable, apply and ok.

— Up To You —
Replace Microsoft Edge/Internet Explorer with Firefox, Chromium, or any forks/variations of them.
Replace Windows Media Player with VLC or MPC-HC
Replace Groove Music with Foobar2000, Winamp, or MusicBee.
Replace Photos/Windows Photo Viewer with ImageGlass or IrfanView.

— “Something Happened” error —
Change your language to English (US).
Control Panel -> Clock, Language, and Region -> Region -> Administrative -> Change system locale


— Enable Dark Mode (purely aesthetics) —
Open Powershell (search for it if you have to)
New-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Themes\Personalize -Name AppsUseLightTheme -Value 0

— Remove Dark Mode —
Open Powershell
Remove-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Themes\Personalize -Name AppsUseLightTheme


— Disable Hybrid Sleep (save on your HDD/SSD/PCI-E SSD TB write amount) —
Open cmd.exe as admin, type in:
powercfg -h off





So let’s look at one of the coolest features, sending email to outsiders of ProtonMail.

I have been very excited to try ProtonMail.

ProtonMail is the first Encrypted and secure email system for public use and was developed by scientist involved with the CERN project over concerns of privacy. The email servers for ProtonMail are located in Switzerland, outside of US and EU jurisdiction. The background of the fund-raising story on Indiegogo is also as interesting as this service

The idea is simple all encryption happens on the server and using a special view via the browser when you first arrive at their secure site .

Let’s look at one of the coolest features, sending email to outsiders of ProtonMail that you would like to encrypt.

Click to enlarge these screen-shots.

You have the ability to send messages just like Gmail or any other cloud based email provider. If you wanted to send a general note to someone and don’t feel the need for encryption you can still send an old school email.

Now, say you want to send a sensitive email and are worried of that email falling into wrong hands or even worse used against you in the future, you can send a email from Protonmail with an expiration date, time and hour.


When you send the email with expiration the recipient will receive a link email with a password hint.

So the above screen-shot is me acting as the sender from my laptop and below is me acting as the recipient from my mobile.

ProtonMail does not have a Mobile App yet but the mobile browser version is just fine for viewing and composing emails.

This screen-shot below is of a secure and expirable email on a mobile device, notice the link and password hint. I gave the password hint of 5 and the expiration of the email sent 3 hours.


Clicking the link will take you back to a special email view on the ProtonMails site. The recipient will have access to this view.

After the recipient puts in the password you chose when composing the email, of course your recipient should know this password.


Now your email can be read and you have control of its deletion. Below would be the message, in this example it was left blank.

Head on over to https://protonmail.ch and sign up for the beta and it took about 2 weeks for my invite once I signed up.