Adguard bypass Windows Tracking user's settings #3516
Description
Adguard bypass Windows Tracking user's settings with wrong values when they are unchecked.
- Enable Stealth mode
Once you enable the Stealth mode, the following settings are automatically enabled:
- Disable Windows Telemetry (AllowTelemetry=0)
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection - Turn off Advertising ID (DisabledByGroupPolicy=1)
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AdvertisingInfo
- Uncheck the Windows Tracking (Telemetry, Advertising ID)
But even if you uncheck them, Adguard still configure them in the registry at every reboot of the machine.
At this time Adguard set the value AllowTelemetry=1, DisabledByGroupPolicy=0
-
Delete the keys in the registry manually then reboot the device
-
Reboot the device and monitor
I was able to capture the configuration with procmon at the reboot of the machine. This clearly shows that Adguard set value even when it is not supposed to do so.
This issue is problematic for Windows insider as they cannot receive updates anymore. Because an incorrect value is set by Adguard (AllowTelemetry=1 | DisabledByGroupPolicy=0)
Then, the user is blocked by group policy and cannot change its privacy settings afterward
Expected behavior
Adguard should remove the registries keys it created and stop disabling the diagtrack service when Windows tracking is unchecked. Configuring wrong values (1/0) can create undesirable effect because theses settings accept more value. Also the user is not able to changes its settings as Adguard use Group policy to set them
Example: The AllowTelemetry key accept multiple values
https://docs.microsoft.com/en-us/windows/privacy/configure-windows-diagnostic-data-in-your-organization
Diagnostic data off (Security) 0
Required (Basic) 1
Enhanced 2
Optional (Full) 3
environment
- Operating system and version: (Windows 10, v2004 build 19041.450)