@MSMG, This does not interfere with anything. But... For 22621, it should be from "v23H2" to "v22H2"? And here, did anything change or be a error caused by those mass substitutions? from Code: if "%ImageBuild%" geq "22621" set "C_GamingApp=-" to Code: if "%ImageBuild%" geq "22000" set "C_GamingApp=-" I went to use Checkhealth and Scanhealth, and it didn't work. from Code: call :CleanupImage "%InstallMount%", "ComponentCleanup", "%CleanupOption%" to Code: call :CleanupImage "%InstallMount%", "%CleanupOption%"
Have fixed C_GamingApp and CleanupImage bugs and have uploaded the newer Toolkit.cmd The below code is for post W11 22H2 builds Code: :: Checking whether the selected Source OS is a Windows 11 v23H2 Client if "%SelectedSourceOS%" equ "w11" if "%ImageBuild%" gtr "22621" if "%ImageInstallationType%" equ "Client" ( echo. [1] Remove Windows Apps Using Apps List echo. echo. [2] Remove Windows Components Using Package List echo. echo. echo. echo. )
Hello dear MSMG! Can you help post a registry file that can disable windows defender that you use in your Toolkit? I will be very grateful.
For Windows 7 - Windows 10 Code: Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\Software\Microsoft\Windows Security Health\State] "AccountProtection_MicrosoftAccount_Disconnected"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender Security Center\Notifications] "DisableNotifications"=dword:00000001 "DisableEnhancedNotifications"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender] "DisableAntiSpyware"=dword:00000001 "DisableAntiVirus"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Features] "TamperProtection"=dword:00000000 "TamperProtectionSource"=dword:00000002 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Signature Updates] "FirstAuGracePeriod"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\UX Configuration] "DisablePrivacyMode"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run] "SecurityHealth"=hex:03,00,00,00,00,00,00,00,00,00,00,00 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MRT] "DontOfferThroughWUAU"=dword:00000001 "DontReportInfectionInformation"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Systray] "HideSystray"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender] "DisableAntiSpyware"=dword:00000001 "PUAProtection"=dword:00000000 "RandomizeScheduleTaskTimes"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Exclusions] "DisableAutoExclusions"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\MpEngine] "MpEnablePus"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Quarantine] "LocalSettingOverridePurgeItemsAfterDelay"=dword:00000000 "PurgeItemsAfterDelay"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Real-Time Protection] "DisableBehaviorMonitoring"=dword:00000001 "DisableIOAVProtection"=dword:00000001 "DisableOnAccessProtection"=dword:00000001 "DisableRealtimeMonitoring"=dword:00000001 "DisableRoutinelyTakingAction"=dword:00000001 "DisableScanOnRealtimeEnable"=dword:00000001 "DisableScriptScanning"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Remediation] "Scan_ScheduleDay"=dword:00000008 "Scan_ScheduleTime"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Reporting] "AdditionalActionTimeOut"=dword:00000000 "CriticalFailureTimeOut"=dword:00000000 "DisableEnhancedNotifications"=dword:00000001 "DisableGenericRePorts"=dword:00000001 "NonCriticalTimeOut"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Scan] "AvgCPULoadFactor"=dword:00000010 "DisableArchiveScanning"=dword:00000001 "DisableCatchupFullScan"=dword:00000001 "DisableCatchupQuickScan"=dword:00000001 "DisableRemovableDriveScanning"=dword:00000001 "DisableRestorePoint"=dword:00000001 "DisableScanningMappedNetworkDrivesForFullScan"=dword:00000001 "DisableScanningNetworkFiles"=dword:00000001 "PurgeItemsAfterDelay"=dword:00000000 "ScanOnlyIfIdle"=dword:00000000 "ScanParameters"=dword:00000000 "ScheduleDay"=dword:00000008 "ScheduleTime"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Signature Updates] "DisableUpdateOnStartupWithoutEngine"=dword:00000001 "ScheduleDay"=dword:00000008 "ScheduleTime"=dword:00000000 "SignatureUpdateCatchupInterval"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\SpyNet] "DisableBlockAtFirstSeen"=dword:00000001 "LocalSettingOverrideSpynetReporting"=dword:00000000 "SpyNetReporting"=dword:00000000 "SpyNetReportingLocation"=hex(7):30,00,00,00 "SubmitSamplesConsent"=dword:00000002 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\System\Microsoft-Antimalware-ShieldProvider] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\System\WinDefend] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\MsSecFlt] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SecurityHealthService] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Sense] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WdBoot] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WdFilter] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WdNisDrv] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WdNisSvc] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WinDefend] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\WMI\Autologger\DefenderApiLogger] "Start"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\WMI\Autologger\DefenderAuditLogger] "Start"=dword:00000000 [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows Security Health\State] "AccountProtection_MicrosoftAccount_Disconnected"=dword:00000000 For Windows 11 Code: Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\Software\Microsoft\Windows Security Health\State] "AccountProtection_MicrosoftAccount_Disconnected"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender Security Center\Notifications] "DisableNotifications"=dword:00000001 "DisableEnhancedNotifications"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender] "DisableAntiSpyware"=dword:00000001 "DisableAntiVirus"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Features] "TamperProtection"=dword:00000004 "TamperProtectionSource"=dword:00000002 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Signature Updates] "FirstAuGracePeriod"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\UX Configuration] "DisablePrivacyMode"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run] "SecurityHealth"=hex:03,00,00,00,00,00,00,00,00,00,00,00 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MRT] "DontOfferThroughWUAU"=dword:00000001 "DontReportInfectionInformation"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Systray] "HideSystray"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender] "DisableAntiSpyware"=dword:00000001 "PUAProtection"=dword:00000000 "RandomizeScheduleTaskTimes"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Exclusions] "DisableAutoExclusions"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\MpEngine] "MpEnablePus"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Quarantine] "LocalSettingOverridePurgeItemsAfterDelay"=dword:00000000 "PurgeItemsAfterDelay"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Real-Time Protection] "DisableBehaviorMonitoring"=dword:00000001 "DisableIOAVProtection"=dword:00000001 "DisableOnAccessProtection"=dword:00000001 "DisableRealtimeMonitoring"=dword:00000001 "DisableRoutinelyTakingAction"=dword:00000001 "DisableScanOnRealtimeEnable"=dword:00000001 "DisableScriptScanning"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Remediation] "Scan_ScheduleDay"=dword:00000008 "Scan_ScheduleTime"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Reporting] "AdditionalActionTimeOut"=dword:00000000 "CriticalFailureTimeOut"=dword:00000000 "DisableEnhancedNotifications"=dword:00000001 "DisableGenericRePorts"=dword:00000001 "NonCriticalTimeOut"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Scan] "AvgCPULoadFactor"=dword:00000010 "DisableArchiveScanning"=dword:00000001 "DisableCatchupFullScan"=dword:00000001 "DisableCatchupQuickScan"=dword:00000001 "DisableRemovableDriveScanning"=dword:00000001 "DisableRestorePoint"=dword:00000001 "DisableScanningMappedNetworkDrivesForFullScan"=dword:00000001 "DisableScanningNetworkFiles"=dword:00000001 "PurgeItemsAfterDelay"=dword:00000000 "ScanOnlyIfIdle"=dword:00000000 "ScanParameters"=dword:00000000 "ScheduleDay"=dword:00000008 "ScheduleTime"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Signature Updates] "DisableUpdateOnStartupWithoutEngine"=dword:00000001 "ScheduleDay"=dword:00000008 "ScheduleTime"=dword:00000000 "SignatureUpdateCatchupInterval"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\SpyNet] "DisableBlockAtFirstSeen"=dword:00000001 "LocalSettingOverrideSpynetReporting"=dword:00000000 "SpyNetReporting"=dword:00000000 "SpyNetReportingLocation"=hex(7):30,00,00,00 "SubmitSamplesConsent"=dword:00000002 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\System\Microsoft-Antimalware-ShieldProvider] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\System\WinDefend] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\MsSecFlt] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SecurityHealthService] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Sense] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WdBoot] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WdFilter] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WdNisDrv] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WdNisSvc] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WinDefend] "Start"=dword:00000004 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\WMI\Autologger\DefenderApiLogger] "Start"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\WMI\Autologger\DefenderAuditLogger] "Start"=dword:00000000 [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows Security Health\State] "AccountProtection_MicrosoftAccount_Disconnected"=dword:00000000
This informed builds are the upper marking of the support. So below these informed builds, should work. If you find a problem, please say here on the topic.
No, Only 19041.1 19042.1 19043.1 19044.1 19041.1739 19042.1739 19043.1739 19044.1739 Usually component removal support is only updated for Patch Tuesday builds but since recent Patch Tuesday builds are having serious issues, this time support for preview builds are added.
How stable would you say the preview is? Maybe it would be worth skipping this month's patching and waiting until next month?
You can use builds below the upper limit of the support. I used it with 19044.1706 homebrew ISO and it went fine. EDIT: Nope, don't do it.
Yes by the time the next update to Toolkit is released it will come with next Patch Tuesday update support.
The debug files are different for 22621 build, if you don't use the crash debugging feature then you can use it.
I didn't realize this. Good thing I didn't deploy the build on my PCs yet. Still in VM. I also used it on an Enterprise IoT LTSC 19044.1288 ISO from MVS. Seems like it did break updates to newer CUs since I'm getting a 0x800f0988 error when installing updates. Tried a lot of troubleshooting but to no avail. This must be the explanation. Thanks! I'll download 19044.1 and start over. EDIT: But how do I get LTSC 19044.1 ISO? Got it for the other editions using above mentioned method.