diff --git a/README.md b/README.md
index 512ba28..9902f4b 100644
--- a/README.md
+++ b/README.md
@@ -1,7 +1,40 @@
+# Using the ansible scripts
+
 Ansible playbooks for deploying classroom computers. Run with something like:
 
     ansible-playbook --user <local admin> -k -K -i inventory.yml setup.py
 
 or, for Apple computers:
-
     ansible-playbook --user <local admin> -k -K -i inventory.yml macsetup.py 
+
+# How classroom computers are prepared at FRI
+
+The computers are prepared as follows:
+  - Ask teachers to check their requirements.
+  - Fix ansible scripts according to the requirements.
+  - Set up a fresh Windows and Linux install on a VM.
+  - Use ansible to deploy the software, fixing fresh bugs due to changes in the install processes along the way.
+  - Fix root filesystem UUIDs to what they were last year so the network-booted menu still works.
+  - Create partition table image and partition images using [FRI Backup](https://github.com/UL-FRI/ansible_classroom_deploy/tree/main/fri_backup).
+  - Deploy the images on separate VMs - one for Linux, one for Windows.
+  - Have teachers check their software in the VMs, report any problems.
+  - Fix problems on the VMs.
+  - Create partition images for Windows on one VM, for Linux on the other.
+  - Deploy the images on a limited number of computers in the classrooms using FRI Backup.
+  - Test the newly deployed computers, fix identified problems on the VMs.
+  - Join the Linux VM into AD. One AD account is used for all computers.
+  - Deploy the partition tables and partitions to the classrooms using [custom ansible scripts](https://github.com/UL-FRI/ansible_classroom_deploy/tree/main/polz_scripts) running FRI Backup and [UDPCast](https://www.udpcast.linux.lu/cmd.html).
+  - Join Windows into AD.
+
+# Immutable computers
+
+Some pieces of modern software assume that a computer is only used by one user who has practically unlimited space in their home folder. Examples of such software are Android Studio, Visual Studio Code, Matlab, Windows Subsystem for Linux (WSUS) and others. Instead of trying to get the software to work, we might just give up and have everyone use the same account on each computer, then wipe all data after they log out / reboot.
+
+## Windows
+
+We intend to use [UWF](https://learn.microsoft.com/en-us/windows/configuration/wcd/wcd-unifiedwritefilter).
+
+## Linux
+
+We intend to use [snapper](https://wiki.archlinux.org/title/Snapper).
+
diff --git a/roles/ad_joined/tasks/main_lin.yml b/roles/ad_joined/tasks/main_lin.yml
index 2d9b02e..fce6850 100644
--- a/roles/ad_joined/tasks/main_lin.yml
+++ b/roles/ad_joined/tasks/main_lin.yml
@@ -24,7 +24,7 @@
 - name: "Rename"
   # Racunalnik najprej preimenujmo, da ne bosta v domeni obenem 2 z istim imenom
   hostname:
-    name: "{{inventory_hostname}}"
+    name: "{{inventory_hostname}}-linux"
   register: hostname_res
 
 - name: Check whether we already joined
@@ -33,7 +33,7 @@
 
 - name: Join using realmd
   expect:
-    command: realm join --user={{ad_join_user}} --computer-ou={{ou_path}} FRI1.UNI-LJ.SI
+    command: realm join --user={{ad_join_user}} --computer-ou={{ou_path}} {{domain_name}}
     responses:
       (?i)Password: "{{ad_join_password}}"
   ignore_errors: yes
diff --git a/roles/ad_joined/tasks/main_win.yml b/roles/ad_joined/tasks/main_win.yml
index be252f9..f2de3a9 100644
--- a/roles/ad_joined/tasks/main_win.yml
+++ b/roles/ad_joined/tasks/main_win.yml
@@ -36,8 +36,8 @@
 
 - name: "Join domain"
   win_domain_membership:
-    domain_admin_user: "{{adjoin_user}}"
-    domain_admin_password: "{{adjoin_password}}"
+    domain_admin_user: "{{ad_join_user}}"
+    domain_admin_password: "{{ad_join_password}}"
     dns_domain_name: "{{domain_name}}"
     domain_ou_path: "{{ou_path}}"
     hostname: "{{inventory_hostname}}"
diff --git a/roles/eclipse/tasks/main_win.yml b/roles/eclipse/tasks/main_win.yml
index 5e39d7c..f26c809 100644
--- a/roles/eclipse/tasks/main_win.yml
+++ b/roles/eclipse/tasks/main_win.yml
@@ -12,4 +12,4 @@
   win_lineinfile:
     path: "%ProgramFiles%\\Eclipse {{ target_version }}\\eclipse\\eclipse.ini"
     regexp: "osgi.instance.area.default"
-    line: "-Dosgi.instance.area.default=H:/Documents/eclipse-workspace"
+    line: "-Dosgi.instance.area.default=D:/Documents/eclipse-workspace"
diff --git a/roles/matlab/tasks/main_win.yml b/roles/matlab/tasks/main_win.yml
index e0cddc2..4fd79ff 100644
--- a/roles/matlab/tasks/main_win.yml
+++ b/roles/matlab/tasks/main_win.yml
@@ -2,7 +2,7 @@
   set_fact:
     target_version: "R2025a_Update_1"
     license_path: \\ucilnicesmb.fri1.uni-lj.si\ucilnice_d\install\matlab\network.lic
-    dest_dir: C:\matlab
+    dest_dir: "{{ large_prog_dir }}\\matlab"
 
 - name: Set ISO path
   set_fact:
diff --git a/roles/pycharm/tasks/main_win.yml b/roles/pycharm/tasks/main_win.yml
index ae51dbd..2b4516a 100644
--- a/roles/pycharm/tasks/main_win.yml
+++ b/roles/pycharm/tasks/main_win.yml
@@ -8,4 +8,4 @@
     state: upgrade
     version: "{{ target_version }}"
 
-# TODO set default project directory to H:\something
+# TODO set default project directory to {{large_prog_dir}}\something
diff --git a/roles/sifive/tasks/main_win.yml b/roles/sifive/tasks/main_win.yml
index 1030ce1..e874141 100644
--- a/roles/sifive/tasks/main_win.yml
+++ b/roles/sifive/tasks/main_win.yml
@@ -5,7 +5,7 @@
 
 - name: Set SiFive Studio install location
   set_fact:
-    download_filedest: C:\FreedomStudio-4.18.0.2021-04-1-x86_64-w64-mingw32.zip
+    download_filedest: "{{ large_prog_dir }}\\FreedomStudio-4.18.0.2021-04-1-x86_64-w64-mingw32.zip"
 - name: Download SiFive
   win_command: wget "https://unilj-my.sharepoint.com/:u:/g/personal/bulic_fri1_uni-lj_si/EdiSnJpoClJLtc3AtcAtEQ4BI76_PeDvL-ZmhxG4OEyvig?e=xBRYcb&download=1" -O "{{ download_filedest }}"
   args:
@@ -14,12 +14,12 @@
 - name: Unzip SiFive Studio
   win_unzip:
     src: "{{ download_filedest }}"
-    dest: C:\SiFive\
-    creates: C:\SiFive\plugins
+    dest: "{{ large_prog_dir }}\\SiFive\\"
+    creates: "{{ large_prog_dir }}\\SiFive\\plugins"
     delete_archive: yes
 
 - name: Create desktop shortcut
   win_shortcut:
     description: "SiFive Freedom Studio"
-    src: C:\SiFive\FreedomStudio.exe
+    src: "{{ large_prog_dir }}\\SiFive\\FreedomStudio.exe"
     dest: '%public%\Desktop\SiFive.lnk'
diff --git a/roles/stm32duino/tasks/main_win.yml b/roles/stm32duino/tasks/main_win.yml
index 6779104..cc9fe81 100644
--- a/roles/stm32duino/tasks/main_win.yml
+++ b/roles/stm32duino/tasks/main_win.yml
@@ -10,13 +10,13 @@
 
 - name: Create STM32Duino directory
   win_file:
-    path: "D:\\RAVINOR\\STM32Duino"
+    path: "{{large_prog_dir}}\\RAVINOR\\STM32Duino"
     state: directory
 
 - name: Install preinstalled STM32Duino & Arduino environment
   win_get_url:
     url: "https://unilj-my.sharepoint.com/:u:/g/personal/rozman_fri1_uni-lj_si/EYTFhlsJOFtFk9xsaViP0eYBtILVS24ZF_dlkgodu_L9Nw?e=geavvJ"
-    dest: "D:\\RAVINOR\\STM32Duino"
+    dest: "{{large_prog_dir}}\\RAVINOR\\STM32Duino"
     # TODO Don't know if unzipping is required?
 
 
diff --git a/roles/xampp/tasks/main_win.yml b/roles/xampp/tasks/main_win.yml
index 44bbc71..154de4a 100644
--- a/roles/xampp/tasks/main_win.yml
+++ b/roles/xampp/tasks/main_win.yml
@@ -1,6 +1,7 @@
 - name: Install XAMPP
   win_chocolatey:
     name: xampp-81
+    install_args: ""
 
 - name: Make XAMPP config world writable
   win_acl:
@@ -12,7 +13,7 @@
 - name: Add firewall rules for XAMPP
   win_firewall_rule:
     name: "Allow inbound traffic for XAMPP: {{ item }}"
-    program: "%SystemDrive%\\xampp\\{{ item }}"
+    program: "C:\\xampp\\{{ item }}"
     action: allow
     direction: in
     protocol: tcp
diff --git a/setup.yml b/setup.yml
index aeaa82b..5596e87 100644
--- a/setup.yml
+++ b/setup.yml
@@ -13,8 +13,16 @@
   debugger: on_failed
   vars_files:
     - vars/software_keys.yml
+    - vars/dirs.yml
   roles:
-    - all_classes
+    # - all_classes
+    # - fri_base
+    - android_studio
+    # - jdk
+    # - powerdesigner
+    # - solidworks
+    # 
+    # - omnetpp
     # - stm32cube
     # - processing
     # - powerdesigner
diff --git a/unattended_install/win/autounattend.xml b/unattended_install/win/autounattend.xml
index bfb33fe..6ee0db5 100644
--- a/unattended_install/win/autounattend.xml
+++ b/unattended_install/win/autounattend.xml
@@ -1,13 +1,13 @@
 <?xml version="1.0" encoding="utf-8"?>
 <unattend xmlns="urn:schemas-microsoft-com:unattend" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State">
-	<!--https://schneegans.de/windows/unattend-generator/?LanguageMode=Unattended&UILanguage=en-US&Locale=en-US&Keyboard=00000424&Locale2=de-DE&Keyboard2=00140c00&Locale3=es-ES&Keyboard3=00140c00&GeoLocation=212&ProcessorArchitecture=amd64&BypassNetworkCheck=true&ComputerNameMode=Custom&ComputerName=ucilnica&ComputerNameScript=return+%27DESKTOP-%7B0%3AD3%7D%27+-f+%28+Get-Random+-Minimum+0+-Maximum+999+%29%3B&CompactOsMode=Default&TimeZoneMode=Explicit&TimeZone=Central+Europe+Standard+Time&PartitionLayout=GPT&EspSize=300&RecoveryMode=Partition&RecoverySize=1000&PartitionMode=Custom&DiskpartScript=REM&InstallToMode=Custom&InstallToDisk=0&InstallToPartition=3&DiskAssertionMode=Skip&DiskAssertionScript=On+Error+Resume+Next%0D%0ASet+wmi+%3D+GetObject%28%22winmgmts%3A%5C%5C.%5Croot%5Ccimv2%22%29%0D%0ASet+drive+%3D+wmi.Get%28%22Win32_DiskDrive.DeviceID%3D%27%5C%5C.%5CPHYSICALDRIVE0%27%22%29%0D%0AIf+Err.Number+%3C%3E+0+Then%0D%0A++++Msgbox+Err.Description%0D%0A++++WScript.Quit+1%0D%0AEnd+If%0D%0AIf+drive.InterfaceType+%3D+%22IDE%22+Or+drive.InterfaceType+%3D+%22SCSI%22+Then%0D%0A++++WScript.Quit+0%0D%0AElse%0D%0A++++MsgBox+%22Assertion+failed.%22%0D%0A++++WScript.Quit+1%0D%0AEnd+If&WindowsEditionMode=Generic&WindowsEdition=education&ProductKey=VK7JG-NPHTM-C97JM-9MPGT-3V66T&InstallFromMode=Automatic&InstallFromIndex=1&InstallFromName=Windows+11+Pro&InstallFromDescription=Windows+11+Pro&PEMode=Default&PEScript=%40for+%25%25d+in+%28D+E+F+G+H+I+J+K+L+M+N+O+P+Q+R+T+U+V+W+Y+Z%29+do+%40%28%0D%0A++++if+exist+%25%25d%3A%5Csources%5Cinstall.wim+set+%22IMAGE_FILE%3D%25%25d%3A%5Csources%5Cinstall.wim%22%0D%0A++++if+exist+%25%25d%3A%5Csources%5Cinstall.esd+set+%22IMAGE_FILE%3D%25%25d%3A%5Csources%5Cinstall.esd%22%0D%0A++++if+exist+%25%25d%3A%5Csources%5Cinstall.swm+set+%22IMAGE_FILE%3D%25%25d%3A%5Csources%5Cinstall.swm%22+%26+set+%22SWM_PARAM%3D%2FSWMFile%3A%25%25d%3A%5Csources%5Cinstall*.swm%22%0D%0A++++if+exist+%25%25d%3A%5Cautounattend.xml+set+%22XML_FILE%3D%25%25d%3A%5Cautounattend.xml%22%0D%0A%29%0D%0A%0D%0A%40if+not+defined+IMAGE_FILE+echo+Could+not+locate+install.wim%2C+install.esd+or+install.swm.+%26+pause+%26+exit+%2Fb+1%0D%0A%40if+not+defined+XML_FILE+echo+Could+not+locate+autounattend.xml.+%26+pause+%26+exit+%2Fb+1%0D%0A%0D%0A%3E%3EX%3A%5Cdiskpart.txt+%28%0D%0A++++echo+SELECT+DISK%3D0%0D%0A++++echo+CLEAN%0D%0A++++echo+CONVERT+GPT%0D%0A++++echo+CREATE+PARTITION+EFI+SIZE%3D300%0D%0A++++echo+FORMAT+QUICK+FS%3DFAT32+LABEL%3D%22System%22%0D%0A++++echo+ASSIGN+LETTER%3DS%0D%0A++++echo+CREATE+PARTITION+MSR+SIZE%3D16%0D%0A++++echo+CREATE+PARTITION+PRIMARY%0D%0A++++echo+FORMAT+QUICK+FS%3DNTFS+LABEL%3D%22Windows%22%0D%0A++++echo+ASSIGN+LETTER%3DC%0D%0A%29%0D%0A%0D%0Adiskpart.exe+%2Fs+X%3A%5Cdiskpart.txt+%7C%7C+%28+echo+diskpart.exe+encountered+an+error.+%26+pause+%26+exit+%2Fb+1+%29%0D%0A%0D%0Adism.exe+%2FApply-Image+%2FImageFile%3A%25IMAGE_FILE%25+%25SWM_PARAM%25+%2FName%3A%22Windows+11+Pro%22+%2FApplyDir%3AC%3A%5C+%7C%7C+%28+echo+dism.exe+encountered+an+error.+%26+pause+%26+exit+%2Fb+1+%29%0D%0A%0D%0Abcdboot.exe+C%3A%5CWindows+%2Fs+S%3A+%7C%7C+%28+echo+bcdboot.exe+encountered+an+error.+%26+pause+%26+exit+%2Fb+1+%29%0D%0A%0D%0Amkdir+C%3A%5CWindows%5CPanther%0D%0Acopy+%25XML_FILE%25+C%3A%5CWindows%5CPanther%5Cunattend.xml%0D%0Acopy+%25XML_FILE%25+C%3A%5CWindows%5CPanther%5Cunattend-original.xml%0D%0A%0D%0Arem+Avoid+creation+of+recovery+partition%0D%0Adel+C%3A%5CWindows%5CSystem32%5CRecovery%5Cwinre.wim%0D%0A%0D%0Arem+Disable+8.3+file+names%0D%0Afsutil.exe+8dot3name+set+C%3A+1%0D%0Afsutil.exe+8dot3name+strip+%2Fs+%2Ff+C%3A%5C%0D%0A%0D%0Arem+Disable+Windows+Defender%0D%0Areg.exe+LOAD+HKLM%5Cmount+C%3A%5CWindows%5CSystem32%5Cconfig%5CSYSTEM%0D%0Afor+%25%25s+in+%28Sense+WdBoot+WdFilter+WdNisDrv+WdNisSvc+WinDefend%29+do+reg.exe+ADD+HKLM%5Cmount%5CControlSet001%5CServices%5C%25%25s+%2Fv+Start+%2Ft+REG_DWORD+%2Fd+4+%2Ff%0D%0Areg.exe+UNLOAD+HKLM%5Cmount%0D%0A%0D%0Awpeutil.exe+reboot&UserAccountMode=Unattended&AccountName0=local_admin&AccountDisplayName0=FRI+IT&AccountPassword0=6tfc5rdx&AccountGroup0=Administrators&AccountName1=Student&AccountDisplayName1=Student&AccountPassword1=vaje&AccountGroup1=Users&AccountName2=&AccountDisplayName2=&AccountPassword2=&AccountGroup2=Users&AccountName3=&AccountDisplayName3=&AccountPassword3=&AccountGroup3=Users&AccountName4=&AccountDisplayName4=&AccountPassword4=&AccountGroup4=Users&AutoLogonMode=Own&BuiltinAdministratorPassword=&PasswordExpirationMode=Unlimited&PasswordMaxAge=42&LockoutMode=Default&LockoutThreshold=10&LockoutWindow=10&LockoutDuration=10&HideFiles=Hidden&ShowFileExtensions=true&LaunchToThisPC=true&TaskbarSearch=Box&TaskbarIconsMode=Default&TaskbarIconsXml=%3CLayoutModificationTemplate+xmlns%3D%22http%3A%2F%2Fschemas.microsoft.com%2FStart%2F2014%2FLayoutModification%22+xmlns%3Adefaultlayout%3D%22http%3A%2F%2Fschemas.microsoft.com%2FStart%2F2014%2FFullDefaultLayout%22+xmlns%3Astart%3D%22http%3A%2F%2Fschemas.microsoft.com%2FStart%2F2014%2FStartLayout%22+xmlns%3Ataskbar%3D%22http%3A%2F%2Fschemas.microsoft.com%2FStart%2F2014%2FTaskbarLayout%22+Version%3D%221%22%3E%0D%0A++%3CCustomTaskbarLayoutCollection+PinListPlacement%3D%22Replace%22%3E%0D%0A++++%3Cdefaultlayout%3ATaskbarLayout%3E%0D%0A++++++%3Ctaskbar%3ATaskbarPinList%3E%0D%0A++++++++%3Ctaskbar%3ADesktopApp+DesktopApplicationID%3D%22Microsoft.Windows.Explorer%22+%2F%3E%0D%0A++++++++%3Ctaskbar%3AUWA+AppUserModelID%3D%22windows.immersivecontrolpanel_cw5n1h2txyewy%21microsoft.windows.immersivecontrolpanel%22+%2F%3E%0D%0A++++++++%3Ctaskbar%3ADesktopApp+DesktopApplicationLinkPath%3D%22%25APPDATA%25%5CMicrosoft%5CWindows%5CStart+Menu%5CPrograms%5CWindows+PowerShell%5CWindows+PowerShell.lnk%22+%2F%3E%0D%0A++++++%3C%2Ftaskbar%3ATaskbarPinList%3E%0D%0A++++%3C%2Fdefaultlayout%3ATaskbarLayout%3E%0D%0A++%3C%2FCustomTaskbarLayoutCollection%3E%0D%0A%3C%2FLayoutModificationTemplate%3E&StartTilesMode=Default&StartTilesXml=%3CLayoutModificationTemplate+xmlns%3Adefaultlayout%3D%22http%3A%2F%2Fschemas.microsoft.com%2FStart%2F2014%2FFullDefaultLayout%22+xmlns%3Astart%3D%22http%3A%2F%2Fschemas.microsoft.com%2FStart%2F2014%2FStartLayout%22+Version%3D%221%22+xmlns%3D%22http%3A%2F%2Fschemas.microsoft.com%2FStart%2F2014%2FLayoutModification%22%3E%0D%0A++%3CLayoutOptions+StartTileGroupCellWidth%3D%226%22+%2F%3E%0D%0A++%3CDefaultLayoutOverride%3E%0D%0A++++%3CStartLayoutCollection%3E%0D%0A++++++%3Cdefaultlayout%3AStartLayout+GroupCellWidth%3D%226%22%3E%0D%0A++++++++%3Cstart%3AGroup+Name%3D%22%22%3E%0D%0A++++++++++%3Cstart%3ATile+Size%3D%222x2%22+Column%3D%224%22+Row%3D%220%22+AppUserModelID%3D%22windows.immersivecontrolpanel_cw5n1h2txyewy%21microsoft.windows.immersivecontrolpanel%22+%2F%3E%0D%0A++++++++++%3Cstart%3ADesktopApplicationTile+Size%3D%222x2%22+Column%3D%220%22+Row%3D%220%22+DesktopApplicationLinkPath%3D%22%25ALLUSERSPROFILE%25%5CMicrosoft%5CWindows%5CStart+Menu%5CPrograms%5CMicrosoft+Edge.lnk%22+%2F%3E%0D%0A++++++++++%3Cstart%3ADesktopApplicationTile+Size%3D%222x2%22+Column%3D%222%22+Row%3D%220%22+DesktopApplicationLinkPath%3D%22%25APPDATA%25%5CMicrosoft%5CWindows%5CStart+Menu%5CPrograms%5CSystem+Tools%5CFile+Explorer.lnk%22+%2F%3E%0D%0A++++++++%3C%2Fstart%3AGroup%3E%0D%0A++++++%3C%2Fdefaultlayout%3AStartLayout%3E%0D%0A++++%3C%2FStartLayoutCollection%3E%0D%0A++%3C%2FDefaultLayoutOverride%3E%0D%0A%3C%2FLayoutModificationTemplate%3E&StartPinsMode=Default&StartPinsJson=%7B%0D%0A++%22pinnedList%22%3A+%5B%0D%0A++++%7B%0D%0A++++++%22desktopAppLink%22%3A+%22%25ALLUSERSPROFILE%25%5C%5CMicrosoft%5C%5CWindows%5C%5CStart+Menu%5C%5CPrograms%5C%5CMicrosoft+Edge.lnk%22%0D%0A++++%7D%2C%0D%0A++++%7B%0D%0A++++++%22desktopAppLink%22%3A+%22%25APPDATA%25%5C%5CMicrosoft%5C%5CWindows%5C%5CStart+Menu%5C%5CPrograms%5C%5CFile+Explorer.lnk%22%0D%0A++++%7D%2C%0D%0A++++%7B%0D%0A++++++%22packagedAppId%22%3A+%22windows.immersivecontrolpanel_cw5n1h2txyewy%21microsoft.windows.immersivecontrolpanel%22%0D%0A++++%7D%0D%0A++%5D%0D%0A%7D&DisableFastStartup=true&EnableRemoteDesktop=true&PreventDeviceEncryption=true&EffectsMode=Default&DesktopIconsMode=Default&StartFoldersMode=Default&VirtIoGuestTools=true&WifiMode=Skip&WifiName=&WifiAuthentication=Open&WifiPassword=00000000&WifiProfileXml=%3CWLANProfile+xmlns%3D%22http%3A%2F%2Fwww.microsoft.com%2Fnetworking%2FWLAN%2Fprofile%2Fv1%22%3E%0D%0A++%3Cname%3EWLAN-123456%3C%2Fname%3E%0D%0A++%3CSSIDConfig%3E%0D%0A++++%3CSSID%3E%0D%0A++++++%3Chex%3E574C414E2D313233343536%3C%2Fhex%3E%0D%0A++++++%3Cname%3EWLAN-123456%3C%2Fname%3E%0D%0A++++%3C%2FSSID%3E%0D%0A++++%3CnonBroadcast%3Etrue%3C%2FnonBroadcast%3E%0D%0A++%3C%2FSSIDConfig%3E%0D%0A++%3CconnectionType%3EESS%3C%2FconnectionType%3E%0D%0A++%3CconnectionMode%3Eauto%3C%2FconnectionMode%3E%0D%0A++%3CMSM%3E%0D%0A++++%3Csecurity%3E%0D%0A++++++%3CauthEncryption%3E%0D%0A++++++++%3Cauthentication%3EWPA3SAE%3C%2Fauthentication%3E%0D%0A++++++++%3Cencryption%3EAES%3C%2Fencryption%3E%0D%0A++++++++%3CuseOneX%3Efalse%3C%2FuseOneX%3E%0D%0A++++++++%3CtransitionMode+xmlns%3D%22http%3A%2F%2Fwww.microsoft.com%2Fnetworking%2FWLAN%2Fprofile%2Fv4%22%3Etrue%3C%2FtransitionMode%3E%0D%0A++++++%3C%2FauthEncryption%3E%0D%0A++++++%3CsharedKey%3E%0D%0A++++++++%3CkeyType%3EpassPhrase%3C%2FkeyType%3E%0D%0A++++++++%3Cprotected%3Efalse%3C%2Fprotected%3E%0D%0A++++++++%3CkeyMaterial%3Epassword%3C%2FkeyMaterial%3E%0D%0A++++++%3C%2FsharedKey%3E%0D%0A++++%3C%2Fsecurity%3E%0D%0A++%3C%2FMSM%3E%0D%0A%3C%2FWLANProfile%3E&ExpressSettings=DisableAll&KeysMode=Skip&CapsLockInitial=Off&CapsLockBehavior=Toggle&NumLockInitial=Off&NumLockBehavior=Toggle&ScrollLockInitial=Off&ScrollLockBehavior=Toggle&StickyKeysMode=Default&ColorMode=Default&SystemColorTheme=Light&AppsColorTheme=Light&AccentColor=%230078d4&WallpaperMode=Default&WallpaperColor=%23008080&WallpaperScript=%23+Photo+by+Martin+Damboldt%3A+https%3A%2F%2Fwww.pexels.com%2Fphoto%2Fgray-bridge-and-trees-814499%2F%0D%0A%24url+%3D+%27https%3A%2F%2Fimages.pexels.com%2Fphotos%2F814499%2Fpexels-photo-814499.jpeg%27%3B%0D%0Areturn+%28+Invoke-WebRequest+-Uri+%24url+-UseBasicParsing+-TimeoutSec+30+%29.Content%3B&LockScreenMode=Default&LockScreenScript=foreach%28+%24drive+in+%5BSystem.IO.DriveInfo%5D%3A%3AGetDrives%28%29+%29+%7B%0D%0A++++if%28+%24found+%3D+Join-Path+-Path+%24drive.RootDirectory+-ChildPath+%27lockscreen.png%27+-Resolve+-ErrorAction+%27SilentlyContinue%27+%29+%7B%0D%0A++++++++return+%5BSystem.IO.File%5D%3A%3AReadAllBytes%28+%24found+%29%3B%0D%0A++++%7D%0D%0A%7D%0D%0A%27Cannot+find+any+files+that+match+pattern.%27+%7C+Write-Warning%3B&SystemScript0=Get-WindowsCapability+-Name+OpenSSH.Server*+-Online+%7C%0D%0A++++Add-WindowsCapability+-Online%0D%0A%0D%0A%24firewallParams+%3D+%40%7B%0D%0A++++Name++++++++%3D+%27sshd-Server-In-TCP%27%0D%0A++++DisplayName+%3D+%27Inbound+rule+for+OpenSSH+Server+%28sshd%29+on+TCP+port+22%27%0D%0A++++Action++++++%3D+%27Allow%27%0D%0A++++Direction+++%3D+%27Inbound%27%0D%0A++++Enabled+++++%3D+%27True%27++%23+This+is+not+a+boolean+but+an+enum%0D%0A++++Profile+++++%3D+%27Any%27%0D%0A++++Protocol++++%3D+%27TCP%27%0D%0A++++LocalPort+++%3D+22%0D%0A%7D%0D%0ANew-NetFirewallRule+%40firewallParams%0D%0A%0D%0A%24shellParams+%3D+%40%7B%0D%0A++++Path+++++++++%3D+%27HKLM%3A%5CSOFTWARE%5COpenSSH%27%0D%0A++++Name+++++++++%3D+%27DefaultShell%27%0D%0A++++Value++++++++%3D+%27C%3A%5CWindows%5CSystem32%5CWindowsPowerShell%5Cv1.0%5Cpowershell.exe%27%0D%0A++++PropertyType+%3D+%27String%27%0D%0A++++Force++++++++%3D+%24true%0D%0A%7D%0D%0ANew-ItemProperty+%40shellParams%0D%0A%0D%0A%23+Set+default+to+powershell.exe%0D%0A%24shellParams+%3D+%40%7B%0D%0A++++Path+++++++++%3D+%27HKLM%3A%5CSOFTWARE%5COpenSSH%27%0D%0A++++Name+++++++++%3D+%27DefaultShell%27%0D%0A++++Value++++++++%3D+%27C%3A%5CWindows%5CSystem32%5CWindowsPowerShell%5Cv1.0%5Cpowershell.exe%27%0D%0A++++PropertyType+%3D+%27String%27%0D%0A++++Force++++++++%3D+%24true%0D%0A%7D%0D%0ANew-ItemProperty+%40shellParams%0D%0A%0D%0A%23+Set+time+to+UTC%0D%0A%24shellParams+%3D+%40%7B%0D%0A++++Path+++++++++%3D+%27HKLM%3A%5CSYSTEM%5CCurrentControlSet%5CControl%5CTimeZoneInformation%27%0D%0A++++Name+++++++++%3D+%27RealTimeIsUniversal%27%0D%0A++++Value++++++++%3D+%2700000001%27%0D%0A++++PropertyType+%3D+%27dword%27%0D%0A++++Force++++++++%3D+%24true%0D%0A%7D%0D%0ANew-ItemProperty+%40shellParams%0D%0A%0D%0A%0D%0ASet-Service+-Name+sshd+-StartupType+Automatic+-Status+Running&SystemScriptType0=Ps1&SystemScript1=&SystemScriptType1=Reg&SystemScript2=&SystemScriptType2=Ps1&SystemScript3=&SystemScriptType3=Reg&SystemScript4=&SystemScriptType4=Vbs&DefaultUserScript0=&DefaultUserScriptType0=Reg&DefaultUserScript1=&DefaultUserScriptType1=Cmd&DefaultUserScript2=&DefaultUserScriptType2=Ps1&FirstLogonScript0=&FirstLogonScriptType0=Cmd&FirstLogonScript1=Set-Service+-Name+sshd+-StartupType+Automatic+-Status+Running&FirstLogonScriptType1=Ps1&FirstLogonScript2=&FirstLogonScriptType2=Reg&FirstLogonScript3=&FirstLogonScriptType3=Vbs&UserOnceScript0=&UserOnceScriptType0=Cmd&UserOnceScript1=&UserOnceScriptType1=Ps1&UserOnceScript2=&UserOnceScriptType2=Reg&UserOnceScript3=&UserOnceScriptType3=Vbs&WdacMode=Skip&WdacAuditMode=AuditingOnBootFailure&WdacScriptMode=Restricted&ComponentContent0=&Component0=&ComponentContent1=&Component1=&ComponentContent2=&Component2=-->
+	<!--https://schneegans.de/windows/unattend-generator/?LanguageMode=Unattended&UILanguage=en-US&Locale=en-US&Keyboard=00000424&UseKeyboard2=true&Locale2=en-US&Keyboard2=00000409&GeoLocation=212&ProcessorArchitecture=amd64&BypassNetworkCheck=true&ComputerNameMode=Custom&ComputerName=ucilnica&CompactOsMode=Default&TimeZoneMode=Implicit&PartitionMode=Custom&DiskpartScript=REM&InstallToMode=Custom&InstallToDisk=0&InstallToPartition=3&DiskAssertionMode=Skip&WindowsEditionMode=Generic&WindowsEdition=education&InstallFromMode=Automatic&PEMode=Default&UserAccountMode=Unattended&AccountName0=local_admin&AccountDisplayName0=FRI+IT&AccountPassword0=6tfc5rdx&AccountGroup0=Administrators&AccountName1=Student&AccountDisplayName1=Student&AccountPassword1=vaje&AccountGroup1=Users&AutoLogonMode=Own&PasswordExpirationMode=Unlimited&LockoutMode=Default&HideFiles=Hidden&ShowFileExtensions=true&LaunchToThisPC=true&TaskbarSearch=Box&TaskbarIconsMode=Default&DisableWidgets=true&StartTilesMode=Default&StartPinsMode=Default&DisableFastStartup=true&EnableRemoteDesktop=true&HardenSystemDriveAcl=true&PreventDeviceEncryption=true&EffectsMode=Default&DesktopIconsMode=Default&StartFoldersMode=Default&VirtIoGuestTools=true&WifiMode=Skip&ExpressSettings=DisableAll&LockKeysMode=Skip&StickyKeysMode=Default&ColorMode=Default&WallpaperMode=Default&LockScreenMode=Default&Remove3DViewer=true&RemoveBingSearch=true&RemoveCalculator=true&RemoveCamera=true&RemoveClock=true&RemoveCopilot=true&RemoveCortana=true&RemoveDevHome=true&RemoveFamily=true&RemoveFeedbackHub=true&RemoveGameAssist=true&RemoveHandwriting=true&RemoveInternetExplorer=true&RemoveMaps=true&RemoveMathInputPanel=true&RemoveMixedReality=true&RemoveNews=true&RemoveOffice365=true&RemoveOneSync=true&RemovePaint=true&RemovePhotos=true&RemovePowerAutomate=true&RemovePowerShellISE=true&RemoveQuickAssist=true&RemoveRecall=true&RemoveRdpClient=true&RemoveSkype=true&RemoveSolitaire=true&RemoveSpeech=true&RemoveStepsRecorder=true&RemoveStickyNotes=true&RemoveGetStarted=true&RemoveToDo=true&RemoveWallet=true&RemoveFaxAndScan=true&RemoveWindowsHello=true&RemoveWordPad=true&RemoveYourPhone=true&SystemScript0=Get-WindowsCapability+-Name+OpenSSH.Server*+-Online+%7C%0D%0A++++Add-WindowsCapability+-Online%0D%0A%0D%0A%24firewallParams+%3D+%40%7B%0D%0A++++Name++++++++%3D+%27sshd-Server-In-TCP%27%0D%0A++++DisplayName+%3D+%27Inbound+rule+for+OpenSSH+Server+%28sshd%29+on+TCP+port+22%27%0D%0A++++Action++++++%3D+%27Allow%27%0D%0A++++Direction+++%3D+%27Inbound%27%0D%0A++++Enabled+++++%3D+%27True%27++%23+This+is+not+a+boolean+but+an+enum%0D%0A++++Profile+++++%3D+%27Any%27%0D%0A++++Protocol++++%3D+%27TCP%27%0D%0A++++LocalPort+++%3D+22%0D%0A%7D%0D%0ANew-NetFirewallRule+%40firewallParams%0D%0A%0D%0A%24shellParams+%3D+%40%7B%0D%0A++++Path+++++++++%3D+%27HKLM%3A%5CSOFTWARE%5COpenSSH%27%0D%0A++++Name+++++++++%3D+%27DefaultShell%27%0D%0A++++Value++++++++%3D+%27C%3A%5CWindows%5CSystem32%5CWindowsPowerShell%5Cv1.0%5Cpowershell.exe%27%0D%0A++++PropertyType+%3D+%27String%27%0D%0A++++Force++++++++%3D+%24true%0D%0A%7D%0D%0ANew-ItemProperty+%40shellParams%0D%0A%0D%0A%23+Set+default+to+powershell.exe%0D%0A%24shellParams+%3D+%40%7B%0D%0A++++Path+++++++++%3D+%27HKLM%3A%5CSOFTWARE%5COpenSSH%27%0D%0A++++Name+++++++++%3D+%27DefaultShell%27%0D%0A++++Value++++++++%3D+%27C%3A%5CWindows%5CSystem32%5CWindowsPowerShell%5Cv1.0%5Cpowershell.exe%27%0D%0A++++PropertyType+%3D+%27String%27%0D%0A++++Force++++++++%3D+%24true%0D%0A%7D%0D%0ANew-ItemProperty+%40shellParams%0D%0A%0D%0A%23+Set+real-time+clock+to+UTC%0D%0A%24shellParams+%3D+%40%7B%0D%0A++++Path+%3D+%27HKLM%3A%5CSYSTEM%5CCurrentControlSet%5CControl%5CTimeZoneInformation%27%0D%0A++++Name+%3D+%27RealTimeIsUniversal%27%0D%0A++++Value+%3D+%271%27%0D%0A++++PropertyType+%3D+%27DWord%27%0D%0A%7D%0D%0ANew-ItemProperty+%40shellParams%0D%0A%0D%0A%0D%0ASet-Service+-Name+sshd+-StartupType+Automatic+-Status+Running&SystemScriptType0=Ps1&WdacMode=Skip-->
 	<settings pass="offlineServicing"></settings>
 	<settings pass="windowsPE">
 		<component name="Microsoft-Windows-International-Core-WinPE" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS">
 			<SetupUILanguage>
 				<UILanguage>en-US</UILanguage>
 			</SetupUILanguage>
-			<InputLocale>0409:00000424</InputLocale>
+			<InputLocale>0409:00000424;0409:00000409</InputLocale>
 			<SystemLocale>en-US</SystemLocale>
 			<UILanguage>en-US</UILanguage>
 			<UserLocale>en-US</UserLocale>
@@ -45,7 +45,6 @@
 	<settings pass="specialize">
 		<component name="Microsoft-Windows-Shell-Setup" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS">
 			<ComputerName>ucilnica</ComputerName>
-			<TimeZone>Central Europe Standard Time</TimeZone>
 		</component>
 		<component name="Microsoft-Windows-Deployment" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS">
 			<RunSynchronous>
@@ -76,7 +75,7 @@
 	<settings pass="auditUser"></settings>
 	<settings pass="oobeSystem">
 		<component name="Microsoft-Windows-International-Core" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS">
-			<InputLocale>0409:00000424</InputLocale>
+			<InputLocale>0409:00000424;0409:00000409</InputLocale>
 			<SystemLocale>en-US</SystemLocale>
 			<UILanguage>en-US</UILanguage>
 			<UserLocale>en-US</UserLocale>
@@ -145,6 +144,183 @@ foreach( $file in $Document.unattend.Extensions.File ) {
     [System.IO.File]::WriteAllBytes( $path, $bytes );
 }
 		</ExtractScript>
+		<File path="C:\Windows\Setup\Scripts\RemovePackages.ps1">
+$selectors = @(
+	'Microsoft.Microsoft3DViewer';
+	'Microsoft.BingSearch';
+	'Microsoft.WindowsCalculator';
+	'Microsoft.WindowsCamera';
+	'Microsoft.WindowsAlarms';
+	'Microsoft.549981C3F5F10';
+	'Microsoft.Windows.DevHome';
+	'MicrosoftCorporationII.MicrosoftFamily';
+	'Microsoft.WindowsFeedbackHub';
+	'Microsoft.Edge.GameAssist';
+	'Microsoft.Getstarted';
+	'Microsoft.WindowsMaps';
+	'Microsoft.MixedReality.Portal';
+	'Microsoft.BingNews';
+	'Microsoft.MicrosoftOfficeHub';
+	'Microsoft.Paint';
+	'Microsoft.Windows.Photos';
+	'Microsoft.PowerAutomateDesktop';
+	'MicrosoftCorporationII.QuickAssist';
+	'Microsoft.SkypeApp';
+	'Microsoft.MicrosoftSolitaireCollection';
+	'Microsoft.MicrosoftStickyNotes';
+	'Microsoft.Todos';
+	'Microsoft.Wallet';
+	'Microsoft.YourPhone';
+);
+$getCommand = {
+  Get-AppxProvisionedPackage -Online;
+};
+$filterCommand = {
+  $_.DisplayName -eq $selector;
+};
+$removeCommand = {
+  [CmdletBinding()]
+  param(
+    [Parameter( Mandatory, ValueFromPipeline )]
+    $InputObject
+  );
+  process {
+    $InputObject | Remove-AppxProvisionedPackage -AllUsers -Online -ErrorAction 'Continue';
+  }
+};
+$type = 'Package';
+$logfile = 'C:\Windows\Setup\Scripts\RemovePackages.log';
+&amp; {
+	$installed = &amp; $getCommand;
+	foreach( $selector in $selectors ) {
+		$result = [ordered] @{
+			Selector = $selector;
+		};
+		$found = $installed | Where-Object -FilterScript $filterCommand;
+		if( $found ) {
+			$result.Output = $found | &amp; $removeCommand;
+			if( $? ) {
+				$result.Message = "$type removed.";
+			} else {
+				$result.Message = "$type not removed.";
+				$result.Error = $Error[0];
+			}
+		} else {
+			$result.Message = "$type not installed.";
+		}
+		$result | ConvertTo-Json -Depth 3 -Compress;
+	}
+} *&gt;&amp;1 &gt;&gt; $logfile;
+		</File>
+		<File path="C:\Windows\Setup\Scripts\RemoveCapabilities.ps1">
+$selectors = @(
+	'Print.Fax.Scan';
+	'Language.Handwriting';
+	'Browser.InternetExplorer';
+	'MathRecognizer';
+	'OneCoreUAP.OneSync';
+	'Microsoft.Windows.MSPaint';
+	'Microsoft.Windows.PowerShell.ISE';
+	'App.Support.QuickAssist';
+	'Language.Speech';
+	'Language.TextToSpeech';
+	'App.StepsRecorder';
+	'Hello.Face.18967';
+	'Hello.Face.Migration.18967';
+	'Hello.Face.20134';
+	'Microsoft.Windows.WordPad';
+);
+$getCommand = {
+  Get-WindowsCapability -Online | Where-Object -Property 'State' -NotIn -Value @(
+    'NotPresent';
+    'Removed';
+  );
+};
+$filterCommand = {
+  ($_.Name -split '~')[0] -eq $selector;
+};
+$removeCommand = {
+  [CmdletBinding()]
+  param(
+    [Parameter( Mandatory, ValueFromPipeline )]
+    $InputObject
+  );
+  process {
+    $InputObject | Remove-WindowsCapability -Online -ErrorAction 'Continue';
+  }
+};
+$type = 'Capability';
+$logfile = 'C:\Windows\Setup\Scripts\RemoveCapabilities.log';
+&amp; {
+	$installed = &amp; $getCommand;
+	foreach( $selector in $selectors ) {
+		$result = [ordered] @{
+			Selector = $selector;
+		};
+		$found = $installed | Where-Object -FilterScript $filterCommand;
+		if( $found ) {
+			$result.Output = $found | &amp; $removeCommand;
+			if( $? ) {
+				$result.Message = "$type removed.";
+			} else {
+				$result.Message = "$type not removed.";
+				$result.Error = $Error[0];
+			}
+		} else {
+			$result.Message = "$type not installed.";
+		}
+		$result | ConvertTo-Json -Depth 3 -Compress;
+	}
+} *&gt;&amp;1 &gt;&gt; $logfile;
+		</File>
+		<File path="C:\Windows\Setup\Scripts\RemoveFeatures.ps1">
+$selectors = @(
+	'Microsoft-RemoteDesktopConnection';
+	'Recall';
+);
+$getCommand = {
+  Get-WindowsOptionalFeature -Online | Where-Object -Property 'State' -NotIn -Value @(
+    'Disabled';
+    'DisabledWithPayloadRemoved';
+  );
+};
+$filterCommand = {
+  $_.FeatureName -eq $selector;
+};
+$removeCommand = {
+  [CmdletBinding()]
+  param(
+    [Parameter( Mandatory, ValueFromPipeline )]
+    $InputObject
+  );
+  process {
+    $InputObject | Disable-WindowsOptionalFeature -Online -Remove -NoRestart -ErrorAction 'Continue';
+  }
+};
+$type = 'Feature';
+$logfile = 'C:\Windows\Setup\Scripts\RemoveFeatures.log';
+&amp; {
+	$installed = &amp; $getCommand;
+	foreach( $selector in $selectors ) {
+		$result = [ordered] @{
+			Selector = $selector;
+		};
+		$found = $installed | Where-Object -FilterScript $filterCommand;
+		if( $found ) {
+			$result.Output = $found | &amp; $removeCommand;
+			if( $? ) {
+				$result.Message = "$type removed.";
+			} else {
+				$result.Message = "$type not removed.";
+				$result.Error = $Error[0];
+			}
+		} else {
+			$result.Message = "$type not installed.";
+		}
+		$result | ConvertTo-Json -Depth 3 -Compress;
+	}
+} *&gt;&amp;1 &gt;&gt; $logfile;
+		</File>
 		<File path="C:\Windows\Setup\Scripts\VirtIoGuestTools.ps1">
 &amp; {
 	foreach( $letter in 'DEFGHIJKLMNOPQRSTUVWXYZ'.ToCharArray() ) {
@@ -192,20 +368,16 @@ $shellParams = @{
 }
 New-ItemProperty @shellParams
 
-# Set time to UTC
+# Set real-time clock to UTC
 $shellParams = @{
-    Path         = 'HKLM:\SYSTEM\CurrentControlSet\Control\TimeZoneInformation'
-    Name         = 'RealTimeIsUniversal'
-    Value        = '00000001'
-    PropertyType = 'dword'
-    Force        = $true
+    Path = 'HKLM:\SYSTEM\CurrentControlSet\Control\TimeZoneInformation'
+    Name = 'RealTimeIsUniversal'
+    Value = '1'
+    PropertyType = 'DWord'
 }
 New-ItemProperty @shellParams
 
 
-Set-Service -Name sshd -StartupType Automatic -Status Running
-		</File>
-		<File path="C:\Windows\Setup\Scripts\unattend-02.ps1">
 Set-Service -Name sshd -StartupType Automatic -Status Running
 		</File>
 		<File path="C:\Windows\Setup\Scripts\Specialize.ps1">
@@ -213,6 +385,18 @@ $scripts = @(
 	{
 		reg.exe add "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\OOBE" /v BypassNRO /t REG_DWORD /d 1 /f;
 	};
+	{
+		Remove-Item -LiteralPath 'Registry::HKLM\Software\Microsoft\WindowsUpdate\Orchestrator\UScheduler_Oobe\DevHomeUpdate' -Force -ErrorAction 'SilentlyContinue';
+	};
+	{
+		Get-Content -LiteralPath 'C:\Windows\Setup\Scripts\RemovePackages.ps1' -Raw | Invoke-Expression;
+	};
+	{
+		Get-Content -LiteralPath 'C:\Windows\Setup\Scripts\RemoveCapabilities.ps1' -Raw | Invoke-Expression;
+	};
+	{
+		Get-Content -LiteralPath 'C:\Windows\Setup\Scripts\RemoveFeatures.ps1' -Raw | Invoke-Expression;
+	};
 	{
 		net.exe accounts /maxpwage:UNLIMITED;
 	};
@@ -220,9 +404,15 @@ $scripts = @(
 		netsh.exe advfirewall firewall set rule group="@FirewallAPI.dll,-28752" new enable=Yes;
 		reg.exe add "HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server" /v fDenyTSConnections /t REG_DWORD /d 0 /f;
 	};
+	{
+		icacls.exe C:\ /remove:g "*S-1-5-11"
+	};
 	{
 		reg.exe add "HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power" /v HiberbootEnabled /t REG_DWORD /d 0 /f;
 	};
+	{
+		reg.exe add "HKLM\SOFTWARE\Policies\Microsoft\Dsh" /v AllowNewsAndInterests /t REG_DWORD /d 0 /f;
+	};
 	{
 		reg.exe add "HKLM\SYSTEM\CurrentControlSet\Control\BitLocker" /v "PreventDeviceEncryption" /t REG_DWORD /d 1 /f;
 	};
@@ -258,6 +448,9 @@ $scripts = @(
 	{
 		Set-WinHomeLocation -GeoId 212;
 	};
+	{
+		Get-AppxPackage -Name 'Microsoft.Windows.Ai.Copilot.Provider' | Remove-AppxPackage;
+	};
 	{
 		Set-ItemProperty -LiteralPath 'Registry::HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced' -Name 'LaunchTo' -Type 'DWord' -Value 1;
 	};
@@ -287,6 +480,9 @@ $scripts = @(
 		</File>
 		<File path="C:\Windows\Setup\Scripts\DefaultUser.ps1">
 $scripts = @(
+	{
+		reg.exe add "HKU\DefaultUser\Software\Policies\Microsoft\Windows\WindowsCopilot" /v TurnOffWindowsCopilot /t REG_DWORD /d 1 /f;
+	};
 	{
 		reg.exe add "HKU\DefaultUser\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "HideFileExt" /t REG_DWORD /d 0 /f;
 	};
@@ -325,9 +521,6 @@ $scripts = @(
 	{
 		Get-Content -LiteralPath 'C:\Windows\Setup\Scripts\VirtIoGuestTools.ps1' -Raw | Invoke-Expression;
 	};
-	{
-		Get-Content -LiteralPath 'C:\Windows\Setup\Scripts\unattend-02.ps1' -Raw | Invoke-Expression;
-	};
 );
 
 &amp; {