Deployment Image Servicing Management (DISM) – Removing An Injected Update From The Image

The following commands are used to identify and remove an update that has been injected into the image.

The DISM commands need to be executed from the Deployment Tools Command Prompt. This is part of the Windows AIK.

image

First, we need to get some information on the image so we can properly mount the image using DISM.

Dism /Get-WIMInfo /WimFile:e:\packages\osd\os_image\w7-x64-b2.wim

image

Now that we have the image name and/or index, we can properly mount the image.

Dism /Mount-WIM /WimFile:e:\packages\osd\os_image\w7-x64-b2.wim /Name:”W7-X64-B2Cdrive” /MountDir:C:\mount

image

Next, we want to output a list of the installed updates so we can get the update unique ID.

Dism /Image:C:\mount /Get-Packages >c:\featurelist.txt

image

After dumping the update list to the featurelist.txt, open it and search for the update you want to remove. We need to find the full name in order to remove it. (We searched for the KB ID in this example)

image

Once you have the unique ID for the update, we can then issue the command to remove the update from the image.

DISM /Image:C:\mount /Remove-Package /PackageName:Package_for_KB2661254~31bf385ad364e35~amd64~~6.1.1.3

image

Once the update has been removed, we can unmount the image and commit (save) our changes.

Dism /Unmount-WIM /MountDir:C:\mount /Commit

image

Now that the update has been removed from the image, the ConfigMgr Distribution Points would need to be updated to reflect the changes.

email

Written by , Posted .