One complaint I often hear about using straight OOBE autopilot is around the bloatware, either manufacturer installed (McAfee trials anyone?) or the Microsoft stuff, after all, who needs Xbox Gaming bar on an enterprise machine?
One option is to take the machine and drop on a fresh ISO, add the autopilot hash (or inject the JSON) and then remove the Microsoft apps via Store for Business and uninstall assignments. This of course works well, but it’s effort and also means you can’t ship straight from the manufacturer unless you also send a USB stick with something like the excellent OSD Cloud from David Segura (which I would strongly recommend for “it’s dead, Jim,” rebuilds.
I, personally, prefer to embrace the future and go all out Autopilot, ship straight to your users and let Intune sort the rest which obviously pushes me down the scripting route. There are plenty of scripts out there, but none quite ticked all of the boxes, I wanted something that would remove all MS apps without me having to mess with the store, manufacturer bloat and anything else which might have crept on.
I then saw this post from Ben Whitmore and decided I wanted it to be self-updating too.
So, here is my BloatWare removal script:
https://github.com/andrew-s-taylor/public/tree/main/De-Bloat
In this folder you will find the script to remove the bloat, the script to deploy it and also a script if you want to deploy as an application (as well as the IntuneWin file)
De-Bloat Script
Let’s start with the script itself, it will:
- Remove AppX Packages (listed)
- Remove associated reg keys
- Disable Windows Feedback
- Removes Cortana from Search
- Removes Web Results from search
- Disables Wi-Fi Sense
- Disables Live Tiles
- Removes unwanted scheduled tasks (Xbox Live etc.)
- Removes Windows 11 specific apps (Teams Chat for example)
- Clears start menu
- Disables the hidden surfing game in Edge
- Removes Dell, HP and Lenovo specific bloat (by detecting manufacturer and deploying appropriately)
- Removes McAfee (if detected)
- Removes any Win32 apps which aren’t Intune, Windows Update or MS Edge
- Removes Chrome
I know some of you may be looking at the last two options and worrying about the current estate if you deploy site-wide, but I have you covered. The Win32 app removal part will only run if NO apps have been deployed via Intune. If it detects any installations, it will just skip that bit.
The full script will report back to a log file here:
C:\ProgramData\Debloat\Debloat.log
Intune Script Deployment
My suggestion is to deploy as a device script in Intune, that way it will run prior to any apps installing and you will have the full experience. This is where the secondary script comes in. This will grab the latest copy of the de-bloat script, copy it to the machine and run locally. It’s quicker and means you can always be sure devices are running the latest version without constantly replacing scripts:
NOTE: Run in the 64-bit context
$DebloatFolder = "C:\ProgramData\Debloat"
If (Test-Path $DebloatFolder) {
Write-Output "$DebloatFolder exists. Skipping."
}
Else {
Write-Output "The folder '$DebloatFolder' doesn't exist. This folder will be used for storing logs created after the script runs. Creating now."
Start-Sleep 1
New-Item -Path "$DebloatFolder" -ItemType Directory
Write-Output "The folder $DebloatFolder was successfully created."
}
$templateFilePath = "C:\ProgramData\Debloat\removebloat.ps1"
Invoke-WebRequest `
-Uri "https://raw.githubusercontent.com/andrew-s-taylor/public/main/De-Bloat/RemoveBloat.ps1" `
-OutFile $templateFilePath `
-UseBasicParsing `
-Headers @{"Cache-Control"="no-cache"}
invoke-expression -Command $templateFilePathIntune Application Deployment
If you would prefer to deploy as an application, you can either grab the Intunewin file and use the following commands:
Install:
powershell -executionpolicy bypass -file debloat-intune-script.ps1Uninstall (obviously not an option, so a dead command)
cmd.exe /cDetection:
C:\ProgramData\Debloat\Debloat.logOR
If you want to be extra lazy, run this script:
Deploy-DeBloat-Application.ps1Which will download the file and setup the application for you
Happy de-bloating!
Thx for your great work. Would be even more amazing if office 365 all languages removal would be added
Glad you like it. The script runs before any apps are installed so for office languages it would probably need to be a second script
Greate post!
When i use the Deploy-DeBloat-Application.ps1 script i get some error messages that the create New-DetectionRule is not recognized.
Is this due missing modules you are using, if so which modules do you use ?
Sorry, I’d missed some functions from the script. It should be updated now
I am having trouble getting this to work. It has ran on my test PC, looking at the logs it says its removed HP Bloat but its still there, and several other things that I have checked. The surf game is listed above but no mention of this on the log file.
The HP bloat that is present is HP audio control, hp pc hardware diag, hp power manager, hp privacy settings, hp quickdrop, hp support assistant, hp system information and myhp
This script would be perfect for our needs if we can get these bits sorted, many thanks.
oh and the xbox game bar is still there 🙁
That’s sounds like it hasn’t deployed properly. Is the script in the ProgramData\DeBloat folder?
Did it run in the System context as a device targeted script?
Feel free to drop me an email if it’s easier
Hi Andrew, cheers for the reply.
Yes its in the programdata\debloat folder and the log says its run as system.
I have looked for your email but cant find it directly, do you mean just the contact link on your about page?
Hi Andrew,
Thanks for your reply.
Yes its running as system and in programdata\debloat
it looks to have done lots of removal and disabling but not the HP bloat and Surf. I am just going to run it again on fresh autopilot.
What is your email? i cant see it on the site or do you mean from the about page?
Many thanks
Hi, I’ll drop you an email now, I didn’t have a lot of HP hardware to test on so it may be the command needs amending slightly
A new update has been released to the script to remove the latest HP apps
Hi Andrew, thanks for this. I have a question. I want to keep Chrome on the device so I’ve commented out the sections on your script however how do I deploy the two scripts exactly. I’ve added the RemoveBloat script on intune however no luck.
Hi Jess, you have two options for this. Firstly you could just deploy the removebloat script directly in Intune and target your devices, but keep in mind that you’ll need to keep updating it as and when we find more bits to remove.
The other option is you fork or host the removebloat script in your own storage (and Azure blob would work fine) and then change the Uri in the debloat-intune-script to wherever you are hosting the bloat script itself.
Feel free to drop me an email on the contact page if you need any help deploying them
Andrew this script is amazing. It’s almost 1:30 am and i should be in bed but i’m too excited. I’m watching this thing uninstall everything. lol.
You have literally saved me hundreds of hours.
Glad you’ve found it useful! If you need anything else adding to it, please let me know, always happy to improve it!
Hi Andrew,
First off, thanks for all the work.
I downloaded all 3 scripts. Which one do I call when creating the devices script? Deploy or Remove, or debloat?
Thanks again!
-Frank
Hi Frank, the remove script is the one that does the actual removal. The Deploy script is if you want to use my version and have the machines always grab the latest copy. It’s entirely up to you which to use between the two.
Hope this helps
OK, great. Thanks for the reply. I will try both and see how they work. Thanks for your time and effort on this.