In Windows, how do I safely rebuild my computer?
Read through these instructions and links in their entirety
before you begin, so you're sure to have everything in place.
- In Windows 8.x, rebuild options are built directly into your
operating system. Refer to the Microsoft page How
to restore, refresh, or reset your PC for instructions. From the
three options given by Microsoft, choose either refresh ("Refresh your
PC without affecting your files") or reset ("Remove everything and
reinstall Windows"; no personal files are kept).
- If you're running a Windows operating system earlier than Windows 7, UITS strongly encourages you to rebuild with Windows 8.x or 7; see Recommended Windows operating systems at IU. For purchasing information if you're an Indiana University student, faculty member, or staff member, see the "Acquiring the software" section in Software available through the IU/Microsoft Campus Agreement with Core Server Site License.
The most common reason for rebuilding your Windows computer is a system-level compromise, such as infection with a system-level worm (e.g., Blaster, Welchia) or a system bug that's been exploited. Rebuilding your computer ensures that you remove all traces of the compromise.
To thoroughly clean and rebuild your computer, be sure to take all of the following steps; failure to do so can put the entire IU network at risk.
Note: If you live in campus housing, you must run Get Connected after the rebuild is complete. If you were blocked from the network, you must request that the block be removed. Once you receive confirmation that the block has been removed, you can use the network.
- If your computer has been compromised by a virus, remove it from
the network by unplugging the network cable from the computer, or by
turning off the wireless or dial-up connection. Do
not reconnect your computer to the network until you have
begun step 3; otherwise, you risk spreading the virus to other
computers on the network.
- In preparation for wiping your computer's hard drive, back up your
personal files to an external source, such as a flash drive, an
external hard drive, or disks.
- Perform a clean install of Windows 8.x or 7. (Be sure
you've backed up your personal files; they will be unrecoverable after
you wipe the hard drive.) Use the original disks to
reinstall any other software applications you own. Make sure you use a
different password for the administrative account than you used in the
previous installation. When you reboot your computer, allow automatic
updates when prompted, which is the recommended action. For
installation instructions, see At IU, how do I install Windows 8 or 7?
Note: At IU Bloomington, if you aren't comfortable rebuilding your computer, you can use Carry-in Consulting.
Unless you've prepared media ahead of time
with the updates, drivers, and patches mentioned in steps 5 through 7,
below, you may connect to the Internet at this time to update your
operating system and security software. However, you should only connect to
the IU network if it's your sole source for downloading and
- Install security software from a
flash drive or other external source; you'll want to
prepare this ahead of time. Refer to In Windows, how do I safely upgrade to the latest security software?
Note: For personal computers, UITS recommends Windows Defender for Windows 8.x, which comes as part of Windows 8.x as a full antivirus suite. Be aware that the earlier version of Windows Defender on IUware is not the full suite, but a spyware program only. For Windows 7 and Vista, UITS recommends Microsoft Security Essentials, available free of charge via IUware. Be sure to have only one antivirus program installed.
- Reinstall drivers for your network card, printer, and other
devices. Either use the driver disk provided by the manufacturer of
the device or visit the manufacturer's web site and download the
- Install the latest Windows patches and service packs. All patches
are available from the IU Microsoft Update Service; see What is the IU Microsoft Update Service, and how do I configure my computer to use it?
Note: Unless you reconnected to the network in Step 4, you'll need to have downloaded these patches and service packs ahead of time on separate media.
- Turn on the Windows Firewall.
For help, see Microsoft Support.
- If you have not yet done so, reconnect to the network, and change
your IU Network ID passphrase immediately
after you have rebuilt your computer. When
crackers have control of your computer, they can monitor
and log every keystroke you enter (e.g., passwords, email
conversations). See At IU, how do I change my Network ID passphrase?
Note: If you were blocked from the network, you must request to have the block removed. Once you receive confirmation that the block has been removed, you can connect to the network. For more information, see If my network access has been disabled by UIPO or UISO, how can I get it re-enabled?
UITS also recommends the following to help prevent future system compromises:
- Keep your Windows service packs current by scheduling daily
- Schedule your security/antivirus software to perform daily
updates and scans.
- Practice the principle of least privilege when using your computer. If your computer gets exploited, it helps prevent crackers from acquiring administrative access.
For help, see Microsoft Support.
Last modified on October 07, 2013.