In Windows, how do I safely rebuild my computer?
- Read through these instructions and links in their entirety before you begin, so you're sure to have everything in place.
- In Windows 8.x, rebuild options are built directly into your operating system. Refer to the Microsoft page How to refresh, reset, or restore your PC for instructions. From the three options given by Microsoft, choose either refresh ( ) or reset ( ; no personal files are kept).
- If you're running a Windows operating system earlier than Windows 7, UITS strongly encourages you to rebuild with Windows 8.x or 7; see Recommended Windows operating systems at IU. For purchasing information if you're an Indiana University student, faculty member, or staff member, see the "Software for students, faculty, and staff" section in Software available through the IU/Microsoft Campus Agreement with Core Server Site License.
The most common reason for rebuilding your Windows computer is a system-level compromise, such as an infection caused by a system-level worm (e.g., Blaster, Welchia) or a system bug that's been exploited. Rebuilding your computer ensures that you remove all traces of the compromise.
To thoroughly clean and rebuild your computer, be sure to take all of the following steps; failure to do so can put the entire IU network at risk.
- If your computer has been compromised by a virus, remove it from the network by unplugging the network cable from the computer, or by turning off the wireless or dial-up connection. Do not reconnect your computer to the network until you have begun step 3; otherwise, you risk spreading the virus to other computers on the network.
- In preparation for wiping your computer's hard drive, back up your personal files to an external source, such as a flash drive, an external hard drive, or disks.
- Perform a clean install of Windows 8.x or 7. (Be sure you've
backed up your personal files; they will be unrecoverable after you
wipe the hard drive.) Do not back up your programs; instead, reinstall
the software applications you own using the installer files from the
original disks or from IUware. Make sure you use a different password for
the administrative account than you used in the previous
installation. When you reboot your computer, allow automatic updates
when prompted, which is the recommended action. For installation
instructions, see At IU, how do I install Windows 8.x or 7?
At IU Bloomington, if you aren't comfortable rebuilding your computer, you can use the Carry-in Consulting service.
- Unless you've prepared media ahead of time with the updates, drivers, and patches mentioned in steps 5 through 7, below, you may connect to the Internet at this time to update your operating system and security software. However, you should only connect to the IU network if it's your sole source for downloading and installing updates.
- Install security software from a flash
drive or other external source; you'll want to prepare this ahead of
time. Refer to In Windows, how do I safely upgrade to the latest security
Note:For personal computers, UITS recommends Windows Defender for Windows 8.x, which comes as part of Windows 8.x as a full antivirus suite. For Windows 7 and Vista, UITS recommends Microsoft Security Essentials, available free of charge via IUware. Be sure to have only one antivirus program installed.
- Reinstall drivers for your network card, printer, and other devices. Either use the driver disk provided by the manufacturer of the device or visit the manufacturer's website and download the driver.
- Install the latest Windows patches and service packs. All patches
are available from the IU Microsoft Update Service; see What is the IU Microsoft Update Service, and how do I configure my
computer to use it?
Note:Unless you reconnected to the network in Step 4, you'll need to have downloaded these patches and service packs ahead of time on separate media.
- Turn on the Windows Firewall.
For help, see Microsoft Support.
- If you have not yet done so, reconnect to the network, and change
your IU Network ID passphrase immediately
after you have rebuilt your computer. When crackers
have control of your computer, they can monitor and log every
keystroke you enter (e.g., passwords, email conversations). See At IU, how do I change my Network ID passphrase?
If you were blocked from the network, you must request to have the block removed. Once you receive confirmation that the block has been removed, you can connect to the network. For more, see If my network access has been disabled by UIPO or UISO, how can I get it re-enabled?
UITS also recommends the following to help prevent future system compromises:
- Keep your Windows service packs current by scheduling daily automatic updates.
- Schedule your security/antivirus software to perform daily updates and scans.
- Practice the principle of least privilege when using your computer. If your computer gets exploited, it helps prevent crackers from acquiring administrative access.
For help, see Microsoft Support.
This is document anbp in the Knowledge Base.
Last modified on 2015-05-10.
- Fill out this form to submit your issue to the UITS Support Center.
- Please note that you must be affiliated with Indiana University to receive support.
- All fields are required.