If your system got infected, would you reformat?

[KeeperOfThePizza]

it takes about 15-20 mins to install Windows 7, may take more time to find and remove malware.

[Growled Member]

Yeah, I would. Ive done so many times in the past. Just reformat and stick a clean backup image and I'm good to go.

[GraveDigger27]

If you got infected with malware, would you reformat.

Let's say, for instance, that your machine for whatever reason got infected with malware. Doesn't really matter which malware, just that it got infected, which required a ton of different scans to get rid of it. Now assuming you don't already have a system image saved on an external or internal drive what would you do? Would you keep using the computer as was after the malware had been removed or would you reformat your machine just to be safe.

The reason for this poll, is for all the computer repair technicians that tell me that they don't feel its necessary to reformat a customer's computer after its been infected with malware. I say, treat a customers computer as you would treat your own.

Although the computer repair professionals don't feel it's necessary, why NOT format? Unless you have a hidden partition containing recovery data, formatting the hard disk is the easiest way of making sure that there's nothing lingering around that could come back and bite the user in the butt. Although I DO think that users should be taught to make backups (and images) of their systems, I understand that many will never do more than save some of their data to a floppy disk (and many won't even do that...)

So if one of my brothers get their systems infected or their browser is hijacked I'm probably gonna spend little time trying to recover the system. If they have a computer purchased from a third party they'll need to either find the recovery software that came with the machine and revert the system back to the original, brand-new condition. If they haven't got backups of their preferences, favorites, cookies or documents - tough. Who knows what files are infected? I'll run a scan from a boot CD or USB key with Portable Apps or Liberkey on it, but I'm not willing to spend hours trying to bring them back to their previous, un-infected condition. I've installed free anti-virus programs and anti-malware utilities on their systems, but I've seen them fail to keep these programs updated and their spouses or children exhibit bad practices in roaming the internet, downloading and installing software without understanding what they're really doing and ignoring potential issues by not running system updates.

In these cases, my best response is - "Sorry, but if you can't be bothered to do the little things to keep the computer running correctly, then I can't be bothered when you screw it up." If they have to lose their data or buy a copy of the operating system because they never bothered to make a backup of their files or even make the recovery CDs (I've seen a couple of cases of that) - then perhaps a little pain is worth the learning. Harsh though it may be, you can't protect people from doing the wrong thing if they're not motivated.

[blade1269]

Hey,

If most people did this more often at home, there would be less botnets. Just sayin maybe once a year or so( for the less techy). i try to do it every 3 months.

[+Warwagon MVC]

Hey,

If most people did this more often at home, there would be less botnets. Just sayin maybe once a year or so( for the less techy). i try to do it every 3 months.

Once every 3 months? For a reinstall not an image restore? For the fun of it? Why God, WHY?

[shihchiun]

Yes.

1. You can't be sure you got everything off
   
2. It's probably less work
   
3. It's probably long overdue anyway
   

[Olemus]

Yup, wouldn't even think about it. Straight to the windows disk.

[zhangm Supervisor]

Wouldn't all that take lot of time? Not to mention that you still end up with a result that entails a margin of error. Formatting or image restoring is accurate, mostly automated, and quite quick (at least with Windows 7).

If you don't care at all about driver updates, Windows updates, and personal data, then yes, formatting a Windows Vista or Windows 7 computer takes about half an hour from inserting the disk to logging into the new OS.

Since there are only so many different ways that malware can launch automatically without user intervention, I believe that there isn't really any margin of error associated with neutering the infection. For me, I don't really care whether I get all the bits and pieces. I just care about removing enough bits to ensure that it can't launch.

To me, the whole assumption that after a malware infection, there will be little bits of malicious code left over that no one can detect is much like believing in God, Allah, or the Tooth Fairy.

You may as well believe that I've managed to insert a piece of malicious code into this post. It executes by employing a buffer overflow vulnerability in your browser that has not yet been documented. Using this, I've managed to download a trojan horse/rootkit onto your hard drive, and now I'm tracking your keystrokes. I guess you better reformat, just to make sure, right?

[+Warwagon MVC]

I guess you better reformat, just to make sure, right?

Absolutely not, but if we had proof that such a infection had in fact made it onto our system then may format.

[Electric Jolt]

Once every 3 months? For a reinstall not an image restore? For the fun of it? Why God, WHY?

I do mine once every 2 weeks, sometimes less.

[hdood]

I'd isolate the system from any outside network and clean it.

The belief that once infected implies always infected is faulty - if you're willing to assume that a machine is infected without actual evidence of it being so, then you must also accept the possibility that every single machine you use is already compromised by some stealth program. This is defined as paranoia.

Windows has, believe it or not, only a finite number of mechanisms that can be used to execute code without user interaction. After checking all those, and verifying system file checksums, I'd be reasonably certain that the machine is clean.

Sort of. They are finite, but they are complex and convoluted to the point where it really is exceptionally difficult for someone to know. Very few (any?) people have an understanding of every part of Windows. The run key might be obvious, but when you start considering other vectors like, say shell extensions or a file system filter or even just a DLL being present in a path that the loader searches, it suddenly becomes extremely difficult. Now, it is true that most malware is not particularly sophisticated (though some is), but it's still fairly arrogant to believe one has any chance of doing such a scan. Even just the act of verifying checksums becomes difficult when you consider upgrades. That said, it is a fine line between a rational measured reaction and paranoia.

[Hani]

If you don't care at all about driver updates, Windows updates, and personal data, then yes, formatting a Windows Vista or Windows 7 computer takes about half an hour from inserting the disk to logging into the new OS.

Since there are only so many different ways that malware can launch automatically without user intervention, I believe that there isn't really any margin of error associated with neutering the infection. For me, I don't really care whether I get all the bits and pieces. I just care about removing enough bits to ensure that it can't launch.

To me, the whole assumption that after a malware infection, there will be little bits of malicious code left over that no one can detect is much like believing in God, Allah, or the Tooth Fairy.

You may as well believe that I've managed to insert a piece of malicious code into this post. It executes by employing a buffer overflow vulnerability in your browser that has not yet been documented. Using this, I've managed to download a trojan horse/rootkit onto your hard drive, and now I'm tracking your keystrokes. I guess you better reformat, just to make sure, right?

But not all people have the skill to track down every piece of malware to ensure absolute safety. Besides some people (like me) are paranoid when it comes to their privacy.

Also, wouldn't driver and Windows updates be included in the image?

[+Warwagon MVC]

I do mine once every 2 weeks, sometimes less.

Good one Electric Jolt, your funny!

[Electric Jolt]

Good one Electric Jolt, your funny!

I wasn't joking. I have several computers, and I'm a very disorganized and OCD-driven person. When I say OCD-driven, I mean I'm driven my obsessive compulsive disorder. So for example, my desktop might be clean during the first week, but the week after that I get sloppy and have pr0n everywhere. My OCD kicks in and I must have a completely clear desktop, if I experience a BSOD from just a driver I will reformat again and try to avoid that BSOD. I'm obsessive about it. Sometimes I like to install the latest release of Windows Server or Ubuntu. Whatever will float my OCD-driven boat. I don't even activate because of so many computers. My laptop for example is extremely old, it is a Dell Inspiron 1100 and because it has no DVD drive, I network boot the Windows 7 install. All machines must be running the latest copy of Windows, regardless of the slow speed. When activation is up, I just reinstall. That's how I get the job done.

[_bobcat_ Veteran]

I probably would just reformat. I'd be so disturbed at having it in the first place.

I would also be likely to take a run through most of my online accounts when on a safe system and change my passwords, since I believe that getting that sort of information is the aim of a lot of malware these days.

[Hendrick]

Always reformat. Glad to have a Mac now though.

[murkurie]

never had a virus but if I did, I would just reformat, it only takes 20mins to reinstall windows 7, faster then a full system scan, and I can reinstall all my programs and have everything reconfiged in about 1 hour and 20mins, I have my backup designed for a fast reinstall of windows, longest part is reinstalling games and patching them if I feel like it

[NoneAvail]

First I'd ask, a reformat or a cleaning session. Sometimes I get computers that are loaded with Windows XP installations that are about 3-4 years old and is starting to run sloppy and slow. I'd clean it, using the tools I prefer and seen success with and if it is still running slow then I'd ask if they want a reformat which i would back up everything in the documents, photos, music, etc. Get a list of the applications they once had installed and ask them which they used. reinstall their OS, and place everything back to the places they've been and they won't even know if I did a format or not.

[Tech Star]

I always re-format and tell everyone to reformat if they get infected. I don't get infected much though, so not many reformat's here, unless I feel like I want to start fresh again.

[morphen]

The odd time i suspect anything i always reformat and reinstall.

Tinfoil hat is mandatory. :shiftyninja:

+1 :p i never try to fix anything, too timeconsuming, also, it's a good excuse to clean up :p

[Matrix XII]

Reformat!

Get rid of that filth.....

[sweetsam]

Absolutely. There in no uncertainty in that.

[fix-this!]

If you got infected with malware, would you reformat.

i surf porn very carefully. :laugh:

i probably would just becuase i enjoy occasionally formatting.

[Wyrdstorm]

I would definately format and install again...tis good to have a clear out from time to time anyway :)

[still1]

always reformat/...