Windows 10 Reset PC with malwares,viruses and rootkits

1

I have been recently wondering whether the option we have in windows 10 to reset the PC, which includes the reset function that does a deep scan and delete all files in all partitions and drives, get rid of viruses,malwares and especially, rootkits. Is deleting ALL files from ALL partitions good enough? or there is the chance that a rootkit gave itself the ability to not get erased?

I also wondered if some sort of malware can modify the media creation tool I used to create a bootable USB in order to perform 100% clean install (In case there are positive answers to my first question)?

Thanks :D

Hacktivator

Posted 2016-09-07T22:36:37.263

Reputation: 23

1The Reset feature within Windows 10 reinstalls Windows 10. – Ramhound – 2016-09-07T22:58:21.147

1Didn't answer my question though... because for example some AMD things stayed, Asus too. What about viruses? or rootkits? – Hacktivator – 2016-09-07T23:10:45.020

I most certainly did answer your question. If things were kept, you choose to keep them, instead of selecting the option that removes everything. Yes; Malware could in theory modify the image, Malware won't because it requires certain Microsoft executables to be installed. No; I won't list what those are. Your question about the rootkit, depends on the rootkit, be specific about which rootkit your infected with? Remember we expect questions to be practical question, a question we can answer, answering a question about any rootkit isn't practical. – Ramhound – 2016-09-07T23:13:07.183

Answers

2

It depends on how badly your computer is infected. Secure boot is designed to prevent this, but it would definitely be possible on say, a uefi computer with secure boot disabled for malware to install itself on the efi partition, loading windows after itself and removing any ability to overwrite it.

If you're really worried, you can always reset your BIOS/UEFI, use a dvd of Windows 10, fully wipe your hard drive and reinstall from scratch.

With very little exception, that will clear absolutely everything. (There are some rumors of firmware malware that target specific devices, and can't be removed with this, but you have to be targeted pretty specifically for those, and unless you've made yourself a target for the NSA, I wouldn't worry about it.)

Andrew Hendrix

Posted 2016-09-07T22:36:37.263

Reputation: 134

Also, I say DVD instead of USB Drive, because a DVD can't be altered after creation. Burn it on a trusted machine. :) – Andrew Hendrix – 2016-09-08T04:47:42.560

Asked: 2016-09-07T22:36:37.263

Viewed: 1 694 times

Active: 2016-09-08T04:45:21.077