As @Chris22 said, that is the best approach, as we don’t know what that program did (was it just a pure xch lifting code, or rather a trojan that opens doors for any crap to be downloaded at any point).
Saying that, the question is whether it left some residue on your plotted drives. I would hope not, but maybe formatting those drives should also be done. Not sure what AV you are using, but as long as Defender is not recognizing that crap, there is really no way to test those plotted drives for cleanness.
There is no point to plot today OG plots. With NFT plots you can either farm solo or pool. If you want to go all solo, I would still plot one drive for a different NFT and keep it on any pool, just to get some extra stats about your farm.
Saying that, I have an old Dell with 3060 ti, and am able to produce over 500 k32/C7-8 plots per day (using Max’s GPU plotter). Depending how much RAM you have on those boxes, you may be looking at 2-3 days to replot your farm.
So, as far as plotting, the only question is whether you want to go ahead with Max’s plotter today or wait for the official Chia plotter for compressed plots. So far, the chia’s new plotter is just a vaporware announced to potentially hurt Max’s efforts while giving them more time to scramble for a working solution.
By the way, I assume that you have at least 3 computers (one farmer and two plotters that are idle - those threadrippers), and only the farmer got contaminated. If that is the case, before you make any decision what to do, you could disconnect one of your plotter from the network and create a new cold mnemonic on that computer. This way, for time being you could use that new address for farming. As you would only copy the new address to your farmer, even if the box is still infected, it would not be able to lift your new XCH. It is a mickey mouse move, but gives you some time to think what is the best next step for you without making a rush decision.
I guess, we have entered a new era of targeted chia malware (assuming that before, we only had some crude scripts). That implies that any exe downloaded to a farm will get more and more sofisticated with every day, making it much harder to eradicate it. So the cold wallets looks like a must for now for those that didn’t start with them. Also, as before, no browsers and no exe downloads on the farm (use a shared folder and download chia / plotter on another box, and just put it on that shared folder).