I wouldn't care if they did or didn't. A share submitted is a share, regardless of where it came from. I don't see why pool operators should be responsible for other people who don't secure their machines properly.
What are we going to do next, ask pool operators to reject shares because I bought my hardware with income I didn't pay taxes on?
It's ok if you don´t care.
And if you ever run a pool, just let me know it clearly so I will not send a single share.
Pool operators need to choose it's audience, being that botnets or legit miners.