Q: 10
A user receives a message on a PC stating it has been infected by malware. A technician runs a full
scan on the user's machine and detects no malware. Later that day, the same message reappears.
Which of the following steps should the technician take to restore the system to regular
functionality?
Options
Discussion
Sounds like a deep infection that regular scans aren't catching, so reimaging is usually the safest route here. Going with B since it puts everything back to a known-good state. Pretty sure that's what CompTIA wants. Agree?
B. not D. SFC is only going to look for corrupted system files, but this sounds like malware that dodges normal detection. Persistent infection after scans usually means you need a full reimage to actually clean it out. Pretty sure that's what CompTIA's expecting thanks to that "restore to regular functionality" line. If anyone disagrees, let me know why you'd pick D.
Seen this a lot in practice tests and official study guides, pretty sure they want B for persistent malware.
Its B since the malware keeps coming back even after a scan, so reimaging is basically the only guaranteed fix here. Not 100% but that's what CompTIA usually goes for in this kind of scenario.
D , similar scenario popped up in some practice sets so I'd review the official guide again to double check.
saw pretty similar problem in my exam in exam reports, they always go with B for persistent malware that hides from scans.
B
Nah, D is tempting but it won't catch something that's evading both antivirus and system file checks. Pretty sure B fixes this since reimaging wipes out anything hiding deep. Seen similar advice in official CompTIA practice.
Is SFC (D) really enough if the malware is using non-standard persistence tricks?
Wouldn't go for D here, since System File Checker just fixes system files but doesn't actually remove malware that hides well. B (reimage) is what I've seen show up as the CompTIA-approved solution for infections that keep coming back. Trap is thinking the scan was enough when it clearly missed something sneaky. Pretty sure it's B but open to opposing views.
Be respectful. No spam.
