Q: 7
A user's home system has been infected with malware. A technician has isolated the system from the
network and disabled System Restore. Which of the following should the technician do next?
Options
Discussion
A . CompTIA wants you to scan first after isolating and disabling System Restore. C looks tempting but that's more of a last resort if you can't clean it. Let me know if anyone sees it differently.
A . After isolating and turning off System Restore, CompTIA's malware removal steps say to scan with antivirus before trying anything more drastic. C (reimage) is only if the scan can't clean it up. I think that's what the objectives expect here but open to other takes.
Option A fits best since after isolation and disabling System Restore, CompTIA's steps say to run a full antivirus scan. Only go for C if the scan doesn't work or malware can't be cleaned. Pretty sure it's A here, correct me if I'm wrong.
Makes sense to go with A here. After you isolate and disable System Restore, CompTIA’s steps have you run the antivirus scan next to try remediation. If that fails, then you'd consider reimaging. Anyone else see it differently?
Makes sense it's A. The CompTIA malware removal steps always want antivirus scan next after disabling System Restore.
Option C here. I'd go for reimaging because it's a surefire way to wipe everything if the malware is nasty. Might be overkill but I've seen similar trap options before, not fully sure though.
A, saw a similar step order in practice exams. Seems to be what CompTIA wants after isolation and disabling System Restore.
Pretty sure it's A, that's what I saw on similar practice questions and in exam reports.
C tbh, since if the malware is especially nasty or can't be removed, reimaging just wipes everything and guarantees it's clean. I know A is usually next, but some scenarios might need C instead. Anyone else see that come up?
Classic CompTIA malware removal steps. Since the system's already isolated and System Restore is off, next move in their sequence is to run a full antivirus scan. That lines up with A. Only thing I'd add is, make sure defs are up to date first if you can safely do that. I think that's what they want here, but feel free to disagree if you see it differently.
Be respectful. No spam.
