Exam 220-1102 topic 1 question 244 discussion

This method ensures that any firmware-based malware is removed by flashing the BIOS and that the system is completely clean by reformatting the drive and reinstalling the OS.

Flashing the BIOS, reformatting the drive, and then reinstalling the OS is the best method for returning a computer with a malware infection to service. Flashing the BIOS updates the firmware of the motherboard and can remove any malware that may have infected it. Reformatting the drive erases all data on it and can remove any malware that may have infected it. Reinstalling the OS restores the system files and settings to their original state and can remove any malware that may have modified them. Scanning the system with a Linux live disc may not detect or remove all malware infections. Degaussing the hard drive is an extreme method of destroying data that may damage the drive beyond repair. Reinstalling the OS before flashing the BIOS or scanning with antivirus may not remove malware infections that persist in the BIOS or other files.

Flashing the BIOS, reformatting the drive, and then reinstalling the OS is the best method for returning a computer with a malware infection to service

Reinstalling Windows first would not help if the Virus is hiding. B should be correctly. Is the Virus in the bios? I don't see why we have to flash the Bios.

B is correct, unless you want to leave traces of the infection on your device.

You want to reinstall the OS first because this is where the virus will have itself installed. Malware can infect as far as the bootloader, bootloaders are generally stored in the first sector of a bootable device called the Master Boot Record (MBR). If MBR is infected, no MBR would be found in the BIOS/UEFI Boot Maintenance Manager. The on-premises antivirus can detect if somehow the malware infection has placed itself on the client computer again and would confirm if infection is in the network.

D makes sense, and like the guy below mentioned ChatGPT says D

ChatGPT says D so ill go with D

D. Reinstalling the OS, flashing the BIOS, and then scanning with on-premises antivirus. Options A, B, and C have some incorrect elements and may not be the most effective methods for returning the computer to service after a malware infection: Option A: Scanning the system with a Linux live disc is not a bad idea, but it is not the best option compared to using a well-known and up-to-date antivirus solution on the installed operating system. Option B: Flashing the BIOS and reformatting the drive are necessary steps, but reinstalling the OS should be done after these actions to ensure a clean and reliable system. Option C: Degaussing the hard drive involves erasing data using a strong magnetic field and is typically used for magnetic media such as old CRT monitors and tapes. It is not relevant to modern hard drives and is not a suitable method for addressing a malware infection. So, the correct answer is D. Reinstalling the OS, flashing the BIOS, and then scanning with on-premises antivirus.

B. Flashing the BIOS, reformatting the drive, and then reinstalling the OS. This process will completely erase the hard drive, removing any traces of the malware infection, and then reinstall a clean version of the operating system. Flashing the BIOS can also help to ensure that any malware that may have infected the BIOS is removed. Option D, “Reinstalling the OS, flashing the BIOS, and then scanning with on-premises antivirus,” is not the best method for returning a malware-infected computer to service because it does not include reformatting the drive. Reformatting the drive is an important step in removing any traces of the malware infection. Simply reinstalling the OS without reformatting the drive may not completely remove the malware. Scanning with on-premises antivirus is also an important step, but it should be done in conjunction with reformatting the drive to ensure that the malware is completely removed.

I tend to agree it's "B". If you reinstall the OS and there was something persistent in the BIOS, you just re-infected the OS. If you flash the BIOS first, then reformat and re-install, you are the safest. Not sure if the "logical" order answers the intent of the test's question, though.

Shouldn't be B?