ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam 220-1002 All Questions

View all questions & answers for the 220-1002 exam
Go to Exam

Exam 220-1002 topic 1 question 29 discussion

Actual exam question from CompTIA's 220-1002
Question #: 29
Topic #: 1
[All 220-1002 Questions]

A technician has identified malware on a user's system.
Which of the following should the technician do NEXT according to malware removal best practices?

  • A. Enable System Restore and create a restore point so no data is lost
  • B. Educate the user about how to avoid malware in the future
  • C. Update the antivirus software and run a full system scan
  • D. Move the infected system to a lab with no network connectivity
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by betty_boop at July 23, 2020, 8:14 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
betty_boop
Highly Voted 4 years, 9 months ago
The answer is correct. That's quarantining the system, which is the second step in the malware removal process, it comes after Identifying and researching malware symptoms. The seven steps are: 1. Identify and research malware symptoms. 2. Quarantine the infected systems. 3. Disable System Restore (in Windows). 4. Remediate the infected systems. A. Update the anti-malware software. B. Scan and use removal techniques (Safe Mode, Preinstallation Environment). 5. Schedule scans and run updates. 6. Enable System Restore and create a restore point (in Windows). 7. Educate the end user. A good mnemonic to use is I (Identify) Question (Q- Quarantine) Dad's (D- Disable) Reasons (R- Remediate) Some (S- Schedule) Early (Enable) Evenings (E- Educate)
upvoted 54 times
Ty_ty
4 years, 3 months ago
Betty_boop is a LORD.
upvoted 13 times
...
AshAgony924
3 years, 3 months ago
This is a great saying, but doesn't it leave out create restore point. So it should be quarantine, disable, remediate, schedule, re-enable, create restore point, then educate
upvoted 1 times
AshAgony924
3 years, 3 months ago
Nevermind, you just have it worded differently :)
upvoted 1 times
...
...
...
aurelien123
Most Recent 2 years, 8 months ago
how do you update your software if the system is in quarantine?
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago