A technician is removing a virus from a user's Windows workstation. The virus was installed by the user while downloading pirated software from the Internet. Which of the following should the technician do to address this issue?
A.
End the current explorer.exe task. Update and run an antivirus scanning utility to remove the threat. Relaunch explorer.exe using Task Manager.
B.
End the current explorer.exe task using the command line. Update and run an antivirus scanning utility to remove the threat.
C.
Launch explorer.exe using Task Manager. Update and run an antivirus scanning utility to remove the threat.
D.
Update and run an antivirus scanning utility to remove the threat. Launch explorer.exe using Task Manager.
When dealing with a virus infection (especially from pirated software), the safest and most effective process is:
Update and run a trusted antivirus/malware scanner to ensure the latest virus definitions are used.
If the infection caused explorer.exe (the Windows shell) to crash or be terminated:
Use Task Manager → File → Run new task to manually launch explorer.exe and restore the desktop interface.
• A. End the current explorer.exe task. Update and run an antivirus scanning utility to remove the threat. Relaunch explorer.exe using Task Manager. – suppose the exporer.exe is working. If we close its task, we won’t be able to get to the Windows Antivirus software
• B. End the current explorer.exe task using the command line. Update and run an antivirus scanning utility to remove the threat. - suppose the exporer.exe is working. If we close its task, we won’t be able to get to the Windows Antivirus software. The answer doesn’t even state to restart it.
• C. Launch explorer.exe using Task Manager. Update and run an antivirus scanning utility to remove the threat. – the malware probably killed explorer.exe to hinder control over the computer from removing it.
• D. Update and run an antivirus scanning utility to remove the threat. Launch explorer.exe using Task Manager. – If the explorer.exe is currently closed, you won’t be able to run a virus scan. The order is wrong.
What an incredibly tricky question. If you haven’t scanned first, you would not be able to tell which .exe files are legit. Therefore a scan must be done first to distinguish real explorer.exe files vs fake ones that don’t have signatures. This should be enough for you to find the answer.
I don't get why it isn't B. You can kill explorer.exe with CMD. How does D even make sense? You can't launch explorer.exe if it hasn't been killed first... what if it's already running!?
Can someone clarify what this question is even getting at? Why is it important to launch explorer after the virus has been removed? Also, why is the anser D and not A? Thanks
Actually I worked it out, I am an idiot. It can't be A because you will need explorer to acces your antivirus.
upvoted 9 times
...
...
This section is not available anymore. Please use the main Exam Page.220-1002 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
VasiliyFis
5Â days, 14Â hours agoalforg03
1Â year, 3Â months agoPythonWolf
2Â years, 7Â months agoPassngrass
2Â years, 9Â months agoscotty0153
2Â years, 10Â months agosyougun200x
3Â years, 4Â months agoMarkyHaynes
3Â years, 11Â months agoMarkyHaynes
3Â years, 11Â months ago