CompTIA
220-1002 · Question #245
220-1002 Question #245: Real Exam Question with Answer & Explanation
Sign in or unlock 220-1002 to reveal the answer and full explanation for question #245. The question stem and answer options stay visible for context.
Hardware and network troubleshooting
Question
Joe, a technician, receives notification that a share for production data files on the network is encrypted. Joe suspects a crypto virus is active. He checks the rights of the network share to see which departments have access. He then searches the user directories of those departmental users who are looking for encrypted files. He narrows his search to a single user's computer. Once the suspected source of the virus is discovered and removed from the network, which of the following should Joe do NEXT?
Options
- AEducate the end user on safe browsing and email habits.
- BScan and remove the malware from the infected system.
- CCreate a system restore point and reboot the system.
- DSchedule antivirus scans and perform Windows updates.
Unlock 220-1002 to see the answer
You've previewed enough free 220-1002 questions. Unlock 220-1002 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#ransomware#malware removal#incident response#crypto virus