220-1002 Question #657: Real Exam Question with Answer & Explanation

The correct answer is B: Schedule scans and run updates.. The stated answer (B: Schedule scans and run updates) does not align with CompTIA A+'s malware removal process. The standard sequence is: (1) Identify/research symptoms, (2) Quarantine the infected system, (3) Disable System Restore in Windows (C), (4) Remediate the infected syst

Question

A user suspects a computer Is infected with malware. A technician identifies the symptoms as being related to a recent spread of malware. Which of the following steps should the technician take NEXT to address the infection?

Options

AEducate the end user,
BSchedule scans and run updates.
CDisable System Restore.
DRemediate the infected system.

Explanation

The stated answer (B: Schedule scans and run updates) does not align with CompTIA A+'s malware removal process. The standard sequence is: (1) Identify/research symptoms, (2) Quarantine the infected system, (3) Disable System Restore in Windows (C), (4) Remediate the infected system (D), (5) Schedule scans and run updates (B), (6) Re-enable System Restore, (7) Educate the end user (A). Since the technician has already identified the malware, the NEXT step should be C) Disable System Restore - this prevents malware from hiding in restore points and re-infecting the system after cleanup. Scheduling scans and running updates (B) comes after remediation, not before. This appears to be an error in the answer key; the correct next step is C.

Community Discussion

No community discussion yet for this question.

Full 220-1002 Practice