GIAC
GCIH · Question #473
GCIH Question #473: Real Exam Question with Answer & Explanation
Sign in or unlock GCIH to reveal the answer and full explanation for question #473. The question stem and answer options stay visible for context.
Question
You have identified a virus that has quickly spread throughout your organization through fileshares. You have isolated the server that was the source of the infection, and you're working with your antivirus vendor to determine the characteristics of the virus. The help desk manager has asked you how to handle all the virus-related calls coming in. What action should the help desk employees take at this stage of the incident?
Options
- AConfirm the call is virus-related and log the information into the ticketing system
- BMake a best attempt to locate and remove remnants of the virus from user systems
- CBrief users of the current status of the situation, based on internal memos
- DRun Windows Update to eliminate potential vulnerabilities on infected systems
Unlock GCIH to see the answer
You've previewed enough free GCIH questions. Unlock GCIH for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.