Preventing Malware Reinfection on Isolated Workstation | CompTIA A+ Core 2 Exam Answer

Forgot to Disable Autorun Feature | CompTIA A+ Core 2 Exam Answer

Prev Question Next Question

Question

A user reports malware activity on an isolated workstation used for testing.

It is running an end-of-life OS, and a USB drive is the only method used to transfer files.

After removing the malware and replacing the USB drive with a brand new one, the technician gives the approval to use the equipment.

The next day the user reports the same malware activity is present after powering on the system.

Which of the following did the technician forget to do to prevent reinfection?

Answers

A. Connect to the network and update the OS with the latest security patches

B. Scan and clean the USB device used to transfer data from the equipment

C. Disable System restore and remove all restore points from the system

D. Update the local antivirus and set it to scan automatically every evening.

Show Answer

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Based on the given scenario, the technician removed the malware and replaced the USB drive with a new one, but the malware activity resurfaced the next day. This indicates that the malware was not completely removed and/or there is an ongoing source of infection that was not addressed.

To prevent reinfection, the technician should have taken additional measures such as:

B. Scan and clean the USB device used to transfer data from the equipment The malware could have been present on the USB drive used to transfer data. Thus, the technician should have scanned the USB drive for malware and cleaned it if necessary to prevent reinfection.

C. Disable System restore and remove all restore points from the system System restore can store copies of infected files and settings, making it possible for malware to reappear even after cleaning. Therefore, the technician should have disabled system restore and deleted all restore points from the system to prevent reinfection.

A. Connect to the network and update the OS with the latest security patches An end-of-life OS is no longer supported with security patches, leaving it vulnerable to new threats. Thus, the technician should have updated the OS with the latest security patches to fix any known vulnerabilities and prevent future infections.

D. Update the local antivirus and set it to scan automatically every evening. Antivirus software can help detect and remove malware from the system. However, if the antivirus software is not updated regularly, it may not be able to detect new and emerging threats. Therefore, the technician should have updated the local antivirus and set it to scan automatically every evening to ensure that the system is protected from malware.

In summary, to prevent reinfection, the technician should have scanned and cleaned the USB drive, disabled system restore and deleted all restore points, updated the OS with the latest security patches, and updated the local antivirus and set it to scan automatically every evening.

Prev Question Next Question