CompTIA A+ Core 2 Objective 3.3 - Software Troubleshooting - Malware Removal

Steps of Malware Removal

1 / 17

Which of the following is a critical step BEFORE performing malware remediation on a Windows PC?

Disable System Restore in Windows

Enable System Restore and create a restore point

Schedule scans and run updates

Educate the end user

2 / 17

A technician has removed a virus from a PC but the internet connection has stopped working. The technician suspects that the virus modified network settings. Which of the following should the technician check FIRST?

The proxy settings in the web browser

The available browser updates

The Windows Firewall settings

The network cable connection

3 / 17

After removing malware from a system, the technician observes that the system’s performance is still significantly degraded. What is the MOST likely next step to improve system performance?

Increase the system’s RAM

Re-enable System Restore

Schedule scans and run updates

Perform a repair installation of the OS

4 / 17

A small business’s network was recently compromised by malware that was introduced through an email attachment opened by one of the employees. What is the MOST effective preventive action to avoid similar incidents in the future?

Implement user education programs on email security

Block all incoming emails

Upgrade all network hardware

Disable attachment downloads

5 / 17

A user reports that their desktop PC has started showing a message stating that their personal files have been encrypted and asking for payment to decrypt them. After isolating the PC, which of the following should be the technician’s FIRST step in addressing the issue?

Advise the user to pay the ransom to get their files back

Use system restore to roll the system back to a previous state

Disconnect the PC from the Internet and any other networks

Disable System Restore in Windows

6 / 17

What should be the FINAL step after completing the malware removal process on a client’s workstation?

Document the malware incident in detail

Educate the end user

Run a second malware scan

Restore all files from backup

7 / 17

After cleaning a malware infection from a PC, the system unexpectedly shuts down and displays a blue screen of death (BSOD) upon restart. What is the most likely NEXT step?

Perform a clean OS installation

Replace the PC's power supply unit

Conduct a hardware diagnostic test

Restore the system from the most recent backup

8 / 17

You suspect a workstation in the network is infected with malware. What is the NEXT step after verifying the malware symptoms?

Disable System Restore in Windows

Update anti-malware software

Quarantine the infected system

Educate the end user

9 / 17

What technique should be employed to remove malware from a heavily infected system that fails to boot normally?

Boot the system into Safe Mode and run a virus scan

Perform a clean OS installation without data backup

Run the anti-malware scan from the normal Windows environment

Manually delete suspected files from the command line

10 / 17

To prevent malware from spreading in a network environment, why is it important to quarantine an infected system BEFORE remediation?

To allow time for backup operations

To prevent the malware from spreading to other systems

To ensure user productivity is not impacted

Quarantine is only necessary for networked environments, not individual PCs

11 / 17

Which of the following is a crucial post-malware removal task to ensure future protection against malware?

Reinstall all third-party applications

Perform a disk defragmentation

Schedule scans and run updates

Disable Windows Defender

12 / 17

In a corporate environment, a user’s workstation has been infected with malware. What is the BEST way to prevent the same type of malware from infecting other workstations?

Disconnect the infected workstation from the network

Quarantine the infected system and educate the end user

Upgrade all workstations to the latest operating system version

Install additional physical security measures in the office

13 / 17

A client’s workstation is infected with ransomware. After isolating the system and disabling System Restore, which of the following actions should be performed FIRST for remediation?

Pay the ransom to retrieve the encrypted files

Update anti-malware software

Use System Recovery options to restore the system

Manually remove the ransomware files

14 / 17

During malware remediation, which of the following is the BEST practice for updating anti-malware software?

Update after scanning the system

Update before scanning the system

Update during the system quarantine phase

Updates are not necessary for the malware removal process

15 / 17

An office computer starts displaying pop-up advertisements even when no browser is open, and the system performance has significantly slowed down. What is the FIRST step you should take?

Run a system file checker

Perform a disk cleanup

Investigate and verify malware symptoms

Schedule scans and run updates

16 / 17

After successfully removing malware, which of the following actions should be taken NEXT?

Leave System Restore disabled as a precaution

Schedule scans and run updates

Educate the end user immediately

Enable System Restore and create a restore point

17 / 17

A technician has removed malware from a client’s laptop. What is an IMPORTANT post-remediation activity to perform BEFORE considering the removal process complete?

Format the hard drive and reinstall the operating system

Install a second anti-malware software for double protection

Enable System Restore and create a new restore point

Change the user’s password on all online accounts

Your score is

Exit

CompTIA A+ Core 2 Objective 3.3 – Software Troubleshooting – Malware Removal

One response to “CompTIA A+ Core 2 Objective 3.3 – Software Troubleshooting – Malware Removal”