Which of the following is the first step you should take if malware is found on a system? answer Isolate the system from the network immediately. Sanitize the system using updated anti-malware software. Look through the event log for suspicious events. Check for suspicious or unknown registry entries.
Added by Madison M.
Step 1
Step 1: Isolate the system from the network immediately. Show more…
Show all steps
Your feedback will help us improve your experience
Gabriel Eduok and 69 other AP CS educators are ready to help you.
Ask a new question
Labs
Want to see this concept in action?
Explore this concept interactively to see how it behaves as you change inputs.
Key Concepts
Recommended Videos
IS 3523 Malware Analysis The CISO has informed us that one of our client's machines may have been compromised by some ferocious malware. They want us to investigate the compromised box to determine what might have happened. The machine is located at their super secret engineering facility, but we are fortunate to have a virtual image of the compromised FTP Server on the SimSpace range. You can conduct root cause analysis of the FTP server using any tools you find useful. If you do well, you may even get a permanent slot on the incident response team. Accessing the Compromised VM Log in to your SimSpace account. Once logged in, access the Network Tab and find an available win-Xp-xx VM. Click on the win XP-XX VM and select the range. Open the win-Xp XX VM by selecting Open Console. Record what you see. At this point, treat it as the "suspect machine" and analyze the FTP Server. Once this is done, log in to another VM on the range you wish to use. In the terminal window, try pinging the win-Xp-xx VM. You can locate the IP address under Visualizations on the left-hand side of the screen. If you can ping your win-Xp-XX VM, you are ready to go.
Gabriel E.
Debra downloads an application on her workplace computer. As she installs the application, she notices an option to install an additional program. She unchecks the box to choose not to install the additional software. What type of malware did Debra prevent from being installed on her system? a. Cryptomalware b. Potentially unwanted program (PUP) c. Ransomware d. File-based virus Jose receives a security report that none of the employees in his organization can access the internal server. When he logs on to the server, he receives a message that all the files on the server have been encrypted and that he must pay a fee of $600 in bitcoins to decrypt the files. What type of malware was installed on the server? a. Cryptomalware b. Worm c. Ransomware d. Fileless virus A fileless virus has infected your computer. Which of the following is not a service that might be at risk? a. .NET Framework b. Macro c. Windows Control Panel d. PowerShell John downloaded new calendar software and installed it. Since then, he's noticed unexpected new activity, such as pop-up windows, on the computer. What should he do first? a. Unplug his computer from the power outlet. b. Unplug his computer from the network. c. Run rootkit detection software. d. Run antimalware software. James has recently run a vulnerability scan and determined that the current version of SQL installed on the server is vulnerable and out of date. Which of the following is the server most vulnerable to? a. XML injection b. SQL injection c. Virus d. SQL scripting
Akash M.
Which of the following options will effectively contain and/or remove a malicious code infection while limiting the downtime a user will have during repairs on a Windows 10 PC?
Narayan H.
Recommended Textbooks
Computer Science and Information Technology
Introduction to Programming Using Python
Computer Science - An Overview
18,000,000+
Students on Numerade
Trusted by students at 8,000+ universities
Watch the video solution with this free unlock.
EMAIL
PASSWORD