GIAC Exam GCED Topic 3 Question 59 Discussion

Actual exam question for GIAC's GCED exam

Question #: 59
Topic #: 3

[All GCED Questions]

What is the BEST sequence of steps to remove a bot from a system?

ATerminate the process, remove autoloading traces, delete any malicious files

BDelete any malicious files, remove autoloading traces, terminate the process

CRemove autoloading traces, delete any malicious files, terminate the process

DDelete any malicious files, terminate the process, remove autoloading traces

Show Suggested Answer

Suggested Answer: A

by Fernanda at Feb 08, 2025, 07:12 PM

Limited Time Offer

25%

Off

Get Premium GCED Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Brandon

7 days ago

B looks good to me. Deleting the malicious files is the priority, then remove the autoloading traces, and finally terminate the process. Gotta make sure we cut off all its escape routes!

upvoted 0 times

...

Hmm, I think C is the best option here. Gotta remove those autoloading traces first, then delete the malicious files, and finally terminate the process. Anything less and that bot could come back to haunt us!

upvoted 0 times

...

GIAC Exam GCED Topic 3 Question 59 Discussion

Contribute your Thoughts:

Brandon

Dominga