CompTIA Network+ (N10-009) — Question 500

A company has been added to an unapproved list because of spam. The network administrator confirmed that a workstation was infected by malware. Which of the following processes did the administrator use to identify the root cause?

Answer options

• A. Traffic analysis
• B. Availability monitoring
• C. Baseline metrics
• D. Network discovery

Correct answer: A

Explanation

The correct answer is 'Traffic analysis' because it allows the network administrator to examine and trace the data flow to identify unusual patterns associated with the malware infection. The other options, such as 'Availability monitoring' and 'Baseline metrics', focus on system performance and stability rather than identifying specific security incidents. 'Network discovery' pertains to identifying devices on a network, which does not directly address the root cause of spam-related issues.