Infected Systems Quarantine

Quarantine Infected Systems

Users with high levels of priviliges such as administraors should not sign into an infected system, as the malware could eventually capture that user data and try to use it in a way to grant itself elevated privilges.

What is quarantine

Putting a system in Quarantine means that a piece of software or an entire system canot access a network reducing any feedback to a possible “master” whom may be attempting to control or gather information.

Keeping a system in quarantine means that you remove it from a network and physically move it somewhere that is secure from other physical threat actors.

Disable System Restore

You will want to disable system restore or any automated backup system. Any or all of your software may be infected and so restoring your system or any files may simply just persist the malware