A company's cloud infrastructure is experiencing erratic performance and the security team suspects a potential malware infection on several virtual servers. What should be the FIRST action to ensure a proper response to this suspected security incident?
Activate the EDR system's isolation feature for the affected virtual servers.
Run a full system scan on all network nodes without any preliminary containment measures.
Check system logs for irregularities before taking action on the virtual servers.
Reboot the affected virtual servers to interrupt potential malicious processes.