ベストな準備プラン312-49v10試験2022年最新のCHFI v10無制限598問題
注目すべき時短になる312-49v10オールインワン試験ガイド
質問 319
Bob has encountered a system crash and has lost vital data stored on the hard drive of his Windows computer. He has no cloud storage or backup hard drives. he wants to recover all those data, which includes his personal photos, music, documents, videos, official email, etc. Which of the following tools shall resolve Bob's purpose?
- A. Recuva
- B. Xplico
- C. Cain & Abel
- D. Colasoft's Capsa
正解: B
質問 320
What is a good security method to prevent unauthorized users from "tailgating"?
- A. Pick-resistant locks
- B. Man trap
- C. Electronic key systems
- D. Electronic combination locks
正解: B
質問 321
Printing under a Windows Computer normally requires which one of the following files types to be created?
- A. EME
- B. EMF
- C. MEM
- D. CME
正解: B
質問 322
Simon is a former employee of Trinitron XML Inc. He feels he was wrongly terminated and wants to hack into his former company's network. Since Simon remembers some of the server names, he attempts to run the axfr and ixfr commands using DIG. What is Simon trying to accomplish here?
- A. Perform DNS poisoning
- B. Perform a zone transfer
- C. Enumerate all the users in the domain
- D. Send DOS commands to crash the DNS servers
正解: B
質問 323
Robert, a cloud architect, received a huge bill from the cloud service provider, which usually doesn't happen. After analyzing the bill, he found that the cloud resource consumption was very high. He then examined the cloud server and discovered that a malicious code was running on the server, which was generating huge but harmless traffic from the server. This means that the server has been compromised by an attacker with the sole intention to hurt the cloud customer financially. Which attack is described in the above scenario?
- A. Man-in-the-cloud Attack
- B. EDoS Attack (Economic Denial of Service)
- C. DDoS Attack (Distributed Denial of Service)
- D. XSS Attack
正解: C
質問 324
A state department site was recently attacked and all the servers had their disks erased. The incident response team sealed the area and commenced investigation. During evidence collection they came across a zip disks that did not have the standard labeling on it. The incident team ran the disk on an isolated system and found that the system disk was accidentally erased. They decided to call in the FBI for further investigation. Meanwhile, they short listed possible suspects including three summer interns. Where did the incident team go wrong?
- A. They called in the FBI without correlating with the fingerprint data
- B. They tampered with evidence by using it
- C. They examined the actual evidence on an unrelated system
- D. They attempted to implicate personnel without proof
正解: B
質問 325
Stephen is checking an image using Compare Files by The Wizard, and he sees the file signature is shown as FF D8 FF E1. What is the file type of the image?
- A. bmp
- B. png
- C. jpeg
- D. gif
正解: C
質問 326
What is the slave device connected to the secondary IDE controller on a Linux OS referred to?
- A. hdd
- B. hda
- C. hdb
- D. hdc
正解: A
質問 327
Which of the following registry hive gives the configuration information about which application was used to open various files on the system?
- A. HKEY_CLASSES_ROOT
- B. HKEY_CURRENT_CONFIG
- C. HKEY_USERS
- D. HKEY_LOCAL_MACHINE
正解: A
質問 328
Which of the following is NOT a part of pre-investigation phase?
- A. Gathering evidence data
- B. Gathering information about the incident
- C. Creating an investigation team
- D. Building forensics workstation
正解: A
質問 329
What is the CIDR from the following screenshot?
- A. /16 C./16 C./16
- B. /8D./8D./8
- C. /32 B./32 B./32
- D. /24A./24A./24
正解: B
質問 330
When searching through file headers for picture file formats, what should be searched to find a JPEG file in hexadecimal format?
- A. FF FF FF FF FF FF
- B. EF 00 EF 00 EF 00
- C. FF 00 FF 00 FF 00
- D. FF D8 FF E0 00 10
正解: D
質問 331
Smith is an IT technician that has been appointed to his company's network vulnerability assessment team. He is the only IT employee on the team. The other team members include employees from Accounting, Management, Shipping, and Marketing. Smith and the team members are having their first meeting to discuss how they will proceed. What is the first step they should do to create the network vulnerability assessment plan?
- A. Their first step is the acquisition of required documents, reviewing of security policies and compliance.
- B. Their first step is to make a hypothesis of what their final findings will be.
- C. Their first step is to analyze the data they have currently gathered from the company or interviews.
- D. Their first step is to create an initial Executive report to show the management team.
正解: A
質問 332
When conducting computer forensic analysis, you must guard against ______________ So that you remain focused on the primary job and insure that the level of work does not increase beyond what was originally expected.
- A. Unauthorized expenses
- B. Scope Creep
- C. Overzealous marketing
- D. Hard Drive Failure
正解: B
質問 333
What do you call the process of studying the changes that have taken place across a system or a machine after a series of actions or incidents?
- A. System Baselining
- B. Windows Services Monitoring
- C. Host integrity Monitoring
- D. Start-up Programs Monitoring
正解: C
質問 334
Select the data that a virtual memory would store in a Windows-based system.
- A. Documents and other files
- B. Application data
- C. Information or metadata of the files
- D. Running processes
正解: D
質問 335
Julie is a college student majoring in Information Systems and Computer Science. She is currently writing an essay for her computer crimes class. Julie paper focuses on white-collar crimes in America and how forensics investigators investigate the cases. Julie would like to focus the subject. Julie would like to focus the subject of the essay on the most common type of crime found in corporate Americ a. What crime should Julie focus on?
- A. Copyright infringement
- B. Denial of Service attacks
- C. Physical theft
- D. Industrial espionage
正解: D
質問 336
Which federal computer crime law specifically refers to fraud and related activity in connection with access devices like routers?
- A. 18 U.S.C. 1029
- B. 18 U.S.C. 2703
- C. 18 U.S.C. 1362
- D. 18 U.S.C. 2511
正解: A
質問 337
Corporate investigations are typically easier than public investigations because:
- A. the users have standard corporate equipment and software
- B. the investigator has to get a warrant
- C. the investigator does not have to get a warrant
- D. the users can load whatever they want on their machines
正解: C
質問 338
James is dealing with a case regarding a cybercrime that has taken place in Arizona, USA.
James needs to lawfully seize the evidence from an electronic device without affecting the user's anonymity.
Which of the following law should he comply with, before retrieving the evidence?
- A. Fifth Amendment of the U.S. Constitution
- B. Third Amendment of the U.S. Constitution
- C. Fourth Amendment of the U.S. Constitution
- D. First Amendment of the U.S. Constitution
正解: A
質問 339
While analyzing a hard disk, the investigator finds that the file system does not use UEFI-based interface. Which of the following operating systems is present on the hard disk?
- A. Windows 7
- B. Windows 8.1
- C. Windows 8
- D. Windows 10
正解: A
質問 340
How many times can data be written to a DVD+R disk?
- A. Infinite
- B. Twice
- C. Zero
- D. Once
正解: D
質問 341
......
合格保証付き312-49v10問題集:https://jp.fast2test.com/312-49v10-premium-file.html
あなたを合格さすEC-COUNCIL 312-49v10試験専門はここにある:https://drive.google.com/open?id=1j2qaPmgGLcMlRjq624i787ug5cBOtXQj