[Oct-2023] Download Real 312-49v10 Exam Dumps for candidates. 100% Free Dump Files
Prepare Important Exam with 312-49v10 Exam Dumps(2023)
NEW QUESTION # 170
To which phase of the Computer Forensics Investigation Process does the Planning and Budgeting of a Forensics Lab belong?
- A. Post-investigation Phase
- B. Reporting Phase
- C. Pre-investigation Phase
- D. Investigation Phase
Answer: C
NEW QUESTION # 171
You are a computer forensics investigator working with local police department and you are called to assist in an investigation of threatening emails. The complainant has printer out 27 email messages from the suspect and gives the printouts to you. You inform her that you will need to examine her computer because you need access to the _________________________ in order to track the emails back to the suspect.
- A. Firewall log
- B. Email Header
- C. Configuration files
- D. Routing Table
Answer: B
NEW QUESTION # 172
An investigator has found certain details after analysis of a mobile device. What can reveal the manufacturer information?
- A. International mobile subscriber identity (IMSI)
- B. Equipment Identity Register (EIR)
- C. Electronic Serial Number (ESN)
- D. Integrated circuit card identifier (ICCID)
Answer: C
NEW QUESTION # 173
In which of these attacks will a steganalyst use a random message to generate a stego-object by using some steganography tool, to find the steganography algorithm used to hide the information?
- A. Known-message attack
- B. Known-stego attack
- C. Known-cover attack
- D. Chosen-message attack
Answer: D
NEW QUESTION # 174
Amelia has got an email from a well-reputed company stating in the subject line that she has won a prize money, whereas the email body says that she has to pay a certain amount for being eligible for the contest. Which of the following acts does the email breach?
- A. GLBA
- B. CAN-SPAM Act
- C. SOX
- D. HIPAA
Answer: B
NEW QUESTION # 175
Jeff is a forensics investigator for a government agency's cyber security office. Jeff Is tasked with acquiring a memory dump of a Windows 10 computer that was involved In a DDoS attack on the government agency's web application. Jeff is onsite to collect the memory. What tool could Jeff use?
- A. Volatility
- B. RAM Mapper
- C. Autopsy
- D. Memcheck
Answer: A
NEW QUESTION # 176
What encryption technology is used on Blackberry devices Password Keeper?
- A. AES
- B. 3DES
- C. Blowfish
- D. RC5
Answer: A
NEW QUESTION # 177
When conducting computer forensic analysis, you must guard against ______________ So that you remain focused on the primary job and insure that the level of work does not increase beyond what was originally expected.
- A. Overzealous marketing
- B. Scope Creep
- C. Unauthorized expenses
- D. Hard Drive Failure
Answer: B
NEW QUESTION # 178
Diskcopy is:
- A. dd copying tool
- B. a utility by AccessData
- C. Digital Intelligence utility
- D. a standard MS-DOS command
Answer: D
Explanation:
diskcopy is a STANDARD DOS utility. C:\WINDOWS>diskcopy /? Copies the contents of one floppy disk to another.
NEW QUESTION # 179
Which of the following components within the android architecture stack take care of displaying windows owned by different applications?
- A. Surface Manager
- B. Media Framework
- C. Resource Manager
- D. Application Framework
Answer: D
NEW QUESTION # 180
What will the following command accomplish in Linux?
fdisk /dev/hda
- A. Delete all files under the /dev/hda folder
- B. Fill the disk with zeros
- C. Format the hard drive
- D. Partition the hard drive
Answer: D
NEW QUESTION # 181
You need to deploy a new web-based software package for your organization. The package requires three separate servers and needs to be available on the Internet. What is the recommended architecture in terms of server placement?
- A. A web server and the database server facing the Internet, an application server on the internal network
- B. All three servers need to face the Internet so that they can communicate between themselves
- C. A web server facing the Internet, an application server on the internal network, a database server on the internal network
- D. All three servers need to be placed internally
Answer: B
NEW QUESTION # 182
Sectors are pie-shaped regions on a hard disk that store dat
a. Which of the following parts of a hard disk do not contribute in determining the addresses of data?
- A. Cylinder
- B. Interface
- C. Heads
- D. Sectors
Answer: B
NEW QUESTION # 183
Paraben Lockdown device uses which operating system to write hard drive data?
- A. Unix
- B. Red Hat
- C. Mac OS
- D. Windows
Answer: D
NEW QUESTION # 184
Which forensic investigating concept trails the whole incident from how the attack began to how the victim was affected?
- A. Point-to-point
- B. End-to-end
- C. Thorough
- D. Complete event analysis
Answer: B
NEW QUESTION # 185
The rule of thumb when shutting down a system is to pull the power plug. However, it has certain drawbacks. Which of the following would that be?
- A. The /tmp directory will be flushed
- B. Any data not yet flushed to the system will be lost
- C. All running processes will be lost
- D. Power interruption will corrupt the pagefile
Answer: B
NEW QUESTION # 186
Which of the following files contains the traces of the applications installed, run, or uninstalled from a system?
- A. Shortcut Files
- B. Virtual Files
- C. Prefetch Files
- D. Image Files
Answer: A
NEW QUESTION # 187
Which following forensic tool allows investigator to detect and extract hidden streams on NTFS drive?
- A. TimeStomp
- B. Stream Detector
- C. Autopsy
- D. analyzeMFT
Answer: B
NEW QUESTION # 188
......
312-49v10 Questions - Truly Beneficial For Your EC-COUNCIL Exam: https://itcertspass.itcertmagic.com/EC-COUNCIL/real-312-49v10-exam-prep-dumps.html