Free ECCouncil 312-49v9 Practice Exam with Questions & Answers | Set: 12

Name: How to Pass 312-49v9 Exams
Brand: Examstrack
SKU: 312-49v9
Price: 36.75 USD
Availability: InStock

Questions 166

While collecting Active Transaction Logs using SQL Server Management Studio, the query Select * from ::fn_dblog(NULL, NULL) displays the active portion of the transaction log file. Here, assigning NULL values implies?

Options:

Start and end points for log sequence numbers are specified

Start and end points for log files are not specified

Start and end points for log files are specified

Start and end points for log sequence numbers are not specified

ECCouncil 312-49v9 Premium Access

Alexander

02-Jan-2025

With Examstrack 312-49v9 exam code, I had the confidence to tackle any question that came my way.

Questions 167

Centralized binary logging is a process in which many websites write binary and unformatted log data to a single log file. What extension should the investigator look to find its log file?

Options:

.cbl

.log

.ibl

.txt

Questions 168

An attacker has compromised a cloud environment of a company and used the employee information to perform an identity theft attack. Which type of attack is this?

Options:

Cloud as a subject

Cloud as a tool

Cloud as an object

Cloud as a service

Questions 169

Korey, a data mining specialist in a knowledge processing firm DataHub.com, reported his CISO that he has lost certain sensitive data stored on his laptop. The CISO wants his forensics investigation team to find if the data loss was accident or intentional. In which of the following category this case will fall?

Options:

Civil Investigation

Administrative Investigation

Both Civil and Criminal Investigations

Criminal Investigation

Questions 170

Which of the following is a precomputed table containing word lists like dictionary files and brute force lists and their hash values?

Options:

Directory Table

Rainbow Table

Master file Table (MFT)

Partition Table

Questions 171

Which of the following ISO standard defines file systems and protocol for exchanging data between optical disks?

Options:

ISO 9660

ISO/IEC 13940

ISO 9060

IEC 3490

Questions 172

Which of the following techniques delete the files permanently?

Options:

Steganography

Artifact Wiping

Data Hiding

Trail obfuscation

Questions 173

Select the data that a virtual memory would store in a Windows-based system.

Options:

Information or metadata of the files

Documents and other files

Application data

Running processes

Questions 174

To reach a bank web site, the traffic from workstations must pass through a firewall. You have been asked to review the firewall configuration to ensure that workstations in network 10.10.10.0/24 can only reach the bank web site 10.20.20.1 using https. Which of the following firewall rules meets this requirement?

Options:

if (source matches 10.10.10.0/24 and destination matches 10.20.20.1 and port matches 443) then permit

if (source matches 10.10.10.0/24 and destination matches 10.20.20.1 and port matches 80 or 443) then permit

if (source matches 10.10.10.0 and destination matches 10.20.20.1 and port matches 443) then permit

Questions 175

Sheila is a forensics trainee and is searching for hidden image files on a hard disk. She used a forensic investigation tool to view the media in hexadecimal code for simplifying the search process. Which of the following hex codes should she look for to identify image files?

Options:

ff d8 ff

25 50 44 46

d0 0f 11 e0

50 41 03 04

Questions 176

Gary is checking for the devices connected to USB ports of a suspect system during an investigation. Select the appropriate tool that will help him document all the connected devices.

Options:

DevScan

Devcon

fsutil

Reg.exe