CertsTopics Logo

Labour Day Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

CHFIv9 312-49v9 Exam Questions and Answers PDF

Page: 10 / 22
Total 589 questions
Get 312-49v9 Full Access Download 312-49v9 PDF

ECCouncil Computer Hacking Forensic Investigator (V9) Questions and Answers

Question 37

An investigator is searching through the firewall logs of a company and notices ICMP packets that are larger than 65,536 bytes. What type of activity is the investigator seeing?

Options:

A.

Smurf

B.

Ping of death

C.

Fraggle

D.

Nmap scan

Question 38

Which of the following tool enables data acquisition and duplication?

Options:

A.

Colasoft’s Capsa

B.

DriveSpy

C.

Wireshark

D.

Xplico

Question 39

Which of the following files stores information about a local Google Drive installation such as User email ID, Local Sync Root Path, and Client version installed?

Options:

A.

filecache.db

B.

config.db

C.

sigstore.db

D.

Sync_config.db

Question 40

What will the following Linux command accomplish?

dd if=/dev/mem of=/home/sam/mem.bin bs=1024

Options:

A.

Copy the master boot record to a file

B.

Copy the contents of the system folder to a file

C.

Copy the running memory to a file

D.

Copy the memory dump file to an image file

Page: 10 / 22
Total 589 questions
Get 312-49v9 Full Access Download 312-49v9 PDF