Question 1

While examining a log report you find out that an intrusion has been attempted by a machine whose IP address is displayed as 0xde.0xad.0xbe.0xef. It looks to you like a hexadecimal number. You perform a ping 0xde.0xad.0xbe.0xef. Which of the following IP addresses will respond to the ping and hence will likely be responsible for the intrusion?

Options :

A : 192.10.25.9

B : 10.0.3.4

C : 203.20.4.5

D : 222.273.290.239

Answer: D

Question 2

You receive an e-mail like the one shown below. When you click on the link contained in the mail, you are redirected to a website seeking you to download free Anti-Virus software.

Dear valued customers,

We are pleased to announce the newest version of Antivirus 2010 for Windows which will probe you with total security against the latest spyware, malware, viruses, Trojans and other online threats. Simply visit the link below and enter your antivirus code:

Antivirus code: 5014

http://www.juggyboy/virus/virus.html

Thank you for choosing us, the worldwide leader Antivirus solutions.

Mike Robertson

PDF Reader Support

If you want to stop receiving mail, please go to:

http://www.juggyboy.com

or you may contact us at the following address: Media Internet Consultants, Edif. Neptuno, Planta Baja, Ave. Ricardo J. Alfaro, Tumba Muerto, n/a Panama

How will you determine if this is Real Anti-Virus or Fake Anti-Virus website?

Options :

A : Look at the website design, if it looks professional then it is a Real Anti-Virus website

B : Connect to the site using SSL, if you are successful then the website is genuine

C : Search using the URL and Anti-Virus product name into Google and lookout for suspicious warnings against this site

D : Download and install Anti-Virus software from this suspicious looking site, your Windows 7 will prompt you and stop the installation if the downloaded file is a malware

Answer: C

Question 3

You have been called to investigate a sudden increase in network traffic at XYZ. It seems that the traffic generated was too heavy that normal business functions could no longer be rendered to external employees and clients. After a quick investigation, you find that the computer has services running attached to TFN2k and Trinoo software. What do you think was the most likely cause behind this sudden increase in traffic?

Options :

A : A distributed denial of service attack.

B : A network card that was jabbering.

C : A bad route on the firewall.

D : Invalid rules entry at the gateway.

Answer: A

Question 4

Which of the following is considered an acceptable option when managing a risk?

Options :

A : Reject the risk.

B : Deny the risk.

C : Mitigate the risk.

D : Initiate the risk.

Answer: C

Question 5

Exhibit:

Based on the following extract from the log of a compromised machine, what is the hacker really trying to steal?

Options :

A : har.txt

B : SAM file

C : wwwroot

D : Repair file

Answer: B

Higher Test Marks with Free Online CPEH-001 Exam Practice

Buying Options: