Pass the ECCouncil CHFI v10 312-49v10 Questions and answers with ExamsMirror

Which of the following tools will help the investigator to analyze web server logs?

A master boot record (MBR) is the first sector (“sector zero”) of a data storage device. What is the size of MBR?

Smith, as a part his forensic investigation assignment, seized a mobile device. He was asked to recover the Subscriber Identity Module (SIM card) data in the mobile device. Smith found that the SIM was protected by a Personal Identification Number (PIN) code, but he was also aware that people generally leave the PIN numbers to the defaults or use easily guessable numbers such as 1234. He made three unsuccessful attempts, which blocked the SIM card. What can Jason do in this scenario to reset the PIN and access SIM data?

Steven has been given the task of designing a computer forensics lab for the company he works for. He has found documentation on all aspects of how to design a lab except the number of exits needed. How many exits should Steven include in his design for the computer forensics lab?

All Blackberry email is eventually sent and received through what proprietary RIM-operated mechanism?

Harold is finishing up a report on a case of network intrusion, corporate spying, and embezzlement that he has been working on for over six months. He is trying to find the right term to use in his report to describe network-enabled spying. What term should Harold use?

Jason discovered a file named $RIYG6VR.doc in the C:\$Recycle.Bin\\ while analyzing a hard disk image for the deleted data. What inferences can he make from the file name?

On an Active Directory network using NTLM authentication, where on the domain controllers are the passwords stored?

Depending upon the jurisdictional areas, different laws apply to different incidents. Which of the following law is related to fraud and related activity in connection with computers?

Which of the following stages in a Linux boot process involve initialization of the system’s hardware?

Which of the following is a database in which information about every file and directory on an NT File System (NTFS) volume is stored?

Which tool does the investigator use to extract artifacts left by Google Drive on the system?

If you are concerned about a high level of compression but not concerned about any possible data loss, what type of compression would you use?

Wireless access control attacks aim to penetrate a network by evading WLAN access control measures such as AP MAC filters and Wi-Fi port access controls. Which of the following wireless access control attacks allow the attacker to set up a rogue access point outside the corporate perimeter and then lure the employees of the organization to connect to it?

Which password cracking technique uses every possible combination of character sets?