Palo Alto Networks

EC-Council 312-49 Exam
Computer Hacking Forensic Investigator (Page 13 )

Updated On: 9-Feb-2026

Viewing Page 13 of 108 pages.

Download PDF version with 704 Questions

QUESTION: 56

Jason is the security administrator of ACMA metal Corporation. One day he notices the company's Oracle database server has been compromised and the customer information along with financial data has been stolen. The financial loss will be in millions of dollars if the database gets into the hands of the competitors. Jason wants to report this crime to the law enforcement agencies immediately.
Which organization coordinates computer crimes investigations throughout the United States?

Internet Fraud Complaint Center
Local or national office of the U.S. Secret Service
National Infrastructure Protection Center
CERT Coordination Center

Answer(s): B

Show Answer Next Question

QUESTION: 57

Which Intrusion Detection System (IDS) usually produces the most false alarms due to the unpredictable behaviors of users and networks?

network-based IDS systems (NIDS)
host-based IDS systems (HIDS)
anomaly detection
signature recognition

Answer(s): B

Show Answer Next Question

QUESTION: 58

You should make at least how many bit-stream copies of a suspect drive?

1
2
3
4

Answer(s): B

Show Answer Next Question

QUESTION: 59

Why should you note all cable connections for a computer you want to seize as evidence?

to know what outside connections existed
in case other devices were connected
to know what peripheral devices exist
to know what hardware existed

Answer(s): A

Show Answer Next Question

QUESTION: 60

What header field in the TCP/IP protocol stack involves the hacker exploit known as the Ping of Death?

ICMP header field
TCP header field
IP header field
UDP header field

Answer(s): B

Show Answer Next Question

Viewing page 13 of 108
Viewing questions 61 - 65 out of 704 questions

Post your Comments and Discuss EC-Council 312-49 exam prep with other Community members:

Comments:

Name:

Join the 312-49 Discussion

nobody Commented on June 18, 2025
The answer for Question 266 should be Complete Event Analysis
HONG KONG

Valery Commented on March 01, 2025
What version of exam have this practice questions?
KAZAKHSTAN

Moorthy Commented on December 18, 2024
This is the best place to pratice C_CPI_15 exam.
Anonymous

Carlos Commented on February 29, 2024
@AKM, I took this exam about 2 weeks ago. The questions in this practice questions are very similar to the exam. However some answers were not that accurate. I got the full PDF version with the testing software called Xengien app. It did help me pass my exam. So yes, it is worth it.
UNITED STATES

AKM Commented on February 29, 2024
Have anyone took the test after practicing here? What is accuracy of this question compared to actual test
INDIA

SA Commented on February 07, 2024
Great place to test your preparation.
INDIA

Balu Commented on November 03, 2014
Thank you so much for helping me on this. Let me have a look on this and will provide further update as soon as possible.
UNITED STATES