Palo Alto Networks

EC-Council EC0-349 Exam Questions
EC0-349 ECCouncil Computer Hacking Forensic Investigator (Page 16 )

Updated On: 24-Feb-2026

Viewing Page 15 of 76 pages.

Download PDF version with 374 Questions

QUESTION: 66

This is the original file structure database that Microsoft originally designed for floppy disks. It is written to the outermost track of a disk and contains information about each file stored on the drive.

Disk Operating System (DOS)
Master File Table (MFT)
Master Boot Record (MBR)
File Allocation Table (FAT)

Answer(s): D

Show Answer Next Question

QUESTION: 67

Which of the following is NOT a graphics file?

Picture1.tga
Picture3.nfo
Picture4.psd
Picture2.bmp

Answer(s): B

Show Answer Next Question

QUESTION: 68

_____________ is simply the application of computer investigation and analysis techniques in the interests of determining potential legal evidence.

Event reaction
Network forensics
Incident response
Computer forensics

Answer(s): D

Show Answer Next Question

QUESTION: 69

If you discover a criminal act while investigating a corporate policy abuse, it becomes a public sector investigation and should be referred to law enforcement?

True
False

Answer(s): A

Show Answer Next Question

QUESTION: 70

Volatile memory is one of the leading problems for forensics. Worms such as Code Red are memory resident and do write themselves to the hard drive, if you turn the system off they disappear. In a lab environment, which of the following options would you suggest as the most appropriate to overcome the problem of capturing volatile memory?

Use intrusion forensic techniques to study memory resident infections
Create a separate partition of several hundred megabytes and place the swap file there
Use VMware to be able to capture the data in memory and examine it
Give the operating system a minimal amount of memory, forcing it to use a swap file

Answer(s): B

Show Answer Next Question

Viewing page 16 of 76
Viewing questions 76 - 80 out of 374 questions

Post your Comments and Discuss EC-Council EC0-349 exam dumps with other Community members:

Comments:

Name:

Join the EC0-349 Discussion

Vin Commented on January 17, 2026
Q63. correct answer is: a notebook that uses Apache Spark Structured Streaming. Justification: The data engineering team has Python skills.
INDIA

Vin Commented on January 17, 2026
Q61. correct answers should be: an activator item a data pipeline Q62. correct answers should be: reflex item (which is same as activator item) a data pipeline
INDIA

Vin Commented on January 17, 2026
Q55. right statement is: GRANT SELECT ON Customer (CustomerID, FirstName, LastName, Phone, Email) TO [user1@contoso.com]; so the 2nd answer should be [user1@contoso.com]
INDIA

Vin Commented on January 17, 2026
Q54. as the exhibit shows two activities placed side-by-side without any connection arrows (success, failure, or completion) between them, the next time the pipeline runs, both activities will start executing at the same time. so the correct answer is the next time the pipeline runs, E- both activities will run simultaneously
INDIA

Vin Commented on January 17, 2026
great questions with correct answers and very use friendly UI
INDIA

Spiderman Commented on January 17, 2026
Q 105: Option D Any table
INDIA

Spider Commented on January 17, 2026
Q 82: ABCD is the right answer.
INDIA

Tayyab Commented on January 16, 2026
Q-72 is unique and trick often judged by Pl-300 Course
JAPAN

Tayyab Commented on January 16, 2026
Good Content
JAPAN

Tayyab Commented on January 16, 2026
Detailed exploring the trick questions - Worth it
JAPAN

devi Commented on January 16, 2026
Very good source
UNITED STATES

SA Commented on January 16, 2026
I noticed quostion 83 and 84 are incorrect
SOUTH AFRICA

SV Commented on January 16, 2026
Helpful for certification exam dumparation
INDIA

South Africa Commented on January 16, 2026
Is Question:83 answer is correct? Is Question:84 answer correct?
SOUTH AFRICA

JJ Commented on January 15, 2026
several missing questions
Anonymous

Wilden Commented on January 15, 2026
I passed the CompTIA XK0-006 exam today. Bottom Line: It’s harder than the old Linux+, but the cert carries more weight now. Don't just memorize commands; you need to understand how to script them. The questions in this exam dumps pdf is very relevant and close real scenarios.
CANADA

Josh Commented on January 15, 2026
69 should be B
FRANCE

Pieter Commented on January 15, 2026
113 should be "alerts"?
NETHERLANDS

lya Commented on January 15, 2026
the best way to study for splunk 1002!
Anonymous

Pieter Commented on January 15, 2026
I think Q89 option E should state "Windows Hello for Business FIDO2 security key" and not "Windows Hello for Business".
NETHERLANDS

Cutiepie Commented on January 15, 2026
It's a good mcd prep material.I will be writing this exam on jan 27 and will update you my expereince
AUSTRALIA

Kangal Commented on January 15, 2026
I joined their Reddit site here at: https://www.reddit.com/r/FreeExamPrep/ and upvoted their posts. Then I sent them an email with my Reddit userId and told them about this. They gave me free access to the rest of the questions and their premium version.
INDIA

SV Commented on January 15, 2026
useful content
INDIA

Dibyajyoti Commented on January 15, 2026
Still learning and seems it will work for me
UNITED STATES

QUOC KHOI Commented on January 15, 2026
It's so helpful for me!!
Anonymous

Ronewa Maivha Commented on January 15, 2026
Good Learning Material
SOUTH AFRICA

Abdullah Commented on January 15, 2026
I found them from their Reddit site at: https://www.reddit.com/r/AzureExamPrep I Just joined the group and they sent me the link to full version of the exam questions. Thanks Team.
European Union

Pieter Commented on January 14, 2026
I think for question 32 the answer must be answer C, in fact it first says A and then it is pointed out the answer is C.
NETHERLANDS

QUESTION: 26 Commented on January 14, 2026
| Term | Mechanism / Function | | ------------------ | ------------------------------------------------------------------ | | **Policy map** | Mechanism to **create a schedule for packets prior to forwarding** | | **Service policy** | Mechanism to **apply a QoS policy to an interface** | | **DSCP** | Portion of the **IP header used to classify packets** |
UNITED STATES

Je Yi Commented on January 14, 2026
Questions are about 1400 in total. Suitable for revision for last week preparation.
Anonymous

VJ Commented on January 14, 2026
So far the questions are really helpful
Anonymous

Sindhu Commented on January 14, 2026
Useful content for certification preparation
INDIA

Sindhu Commented on January 14, 2026
Useful content for exam dumparation
INDIA

Don Commented on January 13, 2026
This exam dumps pdf offered a lot of insight to the actual exam. Most of the questions are very similar to actual scenarios in the exam.
UNITED STATES

Anonymous Commented on January 13, 2026
Been helpful
UNITED STATES

Prasad Commented on January 12, 2026
First of all, thanks for providing the exam questions. These will be helpful to pass the exam. As suggested by others, it will be more helpful if an explanation is provided for the right answers.
INDIA

NBK_2020 Commented on January 12, 2026
Good learning material
INDIA

Shruti Commented on January 12, 2026
Great material
Anonymous

Daniel Commented on January 12, 2026
Interesting and great content
UNITED KINGDOM

Sindhu Commented on January 12, 2026
Good content
INDIA

Sindhu Commented on January 12, 2026
Very useful content for exam dumparation
INDIA

Tshidi Commented on January 11, 2026
This is really helpful
Anonymous

RD Commented on January 11, 2026
i have solved 80 ques, till now. Out of which approx. 5-6 ques answers are wrong. Please verify it with scrum guide.
Anonymous

Fickry Commented on January 11, 2026
nice examp preparation for outsystems
Anonymous

Tshidi Commented on January 11, 2026
great learning material
Anonymous

amazon Commented on January 10, 2026
QUESTION: 88 right answer is : A) Configure the requester pays feature on the compani;s S3 bucket
CANADA

Prasad MP Commented on January 10, 2026
good questions and answers
Anonymous

Anonymous Commented on January 09, 2026
Insightful.
UNITED STATES

Leo Commented on January 09, 2026
Amazing exam dump
Anonymous

Tshidi Commented on January 09, 2026
This questions really helped for the exam dumparations
Anonymous