A user reset the password for a laptop but has been unable to log in to it since then. In addition, several unauthorized emails were sent on the user's behalf recently. The security team investigates the issue and identifies the following findings: · Firewall logs show excessive traffic from the laptop to an external site. · Unknown processes were running on the laptop. · RDP connections that appeared to be authorized were made to other network devices from the laptop. · High bandwidth utilization alerts from that user's username. Which of the following is most likely installed on the laptop?

Questions › Category: SY0-601 › A user reset the password for a laptop but has been unable to log in to it since then. In addition, several unauthorized emails were sent on the user’s behalf recently. The security team investigates the issue and identifies the following findings: · Firewall logs show excessive traffic from the laptop to an external site. · Unknown processes were running on the laptop. · RDP connections that appeared to be authorized were made to other network devices from the laptop. · High bandwidth utilization alerts from that user’s username. Which of the following is most likely installed on the laptop?

0 Vote Up Vote Down

Admin Staff asked 12 months ago

A user reset the password for a laptop but has been unable to log in to it since then. In addition, several unauthorized emails were sent on the user's behalf recently. The security team investigates the issue and identifies the following findings:
· Firewall logs show excessive traffic from the laptop to an external site.
· Unknown processes were running on the laptop.
· RDP connections that appeared to be authorized were made to other network devices from the laptop.
· High bandwidth utilization alerts from that user's username.
Which of the following is most likely installed on the laptop?

A. Worm

B. Keylogger

C. Trojan

D. Logic bomb





 

Correct Answer: C

This question is in SY0-601 exam
For getting CompTIA Security+ certificate

An organization wants to quickly assess how effectively the IT team hardened new laptops. Which of the following would be the best solution to perform this assessment?

Which of the following incident response phases should the proper collection of the detected IoCs and establishment of a chain of custody be performed before?

Cisco IOS Popular Commands

Recommended

Cisco IOS Popular Commands

Linux Professional Institute LPIC-2 Certificate

Linux Professional Institute LPIC-1 Certificate

Cisco Certified DevNet Associate Certificate

AWS Certified Cloud Practitioner Certificate

Fortinet NSE 4 – FortiOS 7.2 certificate

Welcome Back!

Create New Account!

Retrieve your password

An organization wants to quickly assess how effectively the IT team hardened new laptops. Which of the following would be the best solution to perform this assessment?

Which of the following incident response phases should the proper collection of the detected IoCs and establishment of a chain of custody be performed before?

Cisco IOS Popular Commands

Related Questions

Recommended

Cisco IOS Popular Commands

Linux Professional Institute LPIC-2 Certificate

Linux Professional Institute LPIC-1 Certificate

Cisco Certified DevNet Associate Certificate

AWS Certified Cloud Practitioner Certificate

Fortinet NSE 4 – FortiOS 7.2 certificate

Welcome Back!

Create New Account!

Retrieve your password