اضغط هنا للانضمام الى قروب فوجي للإختبارات على تيليقرام

اختبار شهادة محلل الأمن السيبراني CompTIA CySA+

السؤال 255 من 1040

كل الأسئلة

When investigating a potentially compromised host, an analyst observes that the process BGInfo.exe (PID 1024), a Sysinternals tool used to create desktop backgrounds containing host details, has been running for over two days. Which of the following activities will provide the best insight into this potentially malicious process, based on the anomalous behavior?

الخيارات

  • A Changes to system environment variables
  • B SMB network traffic related to the system process
  • C Recent browser history of the primary user
  • D Activities taken by PID 1024

النقاشات

لا توجد نقاشات منشورة لهذا السؤال حالياً.