[Free] Download New Updated (February 2016) ECCouncil 312-50 Practice Tests 131-140



You establish a new Web browser connection to Google. Since a 3-way handshake is required for any TCP connection, the following actions will take place.




Ÿ   DNS query is sent to the DNS server to resolve www.google.com

Ÿ   DNS server replies with the IP address for Google?

Ÿ   SYN packet is sent to Google.

Ÿ   Google sends back a SYN/ACK packet

Ÿ   Your computer completes the handshake by sending an ACK

Ÿ   The connection is established and the transfer of data commences


Which of the following packets represent completion of the 3-way handshake?


A.     4thpacket

B.     3rdpacket

C.     6thpacket

D.     5thpacket


Correct Answer: D




E-mail tracking is a method to monitor and spy the delivered e-mails to the intended recipient.




Select a feature, which you will NOT be able to accomplish with this probe?


A.     When the e-mail was received and read.

B.     Send destructive e-mails.

C.     GPS location and map of the recipient.

D.     Time spent on reading the e-mails.

E.      Whether or not the recipient visited any links sent to them.

F.      Track PDF and other types of attachments.

G.     Set messages to expire after specified time.

H.     Remote control the User’s E-mail client application and hijack the traffic.


Correct Answer: H



Which of the following Trojans would be considered ‘Botnet Command Control Center’?


A.     YouKill DOOM

B.     Damen Rock

C.     Poison I

D.     Matten Kit


Correct Answer: C




What type of Virus is shown here?




A.     Macro Virus

B.     Cavity Virus

C.     Boot Sector Virus

D.     Metamorphic Virus

E.      Sparse Infector Virus


Correct Answer: B




John is using a special tool on his Linux platform that has a database containing signatures to be able to detect hundreds of vulnerabilities in UNIX, Windows, and commonly used web CGI/ASPX scripts. Moreover, the database detects DDoS zombies and Trojans as well. What would be the name of this tool?


A.     hping2

B.     nessus

C.     nmap

D.     make

Correct Answer: B




Fred is scanning his network to ensure it is as secure as possible. Fred sends a TCP probe packet to a host with a FIN flag and he receives a RST/ACK response. What does this mean?


A.     This response means the port he is scanning is open.

B.     The RST/ACK response means the port Fred is scanning is disabled.

C.     This means the port he is scanning is half open.

D.     This means that the port he is scanning on the host is closed.


Correct Answer: D




_____________ is a type of symmetric-key encryption algorithm that transforms a fixed-length block of plaintext (unencrypted text) data into a block of ciphertext (encrypted text) data of the same length.


A.     Stream Cipher

B.     Block Cipher

C.     Bit Cipher

D.     Hash Cipher


Correct Answer: B




Your company has blocked all the ports via external firewall and only allows port 80/443 to connect to the Internet. You want to use FTP to connect to some remote server on the Internet.

How would you accomplish this?


A.     Use HTTP Tunneling

B.     Use Proxy Chaining

C.     Use TOR Network

D.     Use Reverse Chaining


Correct Answer: A







You have successfully gained access to a victim’s computer using Windows 2003 Server SMB Vulnerability. Which command will you run to disable auditing from the cmd?


A.     stoplog stoplog

B.     EnterPol /nolog

C.     EventViewer o service

D.     auditpol.exe /disable


Correct Answer: D




How do you defend against MAC attacks on a switch?




A.     Disable SPAN port on the switch.

B.     Enable SNMP Trap on the switch.

C.     Configure IP security on the switch.

D.     Enable Port Security on the switch.


Correct Answer: D


Free VCE & PDF File for ECCouncil 312-50 Real Exam

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in 312-50 Practice Tests (February 2016) and tagged , , , , . Bookmark the permalink.