CompTIACompTIA
CV0-004 · Question #23
CV0-004 Question #23: Real Exam Question with Answer & Explanation
Sign in or unlock CV0-004 to reveal the answer and full explanation for question #23. The question stem and answer options stay visible for context.
Security
Question
A security analyst reviews the daily logs and notices the following suspicious activity: The analyst investigates the firewall logs and identities the following: Which of the following steps should the security analyst take next to resolve this issue? (Choose two.)
Options
- ASubmit an IT support ticket and request Kali Linux be uninstalled from John Smith's computer
- BBlock all inbound connections on port 4444 and block the IP address 201.101.25.121.
- CContact John Smith and request the Ethernet cable attached to the desktop be unplugged
- DCheck the running processes to confirm if a backdoor connection has been established.
- EUpgrade the Windows x64 operating system on John Smith's computer to the latest version.
- FBlock all outbound connections from the IP address 10.150.71.151.
Unlock CV0-004 to see the answer
You've previewed enough free CV0-004 questions. Unlock CV0-004 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#Incident Response#Network Security#Endpoint Security#Threat Containment