CompTIACompTIA
SY0-701 · Question #336
SY0-701 Question #336: Real Exam Question with Answer & Explanation
Sign in or unlock SY0-701 to reveal the answer and full explanation for question #336. The question stem and answer options stay visible for context.
Submitted by yaw92· Mar 6, 2026Security Operations
Question
A security analyst is investigating a workstation that is suspected of outbound communication to a command-and-control server. During the investigation, the analyst discovered that logs on the endpoint were deleted. Which of the following logs would the analyst most likely look at next?
Options
- AIPS
- BFirewall
- CACL
- DWindows security
Unlock SY0-701 to see the answer
You've previewed enough free SY0-701 questions. Unlock SY0-701 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.