Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC Exam GCIH Topic 7 Question 31 Discussion

Actual exam question for GIAC's GCIH exam
Question #: 31
Topic #: 7
[All GCIH Questions]

John works as a Professional Ethical Hacker for NetPerfect Inc. The company has a Linux-based network. All client computers are running on Red Hat 7.0 Linux. The Sales Manager of the company complains to John that his system contains an unknown package named as tar.gz and his documents are exploited. To resolve the problem, John uses a Port scanner to enquire about the open ports and finds out that the HTTP server service port on 27374 is open. He suspects that the other computers on the network are also facing the same problem. John discovers that a malicious application is using the synscan tool to randomly generate IP addresses.

Which of the following worms has attacked the computer?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Arthur at Sep 17, 2024, 07:40 PM

Limited Time Offer

25%

Off

Get Premium GCIH Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Cristina
10 months ago
Wait, there's a worm called the 'LoveLetter'? That's a pretty cheesy name for a cybersecurity threat. I wonder if it's as harmless as it sounds.
upvoted 0 times
...
Raelene
10 months ago
Hmm, I'm not sure about this one. I'll have to think it over. Maybe I should ask the person sitting next to me for a second opinion.
upvoted 0 times
...
Kati
10 months ago
This question is a piece of cake! Anyone who's been paying attention in class would know that the answer is B) Ramen.
upvoted 0 times
Albert
9 months ago
D) Nimda
upvoted 0 times
...
Roosevelt
9 months ago
C) LoveLetter
upvoted 0 times
...
Lili
9 months ago
B) Ramen
upvoted 0 times
...
Rodrigo
10 months ago
A) Code red
upvoted 0 times
...
...
Tanesha
11 months ago
I'm not sure, but I think Ramen could also be a possibility.
upvoted 0 times
...
Barney
11 months ago
D) Nimda is the correct answer. The synscan tool used to generate random IP addresses is a telltale sign of the Nimda worm.
upvoted 0 times
Dylan
9 months ago
Nimda is the correct answer. The synscan tool used to generate random IP addresses is a telltale sign of the Nimda worm.
upvoted 0 times
...
Margot
9 months ago
D) Nimda
upvoted 0 times
...
Zena
9 months ago
C) LoveLetter
upvoted 0 times
...
Shawna
9 months ago
B) Ramen
upvoted 0 times
...
Trinidad
10 months ago
A) Code red
upvoted 0 times
...
...
Hildred
11 months ago
I think the answer is B) Ramen. The tar.gz file and the open HTTP server port on 27374 are clear signs of a Ramen worm attack.
upvoted 0 times
Osvaldo
10 months ago
D) Nimda
upvoted 0 times
...
Margot
10 months ago
C) LoveLetter
upvoted 0 times
...
Lottie
10 months ago
B) Ramen
upvoted 0 times
...
Pauline
11 months ago
A) Code red
upvoted 0 times
...
...
Daren
11 months ago
I agree with Allene, Nimda seems like the most likely culprit.
upvoted 0 times
...
Allene
11 months ago
I think the worm that attacked the computer is Nimda.
upvoted 0 times
...

Save Cancel