Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
SAP
ServiceNow
All Vendors
  1. Home
  2. EC-Council
  3. 312-49v11

EC-Council 312-49v11 Exam (page: 2)
EC-Council Computer Hacking Forensic Investigator
Updated on: 24-Mar-2026

Viewing Page 2 of 20
312-49v11 PDF 152 Questions

Annie is searching for certain deleted files on a system running Windows XP OS.
Where will she find the files if they were not completely deleted from the system?

  1. C: $Recycled.Bin
  2. C: \$Recycle.Bin
  3. C:\RECYCLER
  4. C:\$RECYCLER

Answer(s): B



Which of the following files stores information about a local Google Drive installation such as User email ID, Local Sync Root Path, and Client version installed?

  1. filecache.db
  2. config.db
  3. sigstore.db
  4. Sync_config.db

Answer(s): D



An expert witness is a __________________ who is normally appointed by a party to assist the formulation and preparation of a party's claim or defense.

  1. Expert in criminal investigation
  2. Subject matter specialist
  3. Witness present at the crime scene
  4. Expert law graduate appointed by attorney

Answer(s): B



Smith, a network administrator with a large MNC, was the first to arrive at a suspected crime scene involving criminal use of compromised computers.
What should be his first response while maintaining the integrity of evidence?

  1. Record the system state by taking photographs of physical system and the display
  2. Perform data acquisition without disturbing the state of the systems
  3. Open the systems, remove the hard disk and secure it
  4. Switch off the systems and carry them to the laboratory

Answer(s): A



Which among the following is an act passed by the U.S. Congress in 2002 to protect investors from the possibility of fraudulent accounting activities by corporations?

  1. HIPAA
  2. GLBA
  3. SOX
  4. FISMA

Answer(s): C



Jacky encrypts her documents using a password. It is known that she uses her daughter's year of birth as part of the password.
Which password cracking technique would be optimal to crack her password?

  1. Rule-based attack
  2. Brute force attack
  3. Syllable attack
  4. Hybrid attack

Answer(s): A



Which of the following Event Correlation Approach is an advanced correlation method that assumes and predicts what an attacker can do next after the attack by studying the statistics and probability and uses only two variables?

  1. Bayesian Correlation
  2. Vulnerability-Based Approach
  3. Rule-Based Approach
  4. Route Correlation

Answer(s): A



Smith, as a part his forensic investigation assignment, seized a mobile device. He was asked to recover the Subscriber Identity Module (SIM card) data in the mobile device. Smith found that the SIM was protected by a Personal Identification Number (PIN) code, but he was also aware that people generally leave the PIN numbers to the defaults or use easily guessable numbers such as 1234. He made three unsuccessful attempts, which blocked the SIM card.
What can Jason do in this scenario to reset the PIN and access SIM data?

  1. He should contact the network operator for a Temporary Unlock Code (TUK)
  2. Use system and hardware tools to gain access
  3. He can attempt PIN guesses after 24 hours
  4. He should contact the network operator for Personal Unlock Number (PUK)

Answer(s): D



Viewing Page 2 of 20



Share your comments for EC-Council 312-49v11 exam with other users:

unknown-R 11/23/2023 7:36:00 AM

good collection of questions and solution for pl500 certification
UNITED STATES


Swaminathan 5/11/2023 9:59:00 AM

i would like to appear the exam.
Anonymous


Veenu 10/24/2023 6:26:00 AM

i am very happy as i cleared my comptia a+ 220-1101 exam. i studied from as it has all exam dumps and mock tests available. i got 91% on the test.
Anonymous


Karan 5/17/2023 4:26:00 AM

need this dump
Anonymous


Ramesh Kutumbaka 12/30/2023 11:17:00 PM

its really good to eventuate knowledge before appearing for the actual exam.
Anonymous


anonymous 7/20/2023 10:31:00 PM

this is great
CANADA


Xenofon 6/26/2023 9:35:00 AM

please i want the questions to pass the exam
UNITED STATES


Diego 1/21/2024 8:21:00 PM

i need to pass exam
Anonymous


Vichhai 12/25/2023 3:25:00 AM

great, i appreciate it.
AUSTRALIA


P Simon 8/25/2023 2:39:00 AM

please could you upload (isc)2 certified in cybersecurity (cc) exam questions
SOUTH AFRICA


Karim 10/8/2023 8:34:00 PM

good questions, wrong answers
Anonymous


Itumeleng 1/6/2024 12:53:00 PM

im preparing for exams
Anonymous


MS 1/19/2024 2:56:00 PM

question no: 42 isnt azure vm an iaas solution? so, shouldnt the answer be "no"?
Anonymous


keylly 11/28/2023 10:10:00 AM

im study azure
Anonymous


dorcas 9/22/2023 8:08:00 AM

i need this now
Anonymous


treyf 11/9/2023 5:13:00 AM

i took the aws saa-c03 test and scored 935/1000. it has all the exam dumps and important info.
UNITED STATES


anonymous 1/11/2024 4:50:00 AM

good questions
Anonymous


Anjum 9/23/2023 6:22:00 PM

well explained
Anonymous


Thakor 6/7/2023 11:52:00 PM

i got the full version and it helped me pass the exam. pdf version is very good.
INDIA


sartaj 7/18/2023 11:36:00 AM

provide the download link, please
INDIA


loso 7/25/2023 5:18:00 AM

please upload thank.
THAILAND


Paul 6/23/2023 7:12:00 AM

please can you share 1z0-1055-22 dump pls
UNITED STATES


exampei 10/7/2023 8:14:00 AM

i will wait impatiently. thank youu
Anonymous


Prince 10/31/2023 9:09:00 PM

is it possible to clear the exam if we focus on only these 156 questions instead of 623 questions? kindly help!
Anonymous


Ali Azam 12/7/2023 1:51:00 AM

really helped with preparation of my scrum exam
Anonymous


Jerman 9/29/2023 8:46:00 AM

very informative and through explanations
Anonymous


Jimmy 11/4/2023 12:11:00 PM

prep for exam
INDONESIA


Abhi 9/19/2023 1:22:00 PM

thanks for helping us
Anonymous


mrtom33 11/20/2023 4:51:00 AM

i prepared for the eccouncil 350-401 exam. i scored 92% on the test.
Anonymous


JUAN 6/28/2023 2:12:00 AM

aba questions to practice
UNITED STATES


LK 1/2/2024 11:56:00 AM

great content
Anonymous


Srijeeta 10/8/2023 6:24:00 AM

how do i get the remaining questions?
INDIA


Jovanne 7/26/2022 11:42:00 PM

well formatted pdf and the test engine software is free. well worth the money i sept.
ITALY


CHINIMILLI SATISH 8/29/2023 6:22:00 AM

looking for 1z0-116
Anonymous