Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC Exam GCIH Topic 7 Question 31 Discussion

Actual exam question for GIAC's GCIH exam
Question #: 31
Topic #: 7
[All GCIH Questions]

John works as a Professional Ethical Hacker for NetPerfect Inc. The company has a Linux-based network. All client computers are running on Red Hat 7.0 Linux. The Sales Manager of the company complains to John that his system contains an unknown package named as tar.gz and his documents are exploited. To resolve the problem, John uses a Port scanner to enquire about the open ports and finds out that the HTTP server service port on 27374 is open. He suspects that the other computers on the network are also facing the same problem. John discovers that a malicious application is using the synscan tool to randomly generate IP addresses.

Which of the following worms has attacked the computer?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Arthur at Sep 17, 2024, 07:40 PM

Limited Time Offer

25%

Off

Get Premium GCIH Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Cristina
2 months ago
Wait, there's a worm called the 'LoveLetter'? That's a pretty cheesy name for a cybersecurity threat. I wonder if it's as harmless as it sounds.
upvoted 0 times
...
Raelene
2 months ago
Hmm, I'm not sure about this one. I'll have to think it over. Maybe I should ask the person sitting next to me for a second opinion.
upvoted 0 times
...
Kati
2 months ago
This question is a piece of cake! Anyone who's been paying attention in class would know that the answer is B) Ramen.
upvoted 0 times
Albert
26 days ago
D) Nimda
upvoted 0 times
...
Roosevelt
29 days ago
C) LoveLetter
upvoted 0 times
...
Lili
1 months ago
B) Ramen
upvoted 0 times
...
Rodrigo
1 months ago
A) Code red
upvoted 0 times
...
...
Tanesha
3 months ago
I'm not sure, but I think Ramen could also be a possibility.
upvoted 0 times
...
Barney
3 months ago
D) Nimda is the correct answer. The synscan tool used to generate random IP addresses is a telltale sign of the Nimda worm.
upvoted 0 times
Dylan
1 months ago
Nimda is the correct answer. The synscan tool used to generate random IP addresses is a telltale sign of the Nimda worm.
upvoted 0 times
...
Margot
1 months ago
D) Nimda
upvoted 0 times
...
Zena
1 months ago
C) LoveLetter
upvoted 0 times
...
Shawna
1 months ago
B) Ramen
upvoted 0 times
...
Trinidad
1 months ago
A) Code red
upvoted 0 times
...
...
Hildred
3 months ago
I think the answer is B) Ramen. The tar.gz file and the open HTTP server port on 27374 are clear signs of a Ramen worm attack.
upvoted 0 times
Osvaldo
2 months ago
D) Nimda
upvoted 0 times
...
Margot
2 months ago
C) LoveLetter
upvoted 0 times
...
Lottie
2 months ago
B) Ramen
upvoted 0 times
...
Pauline
2 months ago
A) Code red
upvoted 0 times
...
...
Daren
3 months ago
I agree with Allene, Nimda seems like the most likely culprit.
upvoted 0 times
...
Allene
3 months ago
I think the worm that attacked the computer is Nimda.
upvoted 0 times
...

Save Cancel