ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-002 All Questions

View all questions & answers for the CS0-002 exam
Go to Exam

Exam CS0-002 topic 1 question 261 discussion

Actual exam question from CompTIA's CS0-002
Question #: 261
Topic #: 1
[All CS0-002 Questions]

After a breach involving the exfiltration of a large amount of sensitive data, a security analyst is reviewing the following firewall logs to determine how the breach occurred.



Which of the following IP addresses does the analyst need to investigate further?

  • A. 192.168 1.1
  • B. 192.168.1.10
  • C. 192.168.1.12
  • D. 192.168 1.193
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by gnnggnnggnng at Feb. 3, 2023, 10 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
G_f_b
2 years, 1 month ago
Selected Answer: C
C , not just because it's the largest amount of data, but because of the port. DNS shouldn't have that much traffic
upvoted 3 times
2Fish
2 years, 1 month ago
Agree. This is quite a bit of traffic on port 53. C is correct in this instance.
upvoted 1 times
...
...
AaronS1990
2 years, 2 months ago
Selected Answer: C
C As it is the only one that sends an at all considerable amount of traffic out
upvoted 2 times
...
CatoFong
2 years, 2 months ago
Selected Answer: C
gnng x3 is correct
upvoted 1 times
...
Eric1234
2 years, 2 months ago
Selected Answer: D
Going with D
upvoted 1 times
...
gnnggnnggnng
2 years, 2 months ago
Selected Answer: C
IP addresses that are sending a large amount of data out of the network first.
upvoted 3 times
Eric1234
2 years, 2 months ago
20k is more than C, going with D
upvoted 2 times
chuck165
2 years, 2 months ago
20,000 > 5,300,000 ?
upvoted 9 times
Eric1234
2 years, 2 months ago
Missed that, changing answer C
upvoted 2 times
...
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago