Which of the following represents HTTP traffic events that can be used to identify potential Botnets?

by

Which of the following represents HTTP traffic events that can be used to identify potential Botnets?

Question:

Which of the following represents HTTP traffic events that can be used to identify potential Botnets?

Options:

Traffic from users that browse to IP addresses instead of fully-qualified domain names, downloading W32.Welchia.Worm from a Windows share, traffic to domains that have been registered in the last 30 days, downloading executable files from unknown URL’s

Traffic from users that browse to IP addresses instead of fully-qualified domain names, traffic to domains that have been registered in the last 60 days, downloading executable files from unknown URL’s

Traffic from users that browse to IP addresses instead of fully-qualified domain names, traffic to domains that have been registered in the last 60 days, downloading executable files from unknown URL’s, IRC-based Command and Control traffic

Traffic from users that browse to IP addresses instead of fully-qualified domain names, traffic to domains that have been registered in the last 30 days.

Correct Answer

The Correct Answer for this Question is

Traffic from users that browse to IP addresses instead of fully-qualified domain names, traffic to domains that have been registered in the last 30 days.

Leave a Comment