Crucial Exams

CompTIA Server+ SK0-005 Practice Question

While reviewing a Windows Server 2022 file server that had been operating normally, you observe the following:

  • Microsoft Defender Antivirus service is stopped and records event ID 5010 "The service terminated unexpectedly" every few minutes; attempts to restart the service fail.
  • Resource Monitor shows an instance of svchost.exe establishing hundreds of outbound TCP connections on port 445 to IP addresses in several countries, even though no clients are currently connected.
  • Executable files with random eight-character names (for example, a8f9.tmp.exe) appear in C:\ProgramData\Temp every few minutes.
  • Hardware diagnostics, memory tests, disk checks, and NIC driver/firmware versions all report healthy and current.

Based on this evidence, which of the following is the MOST likely root cause of the problem?

  • Corruption in the NTFS filesystem is causing orphan temporary files to be created repeatedly.

  • A faulty or incompatible NIC driver is generating phantom network connections.

  • A virus infection is actively running on the server and attempting to spread.

  • DNS cache poisoning on the domain controller is redirecting outbound traffic to malicious hosts.

CompTIA Server+ SK0-005
Troubleshooting
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
SAVE $47
CompTIA Server+ Voucher
v5 / SK0-005
$390.00 $343.00
SAVE $53
CompTIA Server+ Voucher with Retake
v5 / SK0-005
Includes Retake
$439.00 $386.00
Bash, the Crucial Exams Chat Bot
AI Bot