220-1002 Flashcards

Question 1

Q

When a new harddisk leaves the manufacturer, creates cylinders, tracks and sectors on the platters

Answer

A

Low Level Format

Question 2

Q

halts any child processes

Answer

A

taskkill /t /pid processid

/t

Terminates the specified process and any child processes which were started by it.

/pid

Specifies the PID of the process to be terminated. Use TaskList to get the PID.

Question 3

Q

bottom of screen gives one-click access to favorite apps and files in macOS

Question 4

Q

Opens device manager from runline

Answer

A

Devmgmt.msc

Despite the name being called “Device Manager”, the name used to call the application is short for Device Management.

Question 5

Q

UGO stands for…

Answer

A

User, Group, Others

User
User is the owner of the file. When you create a file, you become the owner of the file. The ownership can be changed as well, but we’ll see that later.

Group
Every user is part of a certain group(s). A group consists of several users and this is one way to manage users in a multi-user environment.

Other
‘Other’ can be considered as a super group with all the users on the system. Basically, anyone with access to the system belongs to this group.

In other words, ‘User’ is a single user, Group is a collection of users and Other consists of all the users on the system.

*Even if you are the only user of the system, you’ll still be part of many groups. Distributions like Ubuntu also create a group with name same as the user’s name.

Tip: Run the command groups to see what user-groups you belong to.

Question 6

Q

7 steps in the malware removal process are…

Answer

A

Identify and research malware symptoms
Quarantine infected systems
Disable system restore
Remediate infected systems:
- update anti-malware software
- scan and use removal techniques
Schedule scans and run updates
Enable system restore
Educate end user

IQ DR SEE
I (Identify)
Quietly (Quarantine)
Draw (Disable Restore)
Red (Remediate/Remove)
Shoes (Schedule Scans/Updates)
Every (Enable Restore)
Evening (Educate User)

Question 7

Q

How do you Force Quit in macOS?

Answer

A

in Apple menu or press command+option+esc

Question 8

Q

specifies the hour in cron(0-23)

Question 9

Q

A collection of user accounts, computer accounts, and other groups that can be assigned permissions in the same way as a single user object.

Answer

A

Security Group

Question 10

Q

Clears the DNS resolver cache

Answer

A

ipconfig /flushdns

Question 11

Q

A ____ is a logical group of keys, subkeys, and values in the registry that has a set of supporting files loaded into memory when the operating system is started or a user logs in.

Answer

A

Hive

REGISTRY DATABASE FILES
The registry database is stored in binary files called hives. A hive comprises a single file (with no extension), a .LOG file (containing a transaction log), and a .SAV file (a copy of the key as it was at the end of setup). The system hive also has an .ALT backup file. Most of these files are stored in the %SystemRoot%\System32\Config folder, but hive files for user profiles are stored in the folder holding the user’s profile. The following table shows the standard hives.

HKEY_CURRENT_CONF
system, system.alt, system.log, system.sav

HKEY_CURRENT_USER
ntuser.dat, ntuser.dat.log

HKEY_LOCAL_MACHINE\SAM
ssam, sam.log, sam.savv

HKEY_LOCAL_MACHINE\SECURITY
security, security.log, security.sav

HKEY_LOCAL_MACHINE\SOFTWARE
software, software.log, software.sav

HKEY_LOCAL_MACHINE\SYSTEM
system, system.alt, system.log, system.sav

HKEY_USERS.DEFAUT
default, default.log, default.sav

HKEY_CLASSES_ROOT
Not stored in a hive but built from the \SOFTWARE\CLASSES keys in CURRENT_USER and LOCAL_MACHINE

Question 12

Q

Location of Log files in WIndows

Answer

A

%SystemRoot%\System32\Winevt\Logs folder

Question 13

Q

127.0.0.1

Answer

A

IPv4 Loop back address

The loopback address is used to test network software:

without physically installing a Network Interface Card (NIC),
and without having to physically connect the machine to a TCP/IP network.

Question 14

Q

Allow you to collect statistics about resources such as memory, disk, and processor

Answer

A

Peformance Monitor
-perfmon.msc

-Performance Monitor provides a visual display of built-in Windows performance counters, either in real time or as a way to review historical data. You can add performance counters to Performance Monitor by dragging and dropping, or by creating custom Data Collector Sets. It features multiple graph views that enable you to visually review performance log data. You can create custom views in Performance Monitor that can be exported as Data Collector Sets for use with performance and logging features.

Question 15

Q

32 bit application files location

Answer

A

Program Files(x86)

Question 16

Q

Do most things with an object but not to change its permissions or owner.

Question 17

Q

Stop a process using its unique ID (Windows)

Answer

A

taskkill /IM pid

Question 18

Q

A new feature of Windows 7 that enables users to rapidly access data from remotely located file and web servers. This enables users at a small branch to cache copies of frequently accessed files from head office servers on a local computer.

Answer

A

BranchCache

Question 19

Q

Bash shell script comment

Answer

A

#
{#BashCom}

Bash-Hash

Same as Powershell Comments #

Question 20

Q

Linux shell scrips

Question 21

Q

View the contents of a file or folder or start a program

Answer

A

Read/List/Execute

Question 22

Q

quits a running program in command prompt

Answer

A

Control + C

Question 23

Q

Control connection to databases set up on the local computer

Answer

A

ODBC Data Sources

(Open Database Connectivity )

Question 24

Q

displays all files without an extension.

Question 25

Q

Shows a list of services within each process

Answer

A

tasklist /svc

/svc Lists all the service information for each process without truncation. Valid when the /fo parameter is set to table.

Question 26

Q

An attack that sends an email or displays a Web announcement that falsely claims to be from a legitimate enterprise in an attempt to trick the user into surrendering private information

Question 27

Q

A network protocol for secure transfer of data between computers on port 22

Answer

A

SSH (Secure Shell)

SSH -> 22H = SSH/Port 22

Question 28

Q

refresh the local database with information about the packages available from the repository

Answer

A

apt-get update

Question 29

Q

Part of UEFI, successor to MBR. Windows allows up to 128 partitions at 2TB each. It also has a back up copy for parition entries

Answer

A

GPT (GUID Partition Table)

Question 30

Q

port 23

Question 31

Q

Ensures old data on a hard drive is destroyed by writing zeros or a random patter to each location on the drive. Makes disk suitable for re-use.

Answer

A

Drive Wiping

Question 32

Q

change ownership in linux

Question 33

Q

An account in which if a process is executed it is unrestricted in terms of making changes to the system configuration and file system (better than administrator account)

Answer

A

LocalSystem account
{SYSTEM has unrestricted access, SERVICES does not}
- One of the 3 Service User Accounts.
*NetworkService
*LocalService
(Both have minimum privileges)

-Operated by Service Control Manager

Question 34

Q

tool to copy code to make the partition bootable

Answer

A

bootsect
- Boot sector restoration tool

Bootsect.exe updates the master boot code for hard disk partitions in order to switch between BOOTMGR and NTLDR (the boot loader for all Win NT systems). You can use this tool to restore the boot sector on your computer.

Question 35

Q

Adds missing Windows installations to the BCD

Answer

A

bootrec /rebuildbcd

Common Usage:
Failure to boot/invalid boot disk
No OS found

Question 36

Q

A disk partition designated for swap space in linux.

Answer

A

Swap Partition

Question 37

Q

Apple equivalent of system restore

Answer

A

Time Machine

Question 38

Q

a file that contains all the contents of an optical disc

Question 39

Q

Enables network-ready devices to discover each other automatically. Also allows configurations for devices to work with firewalls

Answer

A

UPnP (Universal Plug and Play)

Universal Plug and Play (UPnP) is a protocol framework allowing network devices to auto configure services such as allowing a game console to request appropriate settings from a firewall.
Windows automatically detects new or changed hardware, finds drivers, and installs and configures the device.
Minimal user input includes installing vendor drivers.
Microsoft has a repository of generic drivers for many common devices, Mice, keyboards, webcams, etc.
It will automatically install the closest match to the device detected, although this is not the same as the drivers from the device vendor, their drivers may include extra functionality especially for high-end devices and graphics cards, like programmable soft keys on a keyboard, or extra scroll settings on a mouse.

Question 40

Q

When a new hard drive leaves the manufacturer, creates cylinders, tracks and sectors on the platters

Answer

A

Low-level format

Question 41

Q

In windows, lists result files one screen at a time

Answer

A

dir /p

Directory
/P *Pauses after each screenful of information.

Question 42

Q

check free space and report usage by directories and files (linux)

Answer

A

df and du

The “disk free” command is a fantastic command-line tool that gives you a quick 30,000-foot view of your filesystem and all mounted disks. It tells you the total disk size, space used, space available, usage percentage, and what partition the disk is mounted on. I recommend pairing it with the -h flag to make the data human-readable.

The “disk usage” command is excellent when applied in the correct context. This command is at its best when you need to see the size of a given directory or subdirectory. It runs at the object level and only reports on the specified stats at the time of execution. I like to pair this command with the -sh flags to give a human-readable summary of a specified object (the directory and all subdirectories).

===============================================================================
In Windows, you can right click a drive/folder/file and select properties to find free space and usage

Question 43

Q

In Linux, what command is used to view tasks scheduled by the
current user?

Answer

A

crontab –l

Question 44

Q

All selected data regardless of when it was previously backed up (high backup, time low restore time uses one tape set)

Answer

A

full backup

Question 45

Q

A vulnerability that is exploited before the software creator/vendor is even aware of its existence.

Answer

A

zero-day exploit

Question 46

Q

Allows you to view cached passwords for websites and Windows/network accounts

Answer

A

Credential Manager

Question 47

Q

The file system older macOS uses

Answer

A

HFS Plus (Extended Hierarchical File System)

*Replaced by APFS (Apple Filing System)

Question 48

Q

displays the current state of network interfaces within linux

Answer

A

ifconfig/iwconfig

ifconfig (ip a) -Display network info (legacy, newer distros use ip a )
May need to be installed
iwconfig -Display wireless adapter configurations/info.

Question 49

Q

schedules a system file scan whenever the PC boots

Answer

A

sfc /scanboot
-System File Checker

Question 50

Q

Linux User commands

Answer

A

Useradd, Usermod, Userdel

Question 51

Q

windows batch file escape character

Question 52

Q

displays all files and directories in the current directory

Answer

A

dir *.*

dir = Directory
*.* = Show any file name with any extension.

Question 53

Q

lists all switches for the netstat command

Answer

A

netstat /? Or netstat /help

Question 54

Q

Located in Control Panel in Windows 7, is a collection of predefined Microsoft Management Consoles

Answer

A

Computer Management

Control Panel / Administrative Tools
• mmc.exe

Question 55

Q

(Linux) Shutdown at 5:30pm

Answer

A

shutdown -h 17:30

Question 56

Q

change permission modifiers in linux

Question 57

Q

Change ownership in linux.

Question 58

Q

legacy file system used for optical disc media

Answer

A

CDFS (compact disc file system)

Question 59

Q

A collection of user accounts that can be assigned permissions in the same way as a single user object

Answer

A

Security Group

There are two forms of common security principals in Active Directory: user accounts and computer accounts. These accounts represent a physical entity (a person or a computer). Security groups are used to collect user accounts, computer accounts, and other groups into manageable units.

Groups are used to collect user accounts, computer accounts, and other groups into manageable units. Working with groups instead of with individual users helps simplify network maintenance and administration.

There are two types of groups in Active Directory:

Distribution groups: Used to create email distribution lists.

Security groups: Used to assign permissions to shared resources.

Security groups can provide an efficient way to assign access to resources on your network. By using security groups, you can:

Assign user rights to security groups in Active Directory.
Assign permissions to security groups for resources.

Question 60

Q

linux command that makes a copy of an input file to an output file

Answer

A

dd

AKA Duplicate Data (dd)

Question 61

Q

displays linux processes that are currently running

Answer

A

ps

View the current processes
And the process ID (PID)
Similar to the Windows Task Manager
View user processes
ps
View all processes
ps -e | more

Question 62

Q

Medical and insurance records, plus hospital lab results

Answer

A

PHI (Protected Health Information)

• Health information associated with an individual
• Health status, health care records, payments
for health care, and much more
• Data between providers
• Must maintain similar security requirements
• HIPAA regulations
• Health Insurance Portability and Accountability Act of 1996

Question 63

Q

Removes a directory and its contents recursively (Linux)

Answer

A

rm -r

• Remove files or directories
• Deletes the files
• Does not remove directories by default
• Directories must be empty to be removed or
must be removed with –r (removes contents recursively)

Question 64

Q

is a text document containing commands for the operating system. The commands are run in the order they are listed

Answer

A

Script File

A text document containing OS commands or instructions from a scripting language.

Scripting Language:
A programming language that is not compiled, and must be run within a particular environment.
You may need command interpreter to execute the scrips.
You can open scripts in text editors or IDEs
- IDEs are designed to support scripting
- Autocomplete
- Debugging tools

Scripting Languages
Types of Instruction Sets:
- Compiled Programs (CPU performs instructions) *C++
- Scripts (OS or command interpreter performs instructions)

File extensions differ for each scripting language:

Windows batch file: .bat
PowerShell script: .ps1
Linux shell script: .sh
VBScript file: .vbs
JavaScript file: .js
Python script: .py

Scripts often used for smaller, repetitive tasks.

Answer 53

A

nslookup -Option Host Server

Lookup information from DNS servers
Canonical names, IP addresses, cache timers, etc.
Lookup names and IP addresses
Many different options

Answer 54

A

OU (Organizational Unit)

Answer 55

A

5

7 Read, Write, and Execute r w x
6 Read and Write r w -
5 Read and Execute r - x
- 4 Read only r - -
3 Write and Execute - w x
2 Write only - w -
- 1 Execute only - - x
0 none - - -

**REMEMBER 421
4 = R– (Read)
2 = -W- (Write)
1 = –X (eXecute)
The rest is just BASIC math.

Answer 56

A

bootrec

Recovery Console: bootrec /rebuildbcd

bootrec /fixmbr
bootrec /fixboot

Answer 57

A

net user dmartin /active:no

Answer 58

A

Users folder. The Users folder is located in the Local Users and Groups folder in the local Computer Management (MMC).

SAM (Security Accounts Manager)

Answer 59

A

control panel -> system -> remote desktop
Settings -> System -> Remote Desktop
CMD:
C:\WINDOWS\System32\control.exe system -> Remote Desktop

Answer 60

A

Transmit Power

Answer 61

A

ext (Extended File System)

Answer 62

A

sfc /scanboot

Answer 63

A

Start, restart ,stop and pause services.

Answer 64

A

trace logs

Answer 65

A

ICM (Information Content Management)

Answer 66

A

symmetric encryption

Answer 67

A

Event Viewer

Answer 68

A

WSUS
-Windows Server Update Service

WSUS, previously known as Software Update Services, is a computer program and network service that enables administrators to manage the distribution of updates and hotfixes released for Microsoft products to computers in a corporate environment.

Answer 69

A

Event Viewer
- (accessed through computer management, administrative tools, or eventvwr.msc)

Answer 70

A

This command line tool displays the Resultant Set of Policy (RSoP) information for a target user and computer.

Displays the RSoP for a computer and user account
/S
system Specifies the remote system to connect to.

/U
[domain]user Specifies the user context under which the command should run. Can not be used with /X, /H.

/P
[password] Specifies the password for the given user context. Prompts for input if omitted. Cannot be used with /X, /H.

/SCOPE
scope Specifies whether the user or the computer settings need to be displayed. Valid values: “USER”, “COMPUTER”.

/USER
[domain]user Specifies the user name for which the RSoP data is to be displayed.

/X
Saves the report in XML format at the location and with the file name specified by the parameter. (valid in Windows Vista SP1 and later and Windows Server 2008 and later)

/H
Saves the report in HTML format at the location and with the file name specified by the parameter. (valid in Windows at least Vista SP1 and at least Windows Server 2008)

/F
Forces Gpresult to overwrite the file name specified in the /X or /H command.

/R
Displays RSoP summary data.

/V
Specifies that verbose information should be displayed. Verbose information provides additional detailed settings that have been applied with a precedence of 1.

/Z
Specifies that the super-verbose information should be displayed. Super- verbose information provides additional detailed settings that have been applied with a precedence of 1 and higher. This allows you to see if a setting was set in multiple places. See the Group Policy online help topic for more information.

Answer 71

A

Performance Monitor
- (can be accessed through administrative tools, Computer Management or perfmon.exe command line)

Answer 72

A

ARP poisoning
- Address Resolution Protocol poisoning (ARP poisoning) is a form of attack in which an attacker changes the Media Access Control (MAC) address and attacks an Ethernet LAN by changing the target computer’s ARP cache with a forged ARP request and reply packets.

Answer 73

A

Confidentiality
Integrity
Availability

{With CIA, all answers end in “ity”
AAA does not!
Authentication
Authorization
Accounting}

Answer 74

A

tasklist /svc

Answer 75

A

taskkill /im PID

Example: End Notepad (14944)
C:\User> TaskKill /IM 14944
SUCCESS: Sent termination signal to the process with PID 14944.

Answer 76

A

network mapping

Answer 77

A

apt-get install (package name)

Answer 78

A

chkdsk C: /x
- Check Disk
- /x Forces the volume to dismount first if necessary.
All opened handles to the volume would then be invalid
(implies /F -fixes all errors on disk).

Answer 79

A

Sysprep
- Microsoft’s System Preparation Tool

Sysprep Generalizes the image and removes computer-specific information such as installed drivers and the computer security identifier (SID).

Answer 80

A

boot partition

{Boot Partition has the OS}
{System Partition has the BCD}

*Boot Configuration Database

Answer 81

A

Disk Utility

Answer 82

A

Confidential

Top Secret = Highest level of restriction
Secret = Valuable Info, Severely restricted
Confidential = Highly sensitive info need approval before viewing
Classified = Restricted, Internal/official use only (3rd party NDA)
Unclassified = No restrictions

============================================================================
Top Secret
Secret
- Both have “Secret” “Top Secret” is on TOP

Confidential
-is Confidently in the MIDDLE

Classified
Unclassified
- Both have “Classified” “Unclassified” is UNDER classified

Answer 83

A

Administrators

Answer 84

A

Task Manager

Answer 85

A

sfc /scannow

Answer 86

A

grep

Find text in a file
Search through many files at a time
grep PATTERN [FILE]
> grep failed auth.log

Answer 87

A

Ext4 is functionally very similar to ext3, Both support journaling but Ext4 brings large filesystem support, improved resistance to fragmentation, higher performance, and improved timestamps.

Answer 88

A

Setup Logs

Answer 89

A

netstat -n
-n Displays addresses and port numbers in numerical form.
{N = numerical}

====================================================================
Example:
Proto ___ Local Address _____ Foreign Address _______ State
TCP ___ 10.32.9.109:49264 ___ 35.186.224.42:443 ___ ESTABLISHED
TCP ___ 10.32.9.109:49501 ___ 149.96.232.187:443 ___ ESTABLISHED
TCP ___ 10.32.9.109:49521 ___ 10.32.9.28:7337 _____ ESTABLISHED
TCP ___ 10.32.9.109:49532 ___ 10.32.9.28:6336 ____ ESTABLISHED
TCP ___ 10.32.9.109:51786 ___ 10.32.9.14:1611 _______ ESTABLISHED
TCP ___ 10.32.9.109:52161 ___ 52.113.196.254:443 ____ CLOSE_WAIT

Answer 90

A

Diskmgmt.msc

Answer 91

A

Authenticated Users Group

The Authenticated Users group includes all users whose identities were authenticated when they logged on. This includes local user accounts as well as all domain user accounts from trusted domains and also users from other forests that access resources in the local forest using valid credentials and using a forest or external inter-forest trust relationship.

The Everyone group is a superset of the Authenticated Users group. It includes the Authenticated Users group and the Guest account. An important difference between the Everyone and Authenticated Users groups lies in their Guest and Anonymous accounts’ membership

Answer 92

A

compmgmt.msc

Answer 93

A

boot sector virus

Answer 94

A

Defragmentation

Answer 95

A

Sleep/Standby Mode

{Sleep/StandBy mode sends data to Memory}
{Hibernate mode sends data to Disk}

Answer 96

A

%SYSTEMROOT%\System32\drivers\etc\hosts

=========================================================

The hosts file is an operating system file on Windows PC that lets you map specific domain names to an IP address. Windows will use the hosts file each time when connecting over a network using a hostname. It’s used to translate hostnames into numeric protocol addresses that identify and locate a host in an IP network.

This is similar to nslookup where a domain name is translated to IP.

Answer 97

A

gpupdate /force
- Group Policy Update /force

Answer 98

A

environment variable

Answer 99

A

Workgroup

Answer 100

A

eavesdropping

Answer 101

A

Worm

Self-contained
Typically target network application vulnerability
Rapidly consumes network bandwidth.

Answer 102

A

Reliability and Performance Monitoring

Answer 103

A

NLA (Network Level Authentication)

NLA is a feature of Remote Desktop Services (RDP Server) or Remote Desktop Connection (RDP Client) that requires the connecting user to authenticate themselves before a session is established with the server.

Answer 104

A

PCI-DSS (payment card industry data security standard)

===============================================================================

Anything having to do with PAYMENT CARDS or there related INDUSTRY aka banking. Banks want there DATA secured with this STANDARD

Payment
Card
Industry
Data
Security
Standard

PCIDSS

Answer 105

A

RADIUS
-Remote Authentication Dial-In User Service

RADIUS protocol implements AAA, Authentication, Authorization, and Accounting.

Answer 106

A

chkdsk C: /x

/x Forces the volume to dismount first, if necessary. All open handles to the drive are invalidated. /x also includes the functionality of /f.
/f Fixes errors on the disk. The disk must be locked. If chkdsk cannot lock the drive, a message appears that asks you if you want to check the drive the next time you restart the computer.

Answer 107

A

Power Users

Answer 108

A

Transmit Power

Answer 109

A

Replay attack

Answer 110

A

System Information

Answer 111

A

Event Viewer
- (accessed through computer management, administrative tools, or eventvwr.msc)

Answer 112

A

dir /o:d

/o (Order) how?
:d (by Date)
/o:d (Order:by date)

Answer 113

A

net user dmartin /active:no

Answer 114

A

Top Secret

Answer 115

A

DISM
- Microsoft’s Deployment Image Servicing and Management

Answer 116

A

Trojan Horse

Answer 117

A

Local Users and Groups (lusrmgr.msc)

The Local Users and Groups in Windows 10 is an area where you can secure and manage user accounts or groups. These user accounts or groups must be stored locally on Windows 10 for you to be able to manage them.

Answer 118

A

System Protection Tab

Answer 119

A

Asymmetric Encryption

Answer 120

A

Full Control

Answer 121

A

Active Directory

Answer 122

A

Copying files and folders on the same NTFS volume or different volumes

The only instance where the source folder has Read permissions, The rest are Modify.
As with Moving files/folders to a different NTFS volume, NTFS permissions are inherited from the destination folder and the user becomes the Creator/Owner.

Answer 123

A

ext3 vs ext4

Answer 124

A

EFS (Encrypting File System)

Answer 125

A

Creator Owner Group

Answer 126

A

Destination Host Unreachable

-“Destination Host Unreachable” is one of the usual but unexpected errors that flow out while carrying a network ping test. It is a type of Troubleshooting IP Default Gateway Issues that induce incorrect default gateway, which further leads to halt in a network ping test.

Answer 127

A

Domain

An Active Directory Domain is a collection of objects within a Microsoft Active Directory network. An object can be a single user or a group or it can be a hardware component, such as a computer or printer.

Answer 128

A

system protection tab

Answer 129

A

Default Programs

Answer 130

A

sfc
- System File Checker

Answer 131

A

shutdown /t 30

Answer 132

A

ping -a IPaddress
-a Resolve addresses to hostnames.

Answer 133

A

Eavesdropping

Answer 134

A

man/ –help

Answer 135

A

Windows:
shutdown /s /t 60

macOS/Linux:
sudo shutdown -h (default is 1 minute)
sudo shutdown -h +5 (5 minutes from now)
sudo shutdown -h 00:05 (also works in hh:mm format)

Answer 136

A

Local Group Policy Editor (gpedit.msc)

(LGPO or LocalGPO)

Answer 137

A

bootrec /fixmbr

Answer 138

A

apt-get install (package name)

Answer 139

A

NetworkService

Answer 140

A

Local Security Policy (secpol.msc)

The Local Security Policy snap-in (Secpol.msc) restricts the view of local policy objects to the following policies and features:

*Account Policies
*Local Policies
*Windows Firewall with Advanced Security
*Network List Manager Policies
*Public Key Policies
*Software Restriction Policies
*Application Control Policies
*IP Security Policies on Local Computer
*Advanced Audit Policy Configuration

Policies set locally might be overwritten if the computer is joined to the domain.

The Local Security Policy snap-in is part of the Security Configuration Manager tool set.

Answer 141

A

Screen Sharing

Answer 142

A

format D: /v:E
format Volume [/V:volume]
/V:label -Specifies the volume label.
- Change the name of D volume to E

Answer 143

A

dir *.doc

Answer 144

A

Remote Disc

Answer 145

A

gpedit.msc

Answer 146

A

ps
-Gets all process and there PIDs
kill [PID]
-Ends the PID entered

Answer 147

A

ipconfig /all

Answer 148

A

Active Directory

Answer 149

A

dir /t:c

/t [List time fields] what time fields?
:c [created]

Other time fields:
C Creation
A Last Access
W Last Written

Answer 150

A

Host Firewall

Answer 151

A

netstat -a
-a Displays all connections and listening ports.
{A for ALL}

Answer 152

A

dir /t:a

/t [list by time field] what time field?
:a [last accessed]

C Creation
A Last Access
W Last Written

Answer 153

A

footprinting

Answer 154

A

chkdsk
-Check Disk

/f [fix all errors found]

Answer 155

A

Everyone Group

Answer 156

A

End-of-life System

Answer 157

A

6

7 -Read, Write, and Execute r w x
6 -Read and Write r w -
5 -Read and Execute r - x
4 -Read only r - -
3 -Write and Execute - w x
2 -Write only - w -
1 -Execute only - - x

4 -(letters in) READ
2 -write
1 -eXecute

Read + Write = 6 (rw-)

Answer 158

A

RADIUS (Remote Authentication Dial-In User Service)

{Think - RAAADIUS}

RADIUS is a networking protocol, operating on ports 1812 and 1813, that provides centralized Authentication, Authorization, and Accounting (AAA or Triple A) management for users who connect and use a network service.

Answer 159

A

Windows Registry

Answer 160

A

Where the log files stored

Answer 161

A

Homegroup

Answer 162

A

Boot Camp

Answer 163

A

Factory Recovery Partition

Answer 164

A

Wake on Wireless LAN

Answer 165

A

gpupdate /force

Answer 166

A

System Partition

Answer 167

A

DISM

Microsoft’s Deployment Image Servicing and Management
.WIM Windows Image Format

Answer 168

A

printenv or env command

Answer 169

A

secure boot

Answer 170

A

VFAT (virtual file allocation table)

Uses the same data structures that Windows uses
Supports long (255) file names

Answer 171

A

PNAC
- Port-based network access control

Answer 172

A

CA
- Certificate Authority

Answer 173

A

apple menu items

Answer 174

A

System Preferences -> Trackpad

Answer 175

A

ipconfig /flushdns
netsh interface ip reset resetlog.txt (netsh i i r r)
netsh winsock reset

/flushdns
Reverts the DNS file to default.
netsh interface ip reset resetlog.txt
Rewrites two registry keys that are used by TCP/IP
netsh winsock reset Winsock settings contain your computer’s configuration for Internet connectivity. This reverts them to default.
netsh = Network Shell

Answer 176

A

clean install

Answer 177

A

taskkill /pid

===============================================================================
To end a process by name:
taskkill /IM
Taskkill /IM notepad.exe

Answer 178

A

man/ –help

Answer 179

A

RDP (Remote Desktop Protocol)

Answer 180

A

Local Security Policy (secpol.msc)

The local security policy of a system is a set of information about the security of a local computer. The domains trusted to authenticate logon attempts. Which user accounts may access the system and how. For example, interactively, through a network, or as a service.

Answer 181

A

shutdown -h

Answer 182

A

rstrui.exe
*Restore Utility
ReSToR UtIlity

Answer 183

A

dir /o:e

===============================================================================
Other sort by orders:
N By name (alphabetic) S By size (smallest first)
E By extension (alphabetic) D By date/time (oldest first)
G Group directories first - Prefix to reverse order

Answer 184

A

Windows Memory Diagnostic

Answer 185

A

Event Types

Answer 186

A

popular linux distros

Answer 187

A

compmgmt.msc

Answer 188

A

Scan engine/components

Answer 189

A

Resultant Set of Policies

Answer 190

A

answer file

Answer 191

A

Computer Management (compmgmt.msc)

Computer Management is a Microsoft Windows MMC snap in that was first introduced with Windows XP. It allows access to admin tools, including the Event Viewer, Task Scheduler, local users and groups, performance logs and alerts, Device Manager, Disk Management, and the Services manager.

Answer 192

A

Settings–>Network & Internet–>Status–>Network Reset

Answer 193

A

GPO
- Group Policy Objects

Answer 194

A

dir /o:s

==========================================================
Other Order options:

N By name (alphabetic) S By size (smallest first)
E By extension (alphabetic) D By date/time (oldest first)
G Group directories first - Prefix to reverse order

Answer 195

A

No reply (request timed out)

Answer 196

A

mkfs

{MKFS = Makes (Formats the partition with) the file system}
{FDISK = Creates the partition}

Answer 197

A

Interactive Group

The members of the Interactive group gain access to resources on the computer at which they are physically located or logged on. This group includes all users who log into a computer locally or are logged in via RDP.

Answer 198

A

dir/o:e

==========================================================
sort order:
N By name (alphabetic) S By size (smallest first)
E By extension (alphabetic) D By date/time (oldest first)
G Group directories first - Prefix to reverse order

Answer 199

A

net localgroup Administrators dmartin /add

Net localgroup command is used to manage local user groups on a computer. Using this command, administrators can add local/domain users to groups, delete users from groups, create new groups and delete existing groups.

Answer 200

A

Authenticated Users Group

Answer 201

A

crontab -r

Answer 202

A

Activity Monitor

Answer 203

A

WSUS
-Windows Server Update Services

Answer 204

A

dir Let *.doc /s

/S Displays files in specified directory and all subdirectories.

Answer 205

A

ipconfig /displaydns

/displaydns Displays the contents of the DNS client resolver cache, which includes both entries preloaded from the local Hosts file and any recently obtained resource records for name queries resolved by the computer. The DNS Client service uses this information to resolve frequently queried names quickly, before querying its configured DNS servers.

Common ipconfig switches:
/all
/flushdns
/release
/renew

Answer 206

A

IDV (Integrated Development Environment)

Answer 207

A

VMM
- virtual memory monitor

Answer 208

A

Differential backup

{Incremental Backup - only the files that changed since the last back up.}
{Differential Backup - only the files that changed since the last FULL backup.}
{Full Backup - Complete backup of all files}

Answer 209

A

Windows Settings

Answer 210

A

Workgroup

Answer 211

A

Macro viruses

Answer 212

A

Hibernate Mode

Answer 213

A

Trojan Horse

Answer 214

A

File Attributes

Answer 215

A

EFS
- Encrypting File System -

Answer 216

A

chkdsk C: /r
/r Locates bad sectors and recovers readable information. The disk must be locked. /r includes the functionality of /f, with the additional analysis of physical disk errors.

Answer 217

A

Procedural controls

Answer 218

A

chkdsk [volume] /i /c

/c Use with NTFS only. Does not check cycles within the folder structure, which reduces the amount of time required to run chkdsk.
/i Use with NTFS only. Performs a less vigorous check of index entries, which reduces the amount of time required to run chkdsk.

Answer 219

A

asymmetric encryption

Answer 220

A

bootrec /fixboot

Answer 221

A

nslookup -option host server
- Name Server Lookup
-nslookup is a DNS lookup query utility
==========================================================
Usage:
nslookup [-opt …] [# interactive mode using default server]
nslookup [-opt …] - server [# interactive mode using ‘server’]
nslookup [-opt …] host [# just look up ‘host’ using default server]
nslookup [-opt …] host server [# just look up ‘host’ using ‘server’]

Answer 222

A

Authentication, Authorization, and Accounting
- AAA is a system for tracking user activities on an IP-based network and controlling their access to network resources.
==========================================================
Authentication (Who are you?)
Authorization (Do you have permission?)
Accounting (Keeping track of who comes and goes)

Answer 223

A

DDoS Attack

Answer 224

A

privacy screen

Answer 225

A

PII (Personally Identifiable Information)

*Not to be confused with NPPI… (Non Public Personal Info)

Answer 226

A

devmgmt.msc

==========================================================
Despite the name being Device Manager, the file name is devmgmt.msc

Answer 227

A

Logical controls

Answer 228

A

msinfo32.exe

Answer 229

A

ipconfig /renew AdapterName

Answer 230

A

Boot Configuration Database

Answer 231

A

workgroup

Answer 232

A

regsvr32
-regsvr32 is a command-line tool in Windows that stands for Microsoft Register Server. It’s used to register and unregister Object Linking and Embedding (OLE) controls like.DLL files and ActiveX Control.OCX files

Answer 233

A

UDF (Universal Disk Format)

Answer 234

A

RSSI (Received Signal Strength Indicator)

(RSSI) is an estimated measurement of how good a device can hear, detect and receive signals from any access point or from a specific router.
30db - feet away from transmitter
67db - Minimum signal strength for applications that require very reliable, timely delivery of data packets. (VoIP, Streaming)
70db - Minimum signal strength for reliable packet delivery. (email, Web)
80db - Minimum signal strength for basic connectivity. Packet delivery may be unreliable.
90db - Approaching or drowning in the noise floor. Any functionality is highly unlikely.

Answer 235

A

Spotlight Search

Answer 236

A

format D: /fs:NTFS /x
- /X Force the volume to dismount first if necessary. All opened handles to the volume would no longer be valid.

Answer 237

A

exFAT ( Extended File Allocation Table)

Answer 238

A

Copying files and folders on the same NTFS volume or different volume

Answer 239

A

Swap Partition

Answer 240

A

Mission Control

Answer 241

A

Print Management

Answer 242

A

format D: /q /fs:EXFAT
- /q quick format. Does not scan for bad sectors.
==========================================================
Format Syntax:
FORMAT volume [/FS:file-system] [/V:label] [/Q] [/L[:state]] [/A:size] [/C] [/I:state] [/X] [/P:passes] [/S:state]

Answer 243

A

Differential backup

Answer 244

A

Full Control

Answer 245

A

Diagnostic start up
-When you start the computer in Safe mode, Windows loads only the basic drivers and computer services that you need. The diagnostic startup option enables Windows to determine which basic device drivers and software to load when you start Windows.

Answer 246

A

virtual memory

o Virtual Memory: Allows you to set the amount of storage space for the Page/Swap File which is the RAM overflow that gets written to the HDD. This is managed automatically by default but you can modify this to set the HDD its writes to, Say from a HDD to a SSD and also modify the size of the Page/Swap File.

Answer 247

A

crontab -e

Answer 248

A

mstsc
-Microsoft Terminal Services Connection

Answer 249

A

Normal Startup

Answer 250

A

DDoS Attack

Answer 251

A

HOSTS file location in Linux

Answer 252

A

net user dmartin

Answer 253

A

ping -a (IP address)

Returns the host name of IP address
In certain instances the inverse can be done using:
nslookup (hostname)
Returns the IP address of the host name

Answer 254

A

bootrec /fixboot

Answer 255

A

WWAN (Wireless Wide Area Network)

Answer 256

A

format D: /fs:EXFAT

Answer 257

A

Remote Settings Location

Answer 258

A

net user dmartin Pa$$w0rd /add /fullname: “David Martin” /Logonpasswordchg:yes

Answer 259

A

Multiboot

Answer 260

A

Power Users

Answer 261

A

Security Log

Answer 262

A

System Configuration Utility (msconfig)

Tabs found in msconfig:
General:
Allows you to boot Windows in diagnostic or selective mode when necessary
Boot:
Manage everything related to Windows boot, including Safe mode.
Services:
Enable or disable Windows and other services
Startup:
The startup section is now managed via Task Manager.
Tools:
Launch popular System services from here

Answer 263

A

Drive wiping

Answer 264

A

MAC Flooding

Answer 265

A

APFS

Apple File System
also called Mac OS Extended
Current FS used by Apple
Successor to HFS+ Extended Hierarchical File System

Answer 266

A

shutdown -a (Linux)
shutdown /a (Win)

Answer 267

A

MDM (Mobile Device Management )

Answer 268

A

Shredding, Incineration, Degaussing

Answer 269

A

in-place upgrade

Answer 270

A

GPO (Group Policy Object)
-A Group Policy Object (GPO) is a virtual collection of policy settings.

Answer 271

A

classified

Answer 272

A

boot sector virus

Answer 273

A

Resource Monitor

Answer 274

A

System Preferences –> Trackpad

Answer 275

A

LocalService

Answer 276

A

APFS
- Apple File System

Answer 277

A

Moving files and folders to a different NTFS volume

Answer 278

A

Screen Sharing

Answer 279

A

Rainbow Table Attack

Answer 280

A

WoL Wake on LAN -

Answer 281

A

ipconfig /release AdapterName

Answer 282

A

BitLocker

Answer 283

A

dir *.doc

Answer 284

A

Windows + Ctrl + Shift + B

Answer 285

A

Control Panel

Answer 286

A

Moving files and folders on the same NTFS volume

Answer 287

A

Remote Assistance

Answer 288

A

Local Service

Answer 289

A

UAC (User Account Control)

Answer 290

A

DoS attack (Denial of Service Attack)

Answer 291

A

bootrec /rebuildbcd

Answer 292

A

Reliability Monitor

Answer 293

A

shutdown now, +10

Answer 294

A

chkdsk C: /f
- The intention is to check the Windows drive for damage and (with the /f switch) immediately perform a repair.

CHKDSK finds and fixes errors in the file system of your hard drive, SFC (System File Checker) specifically scans and repairs Windows system files.

Answer 295

A

Replay Attack

Answer 296

A

Incremental backup

Answer 297

A

NFS (Network File System)

Answer 298

A

Program Files

Answer 299

A

BITS
- Background Intelligent Transfer Service

-On Windows 10, Background Intelligent Transfer Service (BITS) is an essential component responsible for assisting the system and applications during foreground or background downloads and uploads between the device and a remote server, without impacting the network experience.

Answer 300

A

PSK
- Pre-Shared Key -

Answer 301

A

Adapter Properties

Answer 302

A

“set” command
-Linux set command is used to set and unset certain flags or settings within the shell environment.

-In Windows, Set Displays, sets, or removes cmd.exe environment variables. If used without parameters, set displays the current environment variable settings.

Answer 303

A

format D: /fs:NTFS /c

Answer 304

A

Standby/Sleep Mode

Answer 305

A

Activation Lock/Device Protection

Answer 306

A

dir /t:w

/t = Time

:w = last witten to

Answer 307

A

linux group commands

Answer 308

A

crontab -e

Answer 309

A

taskkill /f /pid processid

-taskkill
ends one or more tasks or processes.

/f
Specifies that processes be forcefully ended. This parameter is ignored for remote processes; all remote processes are forcefully ended.

/pid [processID]
Specifies the process ID of the process to be terminated.

Answer 310

A

Boot Partition

Answer 311

A

adding a new account in MacOS

Answer 312

A

ACL (Access control list)

ACLs come in different forms:

File System ACL
Active Directory ACL
Network ACL

All perform a similar role, to attach permissions to an object (resource) that specify which users are granted access to that object (resource) and the operations it is allowed to perform.

Answer 313

A

System Log (syslog)

Answer 314

A

Moving files and folders on the same NTFS volume

Answer 315

A

remote settings location

Answer 316

A

VNC (Virtual Network Computing)
- Screen Sharing is based on VNC

Answer 317

A

netstat -b
-b
Displays the executable involved in creating each connection or listening port. In some cases well-known executables host multiple independent components, and in these cases the sequence of components involved in creating the connection or listening port is displayed. In this case the executable name is in [] at the bottom, on top is the component it called, and so forth until TCP/IP was reached.

Answer 318

A

secpol.msc

Answer 319

A

Application Log

Answer 320

A

NAC (Network Access Control)

Network Access Control (NAC) is an approach to computer security that attempts to unify endpoint security technology (such as antivirus, host intrusion prevention, and vulnerability assessment), user or system authentication and network security enforcement.

Answer 321

A

popular linux GUIs

Answer 322

A

shutdown -a
shutdown /a

Answer 323

A

ipconfig /renew AdapterName

Answer 324

A

linux user commands

Answer 325

A

Hibernate mode

Answer 326

A

Moving files and folders to a FAT or FAT32 partition

Answer 327

A

legal and regulatory or compliance controls

Answer 328

A

Windows Memory Diagnostics

Answer 329

A

format D: /a:512

/A:size Overrides the default allocation unit size. Default settings
are strongly recommended for general use.

Answer 330

A

NTFS
- New Technology File System

Answer 331

A

LPL

Windows Logo’d Product List
Sometimes called Windows Compatible Products List

Answer 332

A

gpedit.msc

Answer 333

A

dir Let *.doc

Answer 334

A

Network Group

Answer 335

A

Component Services (COM+)

Answer 336

A

PNAC
- Port-based network access control

Answer 337

A

Resource Monitor

Answer 338

A

Win Key + R

Answer 339

A

Fragmentation

Answer 340

A

shutdown -r

shutdown /r

Answer 341

A

ipconfig /all

Answer 342

A

counter logs

Answer 343

A

Footprinting (also known as reconnaissance)
- generally refers to one of the pre-attack phases; tasks performed before doing the actual attack.

Answer 344

A

Port Scanning
- Port scanning can be blocked by some Firewalls and IDS (Intrusion Detection System).

-A port scanner is an application designed to probe a server or host for open ports. Such an application may be used by administrators to verify security policies of their networks and by attackers to identify network services running on a host and exploit vulnerabilities.

Answer 345

A

Information, Warning, Error, Critical, Successful Audit, Failure Audit

{Whales Eat Cats Instead of Salted Fish}
*Warning
*Error
*Critical
*Information

*Successful Audit
*Failure Audit

Answer 346

A

CHKDSK is designed to check the integrity of disk partition file system, scan and fix detected logical file system errors on the hard disk.

ScanDisk can also check and repair disk file system errors. However, ScanDisk cannot scan NTFS disk drives, but only scan FAT drives like FAT32, FAT16, and FAT12.

Answer 347

A

(System File Checker)

SFC /Scannow helps you scan and repair corruptions in Windows system files.

(Deployment Image Servicing and Management Tool)

DISM can be used to prepare, modify and repair Windows system images.

Answer 348

A

TACACS+
- Terminal Access Controller Access-Control System Plus

Developed by Cisco, Terminal Access Controller Access-Control System (TACACS,) refers to a family of related protocols handling remote authentication and related services for networked access control through a centralized server.

Answer 349

A

Use a cloud backup service

Using a cloud backup service such as Apple iCloud or Google Drive
provides an automated method to constantly backup all user data on the
smartphone. If the phone is lost or stolen, the user can purchase a new
smartphone and restore all of the data from the cloud.

Answer 350

A

Modify the default permissions

Many system administrators configure their accounts to have full access
to the network as their default setting. This means that malicious software
would also have full access if the administrator’s desktop was exploited.
Changing the default permissions to have limited access would also limit
the scope of a Trojan horse exploit.

Answer 351

A

Electrical ground

An electrical ground will divert any electrical faults away from people and
into a copper grounding rod. An electrical ground is a critical part of any
power system and equipment installation.

Answer 352

A

Enable System Protection

Before the malware was removed, System Protection was disabled to
delete all potentially-infected restore points. Once the malware is removed
and the anti-malware process is working again, System Protection can
be re-enabled.

Answer 353

A

mv

The Linux mv (move) command will move a file from one location to
another or move/rename a file from one name to another.

Answer 354

A

Print a test page from the printer console

It would be useful to know if the printer is working properly or if the issue
occurred prior to the output reaching the printer. Printing a test page from
the printer console circumvents the network, operating system, driver, and
application to determine if the printer itself is working properly.

Answer 355

A

The battery capacity is decreased

Smartphone batteries have a lifespan of about 300 to 500 charge cycles,
so smartphone that’s three years old will not have the same capacity as the
battery in a new smartphone.

Answer 356

A

Contact the company’s security officer

A company’s AUP (Acceptable Use Policy) is in place to limit the legal
liability of an organization. If a person in the organization is not following
the terms of the AUP, then the security officer’s team should manage the
results of that action.

Answer 357

A

.vbs

The .vbs extension is used for Microsoft Visual Basic Scripting Edition
scripts. These scripts provide general purpose scripting in Windows, and
are especially common inside of Microsoft Office applications.

Answer 358

A

FOSS
- FOSS (Free and Open-Source) software is distributed without charge and
includes a copy of the source code.

Answer 359

A

chkdsk /f

Answer 360

A

chkdsk /r (Implies /f)

Answer 361

A

net view \ [Server]
net view /[workgroup:]

Answer 362

A

net use [Drive Letter] \[server]

net use R: \fs-main

Answer 363

A

General tab
• Control the startup process

Boot tab
• Control the boot location

Services tab
• Enable and disable Windows services

Startup tab
• Manage which programs start with a Windows login

Tools tab
• Easy access to popular administrative tools

Answer 364

A

Processes
Performance
App History
Startup
Users
Details
Services

Answer 365

A

Windows HomeGroup (Win 7)

Answer 366

A

Windows WorkGroup

Answer 367

A

Windows Domain

Answer 368

A

Home
• The network is trusted

Work
• You can see other devices, but can’t join a HomeGroup

Public
• Airport, coffee shop
• You are invisible

Answer 369

A

Private
• Sharing and connect to devices

Public
• No sharing or connectivity

Answer 370

A

Batch Scripts

Answer 371

A

PowerShell Scripts

Answer 372

A

VBScripts

Answer 373

A

Shell Scripts

Answer 374

A

JavaScript

Answer 375

A

Boot with a pre-installation environment (Windows PE)

Windows Preinstallation Environment (also known as Windows PE and WinPE) is a lightweight version of Windows used for the deployment of PCs, workstations, and servers, or troubleshooting an operating system while it is offline. It is intended to replace MS-DOS boot disks and can be booted via USB flash drive, PXE, iPXE, CD-ROM, or hard disk.

Answer 376

A

Perform a Windows 10 reset
- The Windows 10 reset can quickly remove all
personal files, apps, and setting, and would reset the system to the factory
defaults.

Answer 377

A

Remote wipe
The remote wipe feature of a smartphone or tablet allows the administrator or owner of the device to delete all information on the device from a website or secure app. If the device is lost or stolen, all of the data on the device can be immediately erased and recovery of the data would not be possible unless the admin/owner also uses Cloud backup
A cloud backup allows the smartphone owner to recover data if the phone were lost or stolen, but the cloud backup alone would not provide any additional protection of the smartphone data.

Answer 378

A

Image installation
An image installation can install an operating system, applications, and customized system configurations to multiple devices in a single step. With a pre-built images, a large training room of systems can be updated with a specific configuration very efficiently.

Answer 379

A

Enable Bluetooth
Most tablets use Bluetooth to connect wirelessly to external devices. If Bluetooth isn’t enabled, then a stylus, wireless headphones, and other personal area network (PAN) devices will not be usable.

Answer 380

A

Push-Button Reset (System Reset) (Reset)

Settings > Update & Security > Recovery > Reset this PC > Get started

Answer 381

A

Startup Repair

Open Settings. Click on Update & Security. Click on Recovery. Under the “Advanced startup” section, click the Restart now button

Issues that can be fixed with Startup Repair:

Your Registry becomes corrupted.
There are missing or damaged system and driver files.
You are experiencing Disk metadata corruption (MBR, partition table, and boot sector).
There is any File system metadata corruption.
You are facing installing issues or the drivers are incompatible.
Installation of Windows service packs and patches are coming back with incompatible errors.
Your boot configuration data is corrupt.
Startup Repair can detect bad memory and hard disk.

Answer 382

A

System Restore/System Protection

Answer 383

A

System Image Recovery

Answer 384

A

Users often need assistance when an OS version changes the desktop style or user interface. In Windows
10, the Start Menu and the All Programs submenu have been replaced by the Start Screen. The user can scroll in the Start Screen or use Instant Search to find any app. To use Instant Search, press the Windows key and type the app name.

Answer 385

A

Support for more than 4 GB RAM.

Answer 386

A

Without a domain, accounts must be configured on each computer individually. With over 30 computers to manage at two locations, this would be a substantial task so switching to a domain network, where the accounts can be configured on the server, is likely to save costs in the long term. The BranchCache feature would also allow computers at the second office to minimize bandwidth usage when downloading documents (Enterprise edition only) and updates from the main office. You can suggest either Windows 10
Pro or Windows 10 Enterprise for use on a domain. As Windows moves towards a service model,
subscription-based licensing of the Enterprise edition is becoming the mainstream choice.

Answer 387

A

The issue here is compatibility between different operating systems. Even though both are produced by
Apple, iOS and macOS use different environments so the iOS app cannot be installed directly. Your
company might make a macOS version. Also (and do not worry if you did not include this in your answer),
with the latest version of macOS (Mojave), support for native iOS apps is being provisioned so this might
be something you can offer in the future.

Answer 388

A

The other main choice is one of the distributions of Linux. A company might also use some sort of UNIX.
Finally, Chrome OS is installed on Chromebox PCs. These are often used by educational institutions and
businesses who rely primarily on web applications, rather than locally installed desktop software.

Answer 389

A

This is an issue with update limitations. Android is quite a fragmented market, and customers must
depend on the handset vendor to implement OS updates for a particular model. The customer can only
check the handset vendor’s website or helpline to find out if a version update will ever be supported for
that model.

Answer 390

A

User-level features like this are configured via the Control Panel in Windows 7. In
Windows 8 and Windows 10, there are Ease of Access settings in both the Control
Panel and in the PC Settings/Windows Settings app but don’t worry if you just
answered “Settings app.” It is also worth remembering that you can use Instant
Search to return a list of user configuration options quickly.

Answer 391

A

There are several ways to disable User Account Control (UAC) but the simplest is via
the User Accounts applet in Control Panel. You can also just search for “UAC” to
open the dialog box. You should advise the customer that UAC is an important
security feature and that by disabling it, his computer will be more vulnerable to
malware.

Answer 392

A

True—the contents do vary from version to version though.

Answer 393

A

A Microsoft Management Console (MMC) is used for Windows administration.
Running mmc opens an empty console. You would do this to create a custom toolkit
of the snap-ins used to configure advanced features of Windows. You can save the
custom console for future use.

Answer 394

A

Open a new command prompt window with sufficient privileges. You can right-click
the Command Prompt icon and select Run as administrator or press Ctrl+Shift
+Enter with the icon selected.

Answer 395

A

To specify a delay between running the command and shutdown starting. You might
do this to give users a chance to save work or to ensure that a computer is restarted
overnight.

Answer 396

A

This tool allows you to make manual changes to the Window Registry database. You
can also use it to export and back up portions of the registry. You might also import
registry files to apply a suggested fix.

Answer 397

A

The Windows folder (or system root) contains the files used to run Windows itself.
Program Files contains the executable and settings files installed by desktop
applications. You might also mention that the Users folder contains user settings
files, user-specific application data, and user-generated data files. There are also
some additional hidden folders (notably ProgramData) but do not worry if you have
not included these.

Answer 398

A

False—this is one of the main reasons for using libraries. They can consolidate a “view” of files
stored in different locations on different file systems. This includes shared folders on network
servers and removable drives.

Answer 399

A

The user does not have “Write” or “Modify” permission to that folder. If there is no configuration
issue, you should advise the user about the storage locations permitted for user-generated files. If
there were a configuration issue, you would investigate why the user had not been granted the
correct permissions for the target folder.

Answer 400

A

The user must first show file extensions, using the View tab in the Folder Options applet. In
Windows 8/10, extensions can be shown through a check box on the View menu ribbon. The user
can then right-click the file and select Rename or press F2 and overtype the extension part.

Answer 401

A

Change the directory focus to the parent directory (equivalent of Up One Folder).

Answer 402

A

The robocopy command offers more options than xcopy so will usually be the better
choice. The copy command is quite basic and probably not suitable.

Answer 403

A

Three—each partition can use a different file system.

Answer 404

A

The system partition contains the boot files; the boot partition contains the system root (OS files).

Answer 405

A

GPT-style partitioning.

Answer 406

A

False—assigning a drive letter is common practice, but a partition can be mounted to any point in
the file system.

Answer 407

A

The disk was configured as dynamic under a different computer then installed in this one. You
need to import the disk to make it usable.

Answer 408

A

The customer is right to consider the risk and take steps to mitigate it. One option is
to make a backup of the files so that they are always stored on at least two devices.
You could also suggest configuring the RAID-like functionality available with the
Storage Spaces feature of Windows 10. Note that you cannot recommend Dynamic
Disks as that is not available with the Home edition. Using both Storage Spaces and
an offsite backup method, such as copying to a cloud drive, will give the best
protection.

Answer 409

A

Browse the graphics adapter vendor’s website and use the card’s model number in the driver
search tool to look for the latest version. Compare the version information for the driver on the
website to the installed version (use Device Manager to check the installed version number). If
the website driver is newer, download and run the setup file to install and configure it. You should
ensure that the setup file is digitally signed by the vendor. If the driver is only provided as a
compressed archive, extract the driver files then use the Update Driver button in Device
Manager to select it for use with the adapter.

Answer 410

A

Open Device Manager from the WinX menu, Instant Search, or the Computer Management
console. Expand Keyboards then right-click the device and select Properties. On the Driver tab,
select Rollback Driver.

Answer 411

A

There is an automated Windows Troubleshooting tool for diagnosing and correcting problems
with audio playback. You should advise the customer to open the Troubleshooting applet in
Control Panel and select the troubleshooter for audio playback.

Answer 412

A

The icon indicates that the device has been disabled. It could be that there was a fault or there
may be a network configuration or security reason for disabling the adapter. In this sort of
situation, use incident logs and device documentation to establish the reason behind the
configuration change.

Answer 413

A

When a computer goes into a power saving mode, it will either maintain a small amount of power
to the memory modules or write the contents of memory to a hibernation file on disk.
Consequently, the user should be able to start the laptop again and the desktop will resume with
the open file still there. You should advise the customer to save changes to files regularly
however.

Answer 414

A

A version of ext (ext4 or ext3).

Answer 415

A

Either | more or | less.

Answer 416

A

rm -r /home/fred/junk

Answer 417

A

mv names.doc /mnt/usb

Answer 418

A

Read-only.

Answer 419

A

/etc/passwd.

Answer 420

A

shutdown -h 21:00

Answer 421

A

In the Status menu on the Menu bar, in the top-right of the screen.

Answer 422

A

Command+Spacebar.

Answer 423

A

Under System Preferences→Trackpad.

Answer 424

A

Mission Control.

Answer 425

A

The Finder.

Answer 426

A

Boot Camp Assistant lets you create a new partition and install a fresh version of Windows.

Answer 427

A

Spinning wait cursor

Answer 428

A

When using UEFI system firmware, the EFI system partition should be formatted with a FAT file
system. Another scenario is when you are configuring a multiboot system with an older version of
Windows or with Linux.

Answer 429

A

Network adapter/NIC and system firmware support.

Answer 430

A

You can install images larger than will fit on a DVD. This might be useful if you want to install
multiple software applications at the same time as Windows itself.

Answer 431

A

A partition containing a backup of the system configuration at a particular point in time. These are
often used on OEM PCs to enable the PC to be restored to its factory settings.

Answer 432

A

An answer file containing the setup configuration.

Answer 433

A

Cloning an installation from one PC to another.

Answer 434

A

Use an answer file with the appropriate settings, and ensure that a domain controller is available
to the PC during setup. You cannot join a domain during attended setup (though you could
immediately after setup finishes).

Answer 435

A

In the GUI tool, simply do not select an option to fix errors automatically. Alternatively, at a
command prompt, run chkdsk without any switches.

Answer 436

A

Task Scheduler

Answer 437

A

Firmware updates.

Answer 438

A

Open the Mac App Store and select the Updates button.

Answer 439

A

File History. You could also consider OneDrive as a type of backup solution.

Answer 440

A

It only supports backing up to local drives or removable media, not to network
shares.

Answer 441

A

Time Machine.

Answer 442

A

crontab -l

Answer 443

A

Open the application’s property sheet and select the Compatibility tab to select the appropriate
mode. You can also run the Program Compatibility Troubleshooter.

Answer 444

A

It shows user-initiated processes and resource utilization.

Answer 445

A

Open System properties, select Change settings, then select the Remote tab and check the
Allow remote connections to this computer option on the Remote tab. You can also specify
the user accounts permitted to connect to the server.

Answer 446

A

System Protection restore points are stored on the local disk and so would not allow recovery
from the failure, loss, or destruction of the disk. System Protection is designed only to allow the
rollback of configuration changes.

Answer 447

A

The pagefile will not become fragmented (assuming you defragmented the disk before doing
this).

Answer 448

A

%SystemRoot%\System32\Winevt\Logs\System.evtx

Answer 449

A

General, Boot, Services, Startup, and Tools. In Windows 8/10, the functionality of
the Startup tab has moved to Task Manager.

Answer 450

A

Defragment the hard disk, and ensure there is sufficient free space. Verify that the
power management configuration is not throttling components such as the CPU or
GPU. You can also use performance monitoring to check device utilization and
determine whether upgrades are required.

Answer 451

A

Check the event log for more information.

Answer 452

A

Using Safe Mode boots with a minimal set of drivers and services. If Safe Mode
boot is successful but normal boot is not, the issue is likely to be with driver
software. Re-enable each driver in turn to identify the culprit. If the problem also
manifests in Safe Mode, it is more likely to have an underlying hardware cause.

Answer 453

A

Run a Memory Diagnostic. This tests each RAM cell and so should uncover any fault.

Answer 454

A

GPT

The GPT (GUID Partition Table) partition style provides for very large
partition sizes that would easily allow a single partition of 4 terabytes.

Answer 455

A

WPA2

Enabling WPA2 (Wi-Fi Protected Access version 2) would require a
password to connect and would prevent customers from connecting to the
company wireless network.

Answer 456

A

Disable Bluetooth and cellular connections
Close apps that work in the background

The two options that would have the largest power savings would disable
wireless Bluetooth radios and close applications that use CPU power.

Answer 457

A

Schedule periodic anti-virus scans

After removing malware and before educating the end-user, it’s important
to configure the system to find and prevent any future infections.

Answer 458

A

Disconnect from all power sources

When working inside of a computer, it’s always important to disconnect
the system from the main power source. This should always be the first and
most important step when working on the inside of a device.

Answer 459

A

Install the application to a network share

The installed application files can be much larger than the installation
utility, so using a network share with a larger available storage space can be
a good alternative until free space is available on the local computer.

Brainscape's Knowledge GenomeTM

220-1002 Flashcards

Pass the CompTIA A+ 220-1002 test with complete mastery.

Brainscape's Knowledge Genome^TM