It Basics

Question 1

Microsoft update varieties

Definition update

Answer 1

A widely released and frequent software update that contains additions to a products definition database. Definition databases are often used to detect objects that have specific attributes such as malicious code.

Question 2

Update varieties

Critical update

Answer 2

A widely released fix for a specific problem that addresses a critical non security related bug

Question 3

Microsoft update varieties

Driver

Answer 3

Software that controls input/output

Question 4

Virus scanners

Answer 4

• keep up to date

- most antivirus softwares allows online updating of the virus definition files

Question 5

Spyware

Answer 5

• software that covertly gathers user information through the users internet connection without their knowledge
• can gather emails/ passwords using things like keyloggers or screen watching software

Question 6

Hoax

Answer 6

• is not a virus at all but a message warning you about the threat of a virus
• intended to get you to install yourself

Question 7

Trojan horse

Answer 7

• programs that pretend to be innocent programs

Trojan horses do not replicate themselves but are often used as droppers of viruses

• sometimes they don’t try to spend anything but attempt to destroy your computer

Question 8

Worms

Answer 8

• program that replicates itself over a computer network
• do not attach to another program
• subclass of virus
• depending on the form, a worm may be able to propogate without any action on the victims part

Question 9

Virus

Answer 9

• purpose to invade computer (make a copy of itself)
• maybe a program of parts of computer instructions
• not necessarily destructive but may carry a payload
• can piggy back on another process or document to be executed
• a trigger can be used to activate, could be a date or a program action

Question 10

Virus precautions

Answer 10

• never trust any attachments
• don’t depend on your virus scanner to do all the work
• save file to HD open with notepad look at first two letter and if they are MZ or PE be very careful

Question 11

Optional updates

Answer 11

Can include updates, drivers, or new software from Microsoft to enhance experience

• can only install manually

Question 12

Recommended update

Answer 12

Addresses non critical problems or helps enhance your computing. Not a critical fix but can offer meaningful improvements

• can be installed automatically

Question 13

Important updates

Answer 13

Offer significant benefits, such as improved security privacy and reliability. They should be installed as they become available

• can be installed automatically

Question 14

User update options selections

Answer 14

• important updates
• recommended updates
• optional updates

Question 15

Microsoft update varieties

• feature pack

Answer 15

New product functionality that is first distributed outside the context of a product release and that is typically included in the next full product release

Question 16

Microsoft update varieties

• security update

Answer 16

A widely released fix for a product specific, security related vulnerability. These are rated by their severity, severity rating is indicated in the Microsoft security bulletin as critical, important, moderate, low

Question 17

Microsoft update varieties

• tool

Answer 17

A utility of feature that helps complete a task or set of tasks

Question 18

What are windows updates

Answer 18

Updates are additions to software that can help prevent or fix problems, improve how your computer works, or enhance your computing experience

Question 19

Fall back up

Answer 19

All data on all servers are copied to a storage medium

Question 20

Incremental backup

Answer 20

Only data that has changed since the last back up is copied to a storage medium

Question 21

Back up strategies

Answer 21

• hot or cold sites - look up
• sub contract work
• paper based work

Question 22

Differential backup

Answer 22

Only data that has changed since the last full back up are copied to a storage medium, and information is the marked for subsequent back up

Question 23

Disaster recovery

Answer 23

• process of restoring critical functionality and data after enterprise wide outage that affects more than a single system or limited group
• must take into account of the possible extremes rather than relatively minor situations

Question 24

Businesses Continuity planning

Answer 24

A plan as to how our business will continue to operate during the time it takes to recover from a loss ( of data or physical equipment)

Question 25

What is a system restore

Answer 25

• introduced in Microsoft so
• services running in the background
• takes a snapshot of necessary system settings, files, folders and registry keys to keep a point in time reference known as a checkpoint

Question 26

How does a system restore work

Answer 26

• it is enabled by default
• if you disable it you will lose all earlier checkpoints when reenabled a new check point is created
• by default uses 3-5% of available disk space for each drive that it is set to monitor , up to a maximum of 10 GB
• system restore automatically deletes restore points after ninety dates
• if the computer is left powered on it automatically creates a checkpoint every 24 hours

Question 27

Archive bit

Answer 27

• a Microsoft file attribute
• it’s state indicates wether or not the file has been backed up
• when a file is created or modified the archive bit set
• when a back up is done the bit is cleared
• archive bit is used for incremental back ups
• when a file that has been cleared is moved into a new file system that bit is reported to set

Question 28

Windows registry system

Answer 28

• stored in files that have a binary format
• are always locked by the operating system
• not possible to delete the registry database files of the same operating system when it is running

Question 29

Registry is compromised of two major categories

Answer 29

Hkey_local_machine (HKLM)

hkey_current_user (HKCU)

Question 30

hKCU Hkey_current)user

Answer 30

• stores user and application settings

- supporting files are e users profile folder. The primary file is named “nursery.dat”

Question 31

HKLM hkey_local_machine

Answer 31

Handles the hardware information

• supporting files are located in the hidden windows/system32/config folder

Question 32

Values stored under keys and sub keys

Answer 32

• some entries need to be a binary type
• other key values need to be a string value to display a name, folder location
• others need to store operating system variables

Question 33

The registry lacks a true Boolean type, a 32 bit numeric type is used in its value and a value of 1 or 0 can th;en be equated to and or not #

Answer 33

• every key or sub key must contain at least one value, known as the default value

Question 34

Hives

- grouping of registry information

Answer 34

• a hive is a group of keys, sub keys and values in the registry that has a set of supporting files containing back ups

Question 35

Registry hive file

Answer 35

• format can add and remove keys, sub keys and values

Question 36

The registration file

Answer 36

Format can only add or change keys, sub keys and values

Question 37

System restore check pint for any of the following

Answer 37

• you install a windows update or patch
• you install an unassigned device driver
• you install an application that uses an installed that is restore aware
• you restore a prior configuration with system restore
• you restore data from a backup set created with windows not backup program
• you manually create a checkpoint using system restore

Question 38

Information systems

Answer 38

• executive info
• decision support
• management info
• transaction processing systems

Question 39

FCS (frame check sequence)

Answer 39

• refers to the extra code added to a frame in a communications protocol
• the detection does not imply recovery
• just discards the frame
• TCP can notice the data loss and initiate error recovery

Question 40

CSMA/CD

carrier sense multiple access with collision detection

Answer 40

Like using the phone live, only one person can make a phone call

CSMA/CD listens for anything on the wire and sends out a message over the wire. A collision is when two messages are sent out at the same time it creates a voltage spike

Question 41

ARP

Address resolution protocol

Answer 41

Used by the internet protocol

It maps IP network addresses to the hardware addresses used by the data link protocol

Question 42

MAC

Media access control address

Answer 42

The two ports of the MAC address is the oui and nics

(oui}) organizationally unique identifier

(nics) network interface controller specific

Question 43

ICANN

Internet corporation for assigned names and numbers

Answer 43

• domain name system
• internet protocol address allocation
• the protocol parameter registry
• root server systems
• generic top level domain name systems management
• country code top level domain name DNS
• time zone database management

Question 44

Host file

Answer 44

The host file is used to. Map domain names to IP addresses and can be used as an alternative to DNS

Question 45

FQDN

Fully qualified domain name

Answer 45

Is a complete domain name for a computer or host on the internet

Question 46

Recursive dns queries

Answer 46

Recursive dns queries occur when a computer requests a DNS form the DNS servers and if it doesn’t know it goes tot he root hints server which is the iterative query

Question 47

MTU (maximum transmission unit)

ICMP (internet control message protocol)

Answer 47

All point to point connections have an MTU size of 28 bytes of this number is reserved for IP/ICMP over head, so the effective size here is 1472

Com -f -l 1472

-f marks the packets that should not be fragmented in the ping (-L 1472 sets the size of the packets

Question 48

Http v1.1

Answer 48

Introduced persistent connections, pipelining, and headers to the protocol