MOD D05: Windows File Sys Logging Flashcards
What does FAT stand for?
File Allocation Table
What is at the end of the File Allocation Table?
EOF
(End of File)
What devices are File Allocation Table systems still widely used on?
USB Memory Sticks
(slide answer: till widely used on USB memory sticks or memory cards for file storage.)
How many sectors does a FAT file system have?
- 16
- 64
- 128
- 4
- 1
- 32
- 8
4
What part of FAT contains the startup code?
Boot Sector
What is the maximum amount of clusters that FAT32 allows?
268,435,456
How many bits is each FAT12 entry?
12
How many bits is each FAT32 entry for addressing clusters?
28
What is the maximum volume size of FAT 32?
2 TB
What is the maximum volume size of FAT12?
- 32 MB
- 16 MB
- 16 Mb
- 64 Mb
- 8 MB
16 MB
What is the FAT terminated by?
- 55BB
- End of file marker / EOF marker
- B5B5
- FI
- done
End of file marker / EOF marker
When was NTFS Introduced?
- 1993
- 1990
- 2000
- 1984
- 2001
- 2004
- 8675309
1993
What was the max file size for NTFS when it was released?
- 48 TB
- 30 TB
- 42 TB
- 32 TB
- 4 GB
- 16 TB
- 4 PB
16 TB
Does FAT32 allow for compression?
NO
Which file system works with Win 98?
- NAFS
- NTFS
- FAT32
- EXT4
- EXT3
- EXT2
FAT32
What does MFT stand for?
Master File Table
If you want to see what type of file system you are running, what is the windows command line syntax?
fsutil fsinfo volumeinfo C:
What is the max file size in NTFS?
- 100 TB
- 60 GB
- 32 GB
- 256 TB
- 32 TB
- 16 PB
- 512 Mb
- 64 PT
- 128 TB
- 512
- 256
256 TB
Can an administrator clear the windows logs
[Yes / No]
Yes
Where can you view event logs? (GUI)
- System Accountant
- C:\Windows\System32
- Windows Event Viewer
- auditpol
Windows Event Viewer
Third party applications can integrate into Windows logging.
[True / False]
True
If a driver fails, which log records this failure?
- Application
- System
- Special
- Security
System
A Success audit is a type of log.
[True / False]
True
A failed login attempt would be recorded in which log?
- Application
- System
- Special
- Security
Security
Where are the event logs stored on windows?
- SYSTEM
- C:\windows\log
- C:\windows\system32
- C:\windows\system32\winevt\logs
- HKLM:\SAM
- $C
C:\windows\system32\winevt\logs
What helps when sifting through logs?
- powershell
- systeminfo
- ascil
- Log manager
- notepad
- sysanalyzer
Log manager
What is the number that is associated with each log called?
Event ID
If you wanted your computer to run a disk cleanup once every two weeks, what would allow you to set that up?
Task Scheduler
What partition in Windows 10 contains the files that start the operating system?
Active Primary
What file table does NTFS use for managing access to files in Windows 10?
MFT
What option in NTFS supports reducing the amount of space needed to store a file?
Compress / Compression
What process places a file system on a disk by creating the root of the directory structure and the file system?
Formatting
What is the name at the end of a file called that indicates the type of data contained in the program?
File extension
Which logs can only admin typically see?
- Application
- System
- Special
- Security
Security
What is a way that the OS records important actions?
logging
What are records of events that happen in your computer, either by a person or by a running process? They help you track what happened and troubleshoot problems.
logs
What windows command allows you to display a list of folder’s files?
- Dir
- list
- ls
- view
- pwd
Dir
How do you clear the screen in windows command line?
- view no more
- exit
- clear
- avada kedavra
- cls
cls
In Powershell, what command allows you to get events and event logs?
Get-EventLog
What Powershell command allows you to delete a log?
Remove-eventlog
What is the smallest unit that can be accessed on a storage device like an HDD or SSD?
Sector
