Module 5

Question 1

Three types of users

Answer 1

Administrator
Guest
Standard User
Power User

Question 2

System32 folder does what

Answer 2

contains windows system directory.

required to running everything….

Question 3

Windows folder does what

Answer 3

contains windows software

Question 4

single sign-on

Answer 4

Logging into other network resources when you log into the network so you aren’t prompted each time you attempt to access a network resource

Question 5

physical security efforts

Answer 5

locked door
shredding
id badges
rfid badge
biometrics
retinal scans
privacy filter

Question 6

Tailgating

Answer 6

Sneaking in as folks leave

Question 7

physical destruction options

Answer 7

shredder

drill for HD

Question 8

EMI

Answer 8

Electromagnetic Interference
Common for network interference
Not the same as ESD. Does not destroy HD data

Question 9

ESD

Answer 9

Electrostatic discharge.

Could destroy an HD

Question 10

degaussing tool

Answer 10

Degaussing involves applying a strong magnetic field to initialize the media (this is also referred
to as disk wiping). This process helps ensure that information doesn’t fall into the wrong hands.

Question 11

Standard format

Answer 11

File allocation tables have been told the info is gone, and sector is free to write to. But the info is still there.

This as opposed to low level format.

Question 12

Low Level Format

Answer 12

Best perfect way to delete data on a hard drive. Superior to standard format

Question 13

Windows Defender

Answer 13

Built-in tool that looks for Malware behind the scenes.
Looks for specific signatures of files.
Not very powerful. Does not protect email, for example

Question 14

Virus

Answer 14

Attaches itself to a program or a file that enables it to spread from computer to computer.

Almost all viruses are attached to an executable file, meaning someone must open/run/click on it for it to run and travel.

Question 15

Worm

Answer 15

Can travel without human intervention.

Consumes memory, network bandwidth, etc.

Question 16

Trojan Horse

Answer 16

programs that enter a system or network under the guise of another program.

A Trojan horse may be included as an attachment or as part of an installation program. The Trojan horse can create a back door or replace a valid program during installation

Question 17

Evidence of Malware

Answer 17

Decreased system performance
Disappearance of data
Data modification
Failure to launch OS or software
High network activity
Increase in file size
Coworkers report suspicious behavior

Question 18

Shoulder Rufing

Answer 18

Watching over someone’s shoulders to access info…

Question 19

What windows account should you probably disable

Answer 19

Guest

Question 20

SOHO

Answer 20

small office / home office

Question 21

Some things to do to secure a SOHO

Answer 21

Change default user names / passwords
Change SSID
Set up wireless encryption
Disable SSID broadcast
Enable MAC filtering
Antenna and Access Point placement to limit access
Assign static IP addresses
Disable ports

Question 22

Dumpster diving

Answer 22

Companies normally generate a huge amount of paper, most of which eventually
winds up in dumpsters or recycle bins. Dumpsters may contain information that is highly
sensitive in nature (such as a password a user has written on a piece of paper because they
haven’t memorized it yet).

Question 23

Rootkits

Answer 23

Rootkits are software
programs that have the ability to hide certain things from the operating system; they do so
by obtaining (and retaining) administrative-level access.

Question 24

vishing

Answer 24

combine phishing with Voice over IP (VoIP)
rise in VoIP now makes it possible for someone to call you
from almost anywhere in the world, without the worry of tracing/caller ID/and other features
of the land line, and pretend to be someone they are not in order to get data from you.

Question 25

spear phishing

Answer 25

attacker uses information that the tar-
get would be less likely to question because it appears to be coming from a trusted source. (An email from the boss, for example)

Question 26

whaling

Answer 26

phishing, or spear phishing, for so-called “big” users,

Question 27

Steps of troubleshooting theory

Answer 27

Identify the problem
Gathering Information
Establishing a Theory
Testing Solutions
Establishing a Plan of Action
Verifying Functionality
Documenting the Work

Question 28

POST steps

Answer 28

checking the CPU
checking the RAM
checking for the presence of a video card
verifying basic hardware functionality.