Udemy Test 2

Question 1

Which of the following is known for providing quick and deep scanning?

Answer 1

Advanced Disk Recovery

Question 2

What is not one of the three tiers of log management infrastructure.

Answer 2

Log Protection

Question 3

In Windows Server 2012 (IIS), log files are stored at:

Answer 3

%SystemDrive%\inetpub\Logs\LogFiles

Question 4

John wants to root an Apple phone. Which tool should he use?

Answer 4

RedSn0w

Question 5

Simple, sequential, flat files of a data set is called:

Answer 5

Raw Format

Question 6

David needs to recover lost files from a USB flash drive. Which tool will help him?

Answer 6

DiskDigger

Question 7

For Windows 2000, deleted files are found in:

Answer 7

C:\Recycler

Question 8

This Microsoft Exchange archive data file contains message headers, message text, and standard attachments.

Answer 8

PRIV.EDB

Question 9

Which command can be used to look for suspicious connections and the process ID.

Answer 9

netstat-ano

Question 10

POP3 runs on port:

Answer 10

Port 110

Question 11

Disk Editor tools for file headers include all of the following EXCEPT:

Answer 11

Windows Hex Editor

Question 12

This tool can be used to display details about GPT partition tables in Mac OS.

Answer 12

Disk Utility

Question 13

This tool can be used to restore emails.

Answer 13

Data Recovery Pro

Question 14

For Windows Vista, 7, 8, and 10, deleted files are found in:

Answer 14

C:$Recycle.Bin

Question 15

What contains streaming MIME (videos, audio, etc…) content?

Answer 15

PRIV.STM

Question 16

What is a database file that stores public folder hierarchies.

Answer 16

PUB.EDB

Question 17

What port does SMTP run on?

Answer 17

25

Question 18

What port does IMAP run on?

Answer 18

143

Question 19

What tool can be used to recover encrypted files and restore them?

Answer 19

Quick Recovery

Question 20

What tool can recover lost MAC files?

Answer 20

File Savage

Question 21

Sara wants to perform a deep scan that scans the entire system. She should use:

Answer 21

Advanced Dick Recovery

Question 22

What tool can be used to recover RAIDs?

Answer 22

Total Recall

Question 23

This is a tool for Mac OS.

Answer 23

Disk Utility

Question 24

HFS+ uses:

Answer 24

b-tree structure to store data

Question 25

In this stage of the Linux boot process, information is retrieved from the CMOS chip.

Answer 25

BIOS

Question 26

This can be used to dump password hashes from the SAM file.

Answer 26

PWdump7

Question 27

Data Rescue 4 is:

Answer 27

A file recovery tool used for MAC

Question 28

In FAT, the first letter of the deleted file name is replaced with:

Answer 28

E5H

Question 29

Jason is an investigator with over 10 years of experience. He needs to find a tool that will help him recover a RAID drive. Which tool can help him?

Answer 29

Total Recall

Question 30

This approach monitors a computer and user's behavior for anomalies.

Answer 30

Role-based

Question 31

Jennifer needs to repair and recover bad disk sectors. Which tool should she use?

Answer 31

Quick Recovery

Question 32

In Windows 98 and earlier, deleted files are named in Dxy.ext format. What does the x stand for?

Answer 32

Drive

Question 33

Lisa is investigating a phishing email attack at a company. She knows the first step in the email investigation process is:

Answer 33

obtaining a search warrant