Udemy Test 6 Flashcards
This is the default folder path for used for syncing files in Dropbox.
C:\Users\Dropbox
This is a type of anti-forensic technique with malware.
packing
This is an IDS:
Snort
You can detect Trojans with which of the following?
Capsa
You can use this to see the last access time change for Windows 10.
fsutil
These store information of files synced to the cloud using Dropbox.
filechache.dbx and config.dbx
A small law firm suspects an incident, where there was potential criminal action, and wants to investigate themselves. Why should they avoid doing so? (choose the best answer)
They may alter the timestamp
What file type is this? FF D8 FF E1
JPEG
These files are located within an instance (n) of Dropbox folder in AppData of the user’s profile.
Configuration
Google Drive Configuration files are stored at this path:
C:\Users\AppData\Local\Google Drive\User
Google Drive Configuration files are stored at this path:
C:\Users\AppData\Local\Google\Drive\User_default
Dropbox Client path:
C:\Program Files(x86)\Dropbox\Client
The investigator is looking to detect something after the incident has ended
Post-mortam Analysis
When a FAT file is deleted, what is placed at the front?
E5H
This has journaling:
NTFS
This contains the manufacturer’s information (choose the best answer).
ICCID
This contains the manufacturer’s information (choose the best answer).
ESN
The $I file contains all of the following EXCEPT:
The original File Size
The $I file contains all of the following EXCEPT:
The length of the file as 344 bytes long
This verifies the file system integrity of a volume, fixes logical file system errors, and is similar to the fsck command in Unix.
CHKDSK
A hacker commits a DDoS attack against a specific IP address of a company’s Web server. This is considered what type of attack?
Network Attack
You can view DBX files in:
MS Outlook Express
UTC stands for:
Coordinated Universal Time
This can do data acquisition and duplication.
Drivespy
