Unit 2 - Practice Quiz

CSC104 50 Questions
0 Correct 0 Wrong 50 Left
0/50

1 Which Windows component is responsible for storing local user account passwords in a hashed format?

A. Winlogon.exe
B. pagefile.sys
C. NTDS.dit
D. SAM (Security Account Manager)

2 In the context of Windows permissions, what happens when a user has Modify allow permissions via NTFS but Read allow permissions via the Network Share?

A. The user has Full Control.
B. The user can only Read files.
C. The user is denied access completely.
D. The user can modify files because NTFS takes precedence.

3 Which command-line tool is primarily used to display the current TCP/IP network configuration values, including the IP address and default gateway?

A. ipconfig
B. nslookup
C. tracert
D. netstat

4 What is the default TCP port number used by the Remote Desktop Protocol (RDP)?

A. 443
B. 8080
C. 3389
D. 22

5 Which Windows feature helps prevent unauthorized changes to the operating system by prompting the user for permission or an administrator password?

A. BitLocker
B. User Account Control (UAC)
C. Windows Defender
D. Windows Firewall

6 In the Windows Event Viewer, which specific log would record a successful or failed user logon attempt?

A. System Log
B. Security Log
C. Application Log
D. Setup Log

7 Which command is used to display the active TCP connections, ports on which the computer is listening, and Ethernet statistics?

A. ipconfig
B. whoami
C. ping
D. netstat

8 What symbol is appended to the end of a share name to make it a 'hidden' share in Windows?

A. !
B. %
C. $
D. #

9 Which protocol is primarily used by Windows for file and printer sharing across a local network?

A. SMB (Server Message Block)
B. SMTP
C. HTTP
D. FTP

10 What is the specific Windows Event ID associated with a successful logon?

A. 4624
B. 4625
C. 1102
D. 4672

11 Which Sysinternals tool allows a user to execute processes on other systems, often used for remote administration?

A. ProcMon
B. Autoruns
C. TCPView
D. PsExec

12 If a Windows client is configured for DHCP but cannot contact the DHCP server, it assigns itself an APIPA address in which range?

A.
B.
C.
D.

13 Which command-line tool outputs the current user's security identifiers (SIDs) and privileges?

A. net user
B. whoami /all
C. get-acl
D. sysinfo

14 Which Windows administrative tool allows for the centralized management of various system components using 'snap-ins'?

A. MMC (Microsoft Management Console)
B. Registry Editor
C. Control Panel
D. Task Manager

15 Which file system permission allows a user to take ownership of a file or folder?

A. List Folder Contents
B. Full Control
C. Write
D. Read

16 What is the primary function of the Domain Name System (DNS)?

A. Blocking malicious network packets
B. Resolving hostnames to IP addresses
C. Assigning IP addresses to clients
D. Encrypting network traffic

17 Which command is used to modify user accounts, such as adding a new user or changing a password, via the command line?

A. net share
B. net group
C. net use
D. net user

18 What is the name of the built-in antivirus and anti-malware component in modern Windows operating systems?

A. SmartScreen
B. Windows Defender
C. Windows Firewall
D. BitLocker

19 In the context of Windows Groups, which built-in group has complete and unrestricted access to the computer?

A. Backup Operators
B. Power Users
C. Users
D. Administrators

20 Which command allows you to view the list of currently running processes and their Process IDs (PIDs) in the command prompt?

A. tasklist
B. ps
C. processview
D. runlist

21 What does the command ipconfig /flushdns do?

A. Resets the IP address
B. Clears the DNS resolver cache
C. Restarts the DNS server service
D. Renews the DHCP lease

22 Which file path represents the default location for the local hosts file in Windows?

A. C:\Windows\hosts
B. C:\Users\Default\hosts
C. C:\Windows\System32\drivers\etc\hosts
D. C:\Windows\System32\config\hosts

23 Which Authentication protocol is the default for computers in an Active Directory domain and relies on tickets?

A. RADIUS
B. Kerberos
C. LDAP
D. NTLM

24 What is the executable name for the Windows Group Policy Editor?

A. gpedit.msc
B. regedit.exe
C. secpol.msc
D. services.msc

25 When configuring the Windows Firewall, what is the difference between Inbound and Outbound rules?

A. Inbound rules control traffic leaving the PC; Outbound rules control traffic entering.
B. There is no difference.
C. Inbound rules control traffic entering the PC; Outbound rules control traffic leaving.
D. Inbound rules apply to servers; Outbound rules apply to clients.

26 Which command allows you to map a network share to a local drive letter (e.g., Z:)?

A. mount
B. net share
C. net map
D. net use

27 What is the standard port number for SMB (Server Message Block) over TCP?

A. 139
B. 135
C. 445
D. 53

28 Which Windows service management console command is used to open the Services window?

A. compmgmt.msc
B. eventvwr
C. taskmgr
D. services.msc

29 In NTFS permissions, what is the effect of the 'Deny' permission?

A. It only applies to the Guest account.
B. It only applies if no 'Allow' permission exists.
C. It is overridden by an 'Allow' permission.
D. It takes precedence over 'Allow' permissions.

30 Which legacy Windows protocol allows applications on separate computers to communicate over a LAN and uses 15-character names?

A. DNS
B. DHCP
C. NetBIOS
D. Telnet

31 Which tool can be used to view programs that run automatically when Windows starts?

A. Task Scheduler
B. Disk Management
C. Task Manager (Startup tab)
D. Event Viewer

32 Which command is used to force a refresh of Group Policy settings on a client machine?

A. gpupdate /force
B. sysprep
C. net pol update
D. gpresult /r

33 What is a Security Identifier (SID) in Windows?

A. The encryption key for the SAM database.
B. The user's login password.
C. The IP address of the domain controller.
D. A unique alphanumeric character string that identifies each user, group, and computer account.

34 Which registry hive usually contains the Run keys that control startup programs for the local machine?

A. HKEY_CURRENT_CONFIG
B. HKEY_USERS\.DEFAULT
C. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
D. HKEY_CLASSES_ROOT

35 What is the purpose of the Windows Audit Policy?

A. To automatically block suspicious IP addresses.
B. To compress old log files.
C. To enforce password complexity rules.
D. To determine which security events are recorded in the Event Logs.

36 Which command displays detailed configuration information about a computer and its operating system, including the OS version, install date, and hotfixes?

A. systeminfo
B. ver
C. hostname
D. whoami

37 If you need to investigate why a scheduled task failed to run, which tool would you check first?

A. Resource Monitor
B. Windows Firewall Logs
C. Task Scheduler History/Logs
D. Device Manager

38 What is the executable name for the Remote Desktop Connection client?

A. rdp.exe
B. connect.exe
C. mstsc.exe
D. remote.exe

39 Which type of user account is best practice for performing daily, non-administrative tasks?

A. Administrator Account
B. Guest Account
C. Standard User Account
D. System Account

40 In the output of netstat -ano, what does the -o switch display?

A. The off-load state
B. The owner of the process
C. The Process ID (PID)
D. The protocol used

41 Which folder permissions inheritance setting is the default behavior in NTFS?

A. Files inherit permissions from their parent folder.
B. Files inherit permissions from the user's profile.
C. Files do not inherit permissions.
D. Files inherit permissions from the root of the drive only.

42 What is the loopback IP address used to test the network interface on the local host?

A.
B.
C.
D.

43 Which Windows tool allows you to view and modify the registry?

A. regedit
B. msconfig
C. dxdiag
D. gpedit

44 Which command is used to display the routing table on a Windows machine?

A. netstat -r
B. route print
C. Both A and B
D. None of the above

45 What happens to the NTFS permissions of a file when it is moved to a different folder on the same volume?

A. It inherits the permissions of the new folder.
B. All permissions are removed.
C. It becomes read-only.
D. It retains its original permissions.

46 Which net command is used to list all the shares exported by the local computer?

A. net session
B. net export
C. net share
D. net view

47 Which protocol uses a 'Challenge-Response' mechanism and is considered less secure than Kerberos?

A. SSH
B. TLS
C. NTLM (New Technology LAN Manager)
D. IPsec

48 In the Windows Firewall, which profile typically applies when connected to a public Wi-Fi hotspot?

A. Private Profile
B. Public Profile
C. Work Profile
D. Domain Profile

49 Which administrative tool allows you to view hardware resources, update drivers, and disable hardware components?

A. ODBC Data Sources
B. Disk Management
C. Task Scheduler
D. Device Manager

50 What is the purpose of the ping command?

A. To test reachability of a host using ICMP Echo Request.
B. To find the path taken by packets.
C. To resolve a MAC address to an IP.
D. To transfer files between computers.