A Trivia Quiz On Windows Forensics Analysis!

10 Questions | By Ahmednoor99 | Last updated: May 13, 2020 | Total Attempts: 739

Questions

Settings

A Trivia Quiz On Windows Forensics Analysis!

Questions and Answers

1.

Which of the statements below, belong to the A.C.P.O Principles?
- A.
  
  The person in charge of the investigation (case officer) holds no responsibility whatsoever, for ensuring that the law and these principles are adhered to.
- B.
  
  An audit trail or other record of all processes applied to computer-based electronic evidence should be created and preserved. An indepedent third party should be able to examine those processes and achieve the same result.
- C.
  
  No action taken by law enforcement agencies or their agents should change data held on a computer or storage media, which may subsequently be relied upon in court.
- D.
  
  In exceptional circumstances, where a person finds it necessary to access original data held on a computer or storage media, that person is able to do so, regardless of their qualifications or digital forensic knowledge.
2.

The Examination & Analysis stage is completed before the Collection & Preservation stage, of the Forensic Process.
- A.
  
  True
- B.
  
  False
3.

Which of the below, is the name of one of the two logical root keys, that reside in the system hard drive of the Windows Registry?
- A.
  
  HKEY_LOCAL_MAC
- B.
  
  HKEY_LOCAL_SYSTEM
- C.
  
  HKEY_LOCAL_MACHINE
- D.
  
  HKEY_LOCAL_METRO
4.

Which of the following are Registry data types?
- A.
  
  REG_DWORD
- B.
  
  REG_WINDOWS
- C.
  
  REG_HEX
- D.
  
  REG_SZ
- E.
  
  REG_BINARY
- F.
  
  REG_NONE
5.

What is the file extension name for the Setup logs in Windows 7 (Windows logs)?
- A.
  
  .log
- B.
  
  .etl
- C.
  
  .stp
- D.
  
  .set
6.

What is the name of one of the most forensically significant Internet Explorer artifacts?
- A.
  
  Index.bat
- B.
  
  Index.data
- C.
  
  Index.dta
- D.
  
  Index.dat
7.

Thumbnails are graphical images that represent a file or directory.
- A.
  
  True
- B.
  
  False
8.

What is the name of the style given to the Windows 8 GUI (graphical user interface)?
- A.
  
  Mento
- B.
  
  Metro
- C.
  
  Motto
- D.
  
  Micro
9.

What are the names of the two paging files used in Windows 8?
- A.
  
  Swapfile.sys
- B.
  
  Virtualmem.sys
- C.
  
  Pagingfile.sys
- D.
  
  Pagefile.sys
- E.
  
  Pagefile2.sys
10.

The $Recycle.Bin folder is located within the Windows. old directory, which is accessible once a machine has been Refreshed, in Windows 8.
- A.
  
  True
- B.
  
  False

Related Topics

Computer Security

More Computer Forensics Quizzes

Chapter 4 Computer Forensics

This quiz is about computer forensics and is to test your knowledge of the information

Questions: 14 | Attempts: 9943 | Last updated: Jul 10, 2020

Sample Question
There are three c's in computer forensics. Which is one of the three?

Control

Chance

Chains

Core

Quiz: Basic Computer Skills Assessment

Are you applying for a job, and they have required you to take essential computer skills exam when you show up for the interview? The quiz below covers the basics of what you are most likely to be asked. Give it a try and all the...

Questions: 8 | Attempts: 145758 | Last updated: Apr 30, 2021

Sample Question
How do you open a program such as Microsoft Word when there are no icons on the desktop?

Right click to reveal all icons.

Restart the computer.

It is not possible to open program if no icons are on the desktop.

Click the start button and select program from the menu.

Take The Ultimate Advanced Computer Quiz!

Computers have been evolving in makeup and design ever since they were first introduced. Most people nowadays are expected to have at least basic knowledge of how to use one. How conversant are you with the basic components of a...

Questions: 15 | Attempts: 41335 | Last updated: Jun 11, 2020

Sample Question
Let's start with an easy one. What does CPU stand for?

Computer Processing Unit

Central Peripheral Unit

Central Processing Unit

Computer Processing User