Which two statements are true about Windows operating systems? (Choose two.)
A. They are used exclusively for desktop computing.
B. Windows Server platforms offer numerous services, such as DNS and DHCP.
C. Windows Server supports AD services for managing domain-based networks.
D. The Windows source code is publicly available so that you can customize it for your environment.
What information may an attacker obtain with WMI access to the Windows domain controller security events?
A. user password
B. user login and logoff events
C. file share names
D. active directory configurations
Which three types of logs are available using the Windows Event Viewer? (Choose three.)
A. application
B. security
C. SMB
D. system
E. network
What is the Windows eventvwr command used for?
A. to investigate network connectivity problems
B. to investigate applications and Windows security problems
C. to investigate problems with the Windows registry
D. to investigate Windows SMB operations
What kind of names are used to uniquely identify servers that host remote resources only in Windows networking environments?
A. FDQN
B. NBT
C. SMB
D. NetBIOS
Malware infecting which Windows registry hive can alter the Windows user's profile?
A. HKEY_LOCAL_MACHINE
B. HKEY_CURRENT_CONFIG
C. HKEY_CLASSES_ROOT
D. HKEY_CURRENT_USER
How can the SMB worm self-propagate throughout the network?
A. using Windows Outlook
B. using Windows file shares
C. using Windows remote desktop
D. using Windows PowerShell
You suspect that a Windows host has been infected with malware, and the malware is creating many TCP connections. Which Windows command would you use to display all the active TCP connections on the host?
A. net view
B. systeminfo
C. route print
D. netstat
Which Windows netstat command options can be used to link the open connection to the owning process ID?
A. -abno
B. -abe
C. -ars
D. -af
Which system-wide Windows registry hive may be modified by attackers to automatically start malware at boot time?
A. HKEY_CURRENT_USER
B. HKEY_LOCAL_MACHINE
C. HKEY_CURRENT_CONFIG
D. HKEY_CLASS_ROOT
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 210-250 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.