ITSY 2400 CHAPTER 5 EXAM WITH
CORRECT ANSWERS
Which form of malware scan looks for malware only in files likely to contain such
malicious software, such as .exe files?
A.Quick scan
B.Drive scan
C.Full scan
D.Scheduled scan - Answer-C
Full or Quick Scan [X]
Which of the following was designed to exploit a buffer overflow vulnerability?
A.Worm
B.Ransomware
C.Trojan horses
D.Virus - Answer-A
Working in the Finance office, Ursula has noticed several pop-up messages from her
desktop's anti-malware application. Finding them annoying, Ursula shuts off the
application, intending to restart it at the end of the workday. What is likely to happen as
a result?
A.Any suspected malware would be quarantined
B.The pop-ups would continue
C.Any suspected malware would stay resident but remain as a suspended application
D.Any suspected malware would continue as intended and possibly spread - Answer-D
, Wilber is asked to find a new approach to detecting viruses and malware. On some
occasions, computers in the organization have failed to identify malware infections.
Even when a few employees complained their machines were behaving oddly, the
antivirus software did not detect the infection. Wilber already changed signature
updates to occur daily. What would you suggest Wilber do to improve detection?
A.Set up antivirus scanning on the firewall.
B.Change from signature-based to heuristic-based software.
C.Raise the priority of real-time scanning.
D.Keep systems patched. - Answer-B
Which of the following is an example of an aggressive malware prevention strategy?
A.Updating signature databases and software daily
B.Blocking outbound network connections that are not required for your applications
C.Installing antivirus and anti-spyware software on all computers
D.Limiting web browser functionality - Answer-D
A zero-day attack occurs under which of the following conditions?
A.When the malware's actions have been noticed and the vulnerability has been
discovered
B.When the malware has been written for a UNIX-based system and is found on a
Windows computer
C.When the malware and the vulnerability have been identified but no fix is available yet
D.When the malware's actions have been noticed and identified as an attack - Answer-
C
Which of the following is the best resource to consult when developing a malware
eradication plan?
A.Anti-malware webinars
B.White papers
C.Google
CORRECT ANSWERS
Which form of malware scan looks for malware only in files likely to contain such
malicious software, such as .exe files?
A.Quick scan
B.Drive scan
C.Full scan
D.Scheduled scan - Answer-C
Full or Quick Scan [X]
Which of the following was designed to exploit a buffer overflow vulnerability?
A.Worm
B.Ransomware
C.Trojan horses
D.Virus - Answer-A
Working in the Finance office, Ursula has noticed several pop-up messages from her
desktop's anti-malware application. Finding them annoying, Ursula shuts off the
application, intending to restart it at the end of the workday. What is likely to happen as
a result?
A.Any suspected malware would be quarantined
B.The pop-ups would continue
C.Any suspected malware would stay resident but remain as a suspended application
D.Any suspected malware would continue as intended and possibly spread - Answer-D
, Wilber is asked to find a new approach to detecting viruses and malware. On some
occasions, computers in the organization have failed to identify malware infections.
Even when a few employees complained their machines were behaving oddly, the
antivirus software did not detect the infection. Wilber already changed signature
updates to occur daily. What would you suggest Wilber do to improve detection?
A.Set up antivirus scanning on the firewall.
B.Change from signature-based to heuristic-based software.
C.Raise the priority of real-time scanning.
D.Keep systems patched. - Answer-B
Which of the following is an example of an aggressive malware prevention strategy?
A.Updating signature databases and software daily
B.Blocking outbound network connections that are not required for your applications
C.Installing antivirus and anti-spyware software on all computers
D.Limiting web browser functionality - Answer-D
A zero-day attack occurs under which of the following conditions?
A.When the malware's actions have been noticed and the vulnerability has been
discovered
B.When the malware has been written for a UNIX-based system and is found on a
Windows computer
C.When the malware and the vulnerability have been identified but no fix is available yet
D.When the malware's actions have been noticed and identified as an attack - Answer-
C
Which of the following is the best resource to consult when developing a malware
eradication plan?
A.Anti-malware webinars
B.White papers
C.Google
