A computer becomes infected with malware, which manages to steal all credentials stored on the PC. The malware then uses elevated credentials to infect all other PCs at the site. Management asks the IT staff to take action to prevent this

from reoccurring.

Which of the following would BEST accomplish this goal?

A. Use an antivirus product capable of performing heuristic analysis

B. Use a host-based intrusion detection system on each computer

C. Disallow the password caching of accounts in the administrators group

D. Install a UTM in between PC endpoints to monitor for suspicious traffic

E. Log all failed login attempts to the PCs and report them to a central server

After a virus has been spread unknowingly via USB removable hard drives, a technician is tasked with limiting removable hard drive access to certain network users. USB ports are used for many devices, including scanners, printers, and signature pads, so a policy is created to deny access to removable hard drives only.

When testing the policy, a removable drive is plugged in but can still be accessed. Which of the following command-line tools should the technician use to apply the new policy?

A. gpupdate

B. diskpart

C. gpresult

D. net use

A user who is running Windows 10 logs Into a machine and notices that shared drives are missing, the "My Documents* folder is empty, and personal settings are reset.

Which of the following would be required to resolve the issue?

A. Remove the registry entry and rename the local account folder.

B. Delete or rename the local user folder.

C. Run DISM and re-add the local power user account.

D. Remove the user account In Credential Manager and restart the PC.

A new user has joined a company, and human resources has given the user several documents to sign regarding compliance and regulations for company computers. The user has also received web links to documentation for applications, as well as processes and procedures to do jobs in accordance with those programs.

Which of the following types of documentation has the user MOST likely received? (Choose two.)

A. Inventory management policy

B. Knowledge base articles

C. End-user acceptance document

D. Acceptable use policy

E. Incident documentation

F. Network diagrams

Joe, a user, did not receive emails over the weekend like he usually does. Productivity software is functioning properly. Joe never powers off his computer and typically leaves all applications open. No other users are reporting email issues.

Which of the following is MOST likely the cause of the issue?

A. There is an OS update failure.

B. Out-of-office is turned on.

C. There is an Internet connectivity issue.

D. SMTP services are not running.

Which of the following is used with WPA2 to authenticate wireless clients?

A. TACACS+

B. LDAP

C. RADIUS

D. MDM

Joe, a client, wants to allow only specific portable devices to connect to his wireless network. Which of the following methods would BEST accomplish this?

A. Disabling SSID broadcast

B. MAC filtering

C. Lower radio power levels

D. Directional antennas

A technician is attempting to install a RAID 1 configuration. Which of the following is the MINIMUM amount of disks that can be used to create a RAID 1 array?

A. 1

B. 2

C. 3

D. 4

A technician is troubleshooting a problem in which a user gets an error when trying to access the company web page using SSL. When checking with other users, the technician discovers all of them display the same warning message. Which of the following is the MOST likely cause of this problem?

A. The website is below connection capacity

B. Browser content filtering is required

C. The website has not been added to Trusted Sites

D. The website's security certificate has expired

Which of the following OS utilities can be used to modify which programs are run at the time of system startup?

A. MSCONFIG

B. Services

C. MSTSC

D. Computer Management