ECCouncil 312-49v10 Practice Test - Questions Answers, Page 41

BMP (Bitmap) is a standard file format for computers running the Windows operating system. BMP images can range from black and white (1 bit per pixel) up to 24 bit color (16.7 million colors). Each bitmap file contains a header, the RGBQUAD array, information header, and image dat a. Which of the following element specifies the dimensions, compression type, and color format for the bitmap?

Identify the file system that uses $BitMap file to keep track of all used and unused clusters on a volume.

An investigator has acquired packed software and needed to analyze it for the presence of malice.

Which of the following tools can help in finding the packaging software used?

Korey, a data mining specialist in a knowledge processing firm DataHub.com, reported his CISO that he has lost certain sensitive data stored on his laptop. The CISO wants his forensics investigation team to find if the data loss was accident or intentional. In which of the following category this case will fall?

Which of the following Windows-based tool displays who is logged onto a computer, either locally or remotely?

A forensic examiner is examining a Windows system seized from a crime scene. During the examination of a suspect file, he discovered that the file is password protected. He tried guessing the password using the suspect's available information but without any success. Which of the following tool can help the investigator to solve this issue?

Which of the following Android libraries are used to render 2D (SGL) or 3D (OpenGL/ES) graphics content to the screen?

Report writing is a crucial stage in the outcome of an investigation. Which information should not be included in the report section?

You are assigned a task to examine the log files pertaining to MyISAM storage engine. While examining, you are asked to perform a recovery operation on a MyISAM log file. Which among the following MySQL Utilities allow you to do so?