Question 1

Where is the default location for Apache access logs on a Linux computer?

Options :

A : usr/local/apache/logs/access_log

B : bin/local/home/apache/logs/access_log

C : usr/logs/access_log

D : logs/usr/apache/access_log

Answer: A

Question 2

During the course of an investigation, you locate evidence that may prove the innocence of the suspect of the

investigation. You must maintain an unbiased opinion and be objective in your entire fact finding process.

Therefore, you report this evidence. This type of evidence is known as:

Options :

A : Inculpatory evidence

B : Mandatory evidence

C :

Exculpatory evidence

D :

Terrible evidence

Answer: C

Question 3

Rule 1002 of Federal Rules of Evidence (US) talks about_____

Options :

A : Admissibility of original

B : Admissibility of duplicates

C : Requirement of original

D : Admissibility of other evidence of contents

Answer: C

Question 4

Files stored in the Recycle Bin in its physical location are renamed as Dxy.ext, where “x” represents the ___________________.

Options :

A : Drive name

B : Original file name’s extension

C : Sequential number

D : Original file name

Answer: A

Question 5

Which tool does the investigator use to extract artifacts left by Google Drive on the system?

Options :

A : PEBrowse Professional

B : RegScanner

C : RAM Capturer

D : Dependency Walker

Answer: C