You are a member of your organization’s IT Security Team. The following were found in the hosts file on a Windows workstation that is on your network. The system administrator thought these were “interesting” snippers from the hosts file. Which of the entries listed below are cause for further investigation?
Answer(s): C
Explanation:
Entries in the hosts file that map domain names to the local loopback address (127.0.0.1) are often entered by malware to prevent users from accessing well known anti-virus web sites after the computer has been infected.
#102.54.94.97 is a sample entry in a Windows 7 hosts file, while 127.0.0.1, 0.0.0.0, and ::1 are default entries in a Windows 7 hosts file.
Display Answer
Next Question