Comptia Security Plus Mock Test Q127

A malicious program modified entries in the LMHOSTS file of an infected system. Which of the following protocols would have been affected by this?

A. ICMP
B. BGP
C. NetBIOS
D. DNS

Correct Answer: C
Section: Network Security

Explanation:
The LMHOSTS file provides a NetBIOS name resolution method that can be used for small networks that do not use a WINS server. NetBIOS has been adapted to run on top of TCP/ IP, and is still extensively used for name resolution and registration in Windows-based environments.

Incorrect Answers:
A: Internet Control Message Protocol (ICMP) is a network health and link-testing protocol that is commonly used by tools such as ping, traceroute, and pathping. It is not include in the
LMHOSTS file.
B: Border Gateway Protocol (BGP) is a standardized exterior gateway protocol designed to exchange routing and reachability information between autonomous systems (AS) on the
Internet. It is not include in the LMHOSTS file.
C: Domain Name System (DNS) distributes the responsibility of assigning domain names and mapping those names to IP addresses by designating authoritative name servers for
each domain. It is not include in the LMHOSTS file.

References:
https://technet.microsoft.com/library/Cc977602
http://en.wikipedia.org/wiki/Border_Gateway_Protocol
http://en.wikipedia.org/wiki/Domain_Name_System