티스토리 뷰

AU Study/CSG2305 Computer Forensics

W5 Mon 27082018

Last72 2018. 8. 27. 16:57

Do workshop 5.

000001F4 - Username Administrator, Description Built-in account for administering the computer/domain, SID 500

000001F5 - Username Guest, Description  Built-in account for guest access to the computer/domain, SID 501

0000003E9 - Username jfriday, Fullname jfriday, SID 1001

0000003EB - Username HomeGroupUser$, Description Built-in account for homegroup access to the computer, SID 1003

0000003EC - Username Denise, Fullname Denise Robinson, SID 1004

SID info - https://www.itprotoday.com/management-mobility/what-sid-security-id

Q10.1 The denise have never login this computer.

Q10.2 7 times

Q10.3 2 of them including administrator and guest.

Q10.4 Administrator and Guest account

Q10.5 True

Q10.6 7 hives

Q11. GCFI5E

Q12. Time zone is PST

Q14.1 GCFI5E

Q14.2 PST

Q14.3 What kinds of device was connected to the computer.

Q14.4 2

Q14.5 A devices connected to the computer including IDE and USB devices.

Q17.1 Because the NTUSER.dat file was extracted from denise user folder.

Q17.2 denise.robinson5@outlook.com



저작자표시 비영리 동일조건

'AU Study > CSG2305 Computer Forensics' 카테고리의 다른 글

W7 Mon 10092018  (0) 2018.09.10
W6 03092018 Mon  (0) 2018.09.06
W4 Mon 20082018  (0) 2018.08.24
W3 Mon 13082018  (0) 2018.08.15
W2 Mon 06082018  (0) 2018.08.07
공유하기 링크
댓글
Announcement
Recent Posts
Recent Comments
Total
Today
Yesterday
Link
TAG
more
«   2024/05   »
1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31
Search by month