Register
What is the name of the "local user" account involved in the alleged actions (Hint: where in the file structure did you find the suspect files)? What was the IP address of the alleged offender workstation?
116k views
5 votes
What is the name of the "local user" account involved in the alleged actions (Hint: where in the file structure did you find the suspect files)? What was the IP address of the alleged offender workstation?

User Chris Lefevre
by
5.8k points

1 Answer

5 votes

I will assume this is a windows computer

Answer:

  • Disk (Letter)\Users\<"Answer">\Folder\Documents\SuspiciousFile.exe
  • You can use Windows Security Logs to try and find out from what IP address the user you just found logged in from.

Step-by-step explanation:

The windows user folder has folders that contain each users data, Using the file path of the suspicious file you can figure out which user is associated with the file.

Windows Security Logs collect data on logon attempts so when the user logs in their IP address should be collected in these log files.

User Melodee
by
6.5k points
Ask a Question
Welcome to QAmmunity.org, where you can ask questions and receive answers from other members of our community.

6.5m questions

8.7m answers

Other Questions

What is Blender's default save directory for movie AVI files?
If a website ends with .gov does it mean that its written by the government or?
To group option buttons so that selecting one deselects all of the others, you must make the ____ attribute the same.
How do I turn on your asus chromebook flip?
Harrison worked on a spreadsheet to show market trends of various mobile devices. The size of the file has increased because Harrison used a lot of graphs and charts. Which file extension should he use
Link Copied!