Difference between revisions of "User Account Control (UAC)"

From ForensicsWiki
Jump to: navigation, search
(External Links)
 
(9 intermediate revisions by the same user not shown)
Line 1: Line 1:
 
{{expand}}
 
{{expand}}
  
User Account Control (UAC) (aka: LUA) is a Windows sub-system introduced in Windows Vista that limits application software to standard user privileges until an administrator authorizes an increase or elevation.
+
User Account Control (UAC) is a Windows sub-system introduced in Windows Vista that limits application software to standard user privileges until an administrator authorizes an increase or elevation.
 +
 
 +
The file virtualization part of UAC is also referred to as LUA (LUAFV.SYS).
 +
 
 +
== EventLogs ==
 +
Related EventLogs:
 +
<pre>
 +
C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC%4Operational.evtx
 +
C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC-FileVirtualization%4Operational.evtx
 +
</pre>
  
 
== External Links ==
 
== External Links ==
 
* [http://en.wikipedia.org/wiki/User_Account_Control Wikipedia: User Account Control]
 
* [http://en.wikipedia.org/wiki/User_Account_Control Wikipedia: User Account Control]
* [http://www.codeproject.com/Articles/19165/Vista-UAC-The-Definitive-Guide Vista UAC: The Definitive Guide]
+
* [http://www.codeproject.com/Articles/19165/Vista-UAC-The-Definitive-Guide Vista UAC: The Definitive Guide], by Thomas Hruska, March 21, 2008
* [http://blogs.msdn.com/b/alexcarp/archive/2009/06/25/the-deal-with-luafv-sys.aspx The deal with LUAFV.SYS]
+
* [http://blogs.msdn.com/b/alexcarp/archive/2009/06/25/the-deal-with-luafv-sys.aspx The deal with LUAFV.SYS], by Alex Carp, June 25, 2009
 +
* [http://journeyintoir.blogspot.ch/2012/10/you-are-not-admin-with-uac.html You Are Not Admin with UAC], by [[Corey Harrell]], October 8, 2012
 +
* [http://journeyintoir.blogspot.ch/2013/03/uac-impact-on-malware.html UAC Impact on Malware], by [[Corey Harrell]], March 4, 2013
  
[Category:Windows]
+
[[Category:Windows]]

Latest revision as of 01:46, 6 March 2013

Information icon.png

Please help to improve this article by expanding it.
Further information might be found on the discussion page.

User Account Control (UAC) is a Windows sub-system introduced in Windows Vista that limits application software to standard user privileges until an administrator authorizes an increase or elevation.

The file virtualization part of UAC is also referred to as LUA (LUAFV.SYS).

EventLogs

Related EventLogs:

C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC%4Operational.evtx
C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC-FileVirtualization%4Operational.evtx 

External Links