ATTENTION: The new home of the Digital Forensics Wiki is at https://forensicswiki.xyz/. Yeah, it's a silly name, but it was cheap.
This wiki will be going offline permanently in the near future. An exact date will be announced soon. Thank you for being a part of this community.
If you wish to work on the new forensicswiki, please join the Google Group forensicswiki-reborn

User Account Control (UAC)

From ForensicsWiki
Revision as of 06:45, 6 March 2013 by Joachim Metz (Talk | contribs) (External Links)

Jump to: navigation, search

Information icon.png

Please help to improve this article by expanding it.
Further information might be found on the discussion page.

User Account Control (UAC) is a Windows sub-system introduced in Windows Vista that limits application software to standard user privileges until an administrator authorizes an increase or elevation.

The file virtualization part of UAC is also referred to as LUA (LUAFV.SYS).

EventLogs

Related EventLogs:

C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC%4Operational.evtx
C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC-FileVirtualization%4Operational.evtx 

External Links