Bienvenue sur Scribd !

Ignorer le carrousel

Sample - Internal Investigation Report

Transféré par

selar89

100% ont trouvé ce document utile (1 vote)

589 vues2 pages

Internal investigation sample report

Titre original

Sample - Internal Investigation Report (1)

Copyright

Formats disponibles

DOC, PDF, TXT ou lisez en ligne sur Scribd

Partager ce document

Partager ou intégrer le document

Options de partage

Avez-vous trouvé ce document utile ?

Ce contenu est-il inapproprié ?

Signaler ce document

Internal investigation sample report

Droits d'auteur :

Formats disponibles

Téléchargez comme DOC, PDF, TXT ou lisez en ligne sur Scribd

Signaler comme contenu inapproprié

100% ont trouvé ce document utile (1 vote)

589 vues2 pages

Sample - Internal Investigation Report

Transféré par

selar89

Internal investigation sample report

Droits d'auteur :

Formats disponibles

Téléchargez comme DOC, PDF, TXT ou lisez en ligne sur Scribd

Signaler comme contenu inapproprié

Passer à la page

Vous êtes sur la page 1sur 2

Rechercher à l'intérieur du document

This sample report is from "Appendix: Resources" of the Fundamental Computer Investigation Guide for Windows by

Microsoft Corporation.

Sample - Internal Investigation Report

Northwind Traders
123 Main Way
Redmond, WA
October 18, 2006
Examiner: Scott Culp (Technical Lead, Northwind Traders)
Internal Investigation Team: James Fine (Technical Specialist, Northwind Traders), Spencer Low
(IT Manager, Northwind Traders), Yan Li (Technical Specialist, Contoso Ltd)
Requester: Northwind Traders
Offense: Intellectual Property Theft
CONCLUSION
This investigation concluded that Peter Houston, Sales Manager, Northwind Traders obtained
unauthorized access to privileged files containing the intellectual property of Northwind Traders
and transferred them via e-mail to an unauthorized third party.
FINDINGS
The analysis of the server and laptop computer resulted in 154 files and 14 log entries of
evidentiary interest. Files were examined using standard internal investigation procedures.

Investigation started: September 14, 2006

Investigation completed: October 16, 2006
Investigation hours: 150 hours
Operating systems examined: Microsoft Windows Server 2003 R2, Windows XP SP 2
File system: NTFS
Amount of data analyzed: 1,200,000 MB

Evidence Description
Item 1: One IBM X-Series 360 rack server, Serial Number 111-A1111-11-111-1111.
Actions taken:
Date / time

Action

September 20, 2006 16:30

Retrieved original server from server room. Acquired data

from the server following standard acquisition process.

September 21, 2006 10:00

Analyzed evidence collected from server. Identified files of

interest. Documented the system following standard
procedures.

Additional information: See attached Computer Examination Worksheet and Hard Drive
Examination Worksheet for this system.

Evidence found:
The server was accessed physically and the Active Directory directory service modified to
elevate privilege for account Peter Houston by assigning the account to the Domain
Administrators group on September 12, 2006 at 17:05. The server was interactively logged
on to as nwtraders\Administrator at the time.
Directory D:\Product Development was taken ownership of by Peter Houston.
File D:\Product Development\Research Results.doc was accessed by Peter Houston's
account on September 13, 2006 at 01:09.
File D:\Product Development\Confidential\Product Strategy.doc was accessed by Peter
Houston's account on September 13, 2006 at 01:15.
File D:\Product Development\Strategy\Proposed Partnerships.doc was accessed by Peter
Houston's account on September 13, 2006 at 01:19.
Item 2: One Dell Inspiron 9400 laptop, Serial Number 222-B2222-22-22-2222.
Actions taken:
Date / time

Action

September 21, 2006 13:30

Retrieved laptop from user Peter Houston.

September 28, 2006 07:00

Analyzed evidence collected from laptop. Identified files and

events of interest. Documented the system following
standard procedures.

Additional information: See attached Computer Examination Worksheet and Hard Drive
Examination Worksheet for this system.
Evidence found:
Laptop logged on to as nwtraders\peter on September 13, 2006 at 01:21.
Files Research Results.doc, Product Strategy.doc, and Proposed Partnerships.doc
transferred from server to Temp directory on September 13, 2006 at 01:25.
Internet Explorer navigated to www.hotmail.com on September 13, 2006 at 01:29.
Files e-mailed to <address>@hotmail.com on September 13, 2006 at 01:37.

Vous aimerez peut-être aussi

Final Hunter Biden Laptop Report Redacted
Document71 pages
Final Hunter Biden Laptop Report Redacted
Washington Examiner
100% (8)
Surveillance: Concepts and Practices For Fraud, Security and Crime Investigation
Document19 pages
Surveillance: Concepts and Practices For Fraud, Security and Crime Investigation
selar89
100% (1)
Volvo Catalog Part2
Document360 pages
Volvo Catalog Part2
Denis Konovalov
71% (7)
Management Reporting A Complete Guide - 2019 Edition
D'Everand
Management Reporting A Complete Guide - 2019 Edition
Gerardus Blokdyk
Pas encore d'évaluation
Algebra Cheat Sheet
Document2 pages
Algebra Cheat Sheet
Dino
97% (72)
Audit Confirmation Letter
Document5 pages
Audit Confirmation Letter
simson
Pas encore d'évaluation
Windows Logging Cheat Sheet v1.1
Document6 pages
Windows Logging Cheat Sheet v1.1
selar89
100% (1)
Sample Forms
Document14 pages
Sample Forms
Maria Victoria Padro
Pas encore d'évaluation
BDP Department Periodic Audit Report .2
Document30 pages
BDP Department Periodic Audit Report .2
Arefayne Wodajo
Pas encore d'évaluation
Internal Audit Report Template 1
Document8 pages
Internal Audit Report Template 1
Zia Malik
Pas encore d'évaluation
Point of Sale System
Document15 pages
Point of Sale System
Spencer Tracy
Pas encore d'évaluation
Working Paper For Audit Procedures and Email
Document3 pages
Working Paper For Audit Procedures and Email
Given Refilwe
Pas encore d'évaluation
Deloitte - Introduction To TS&A - Cloud
Document2 pages
Deloitte - Introduction To TS&A - Cloud
satyam
100% (1)
CSMSI Cash Handling Policy
Document3 pages
CSMSI Cash Handling Policy
Jayson Malero
Pas encore d'évaluation
Place Value With Large Numbers
Document9 pages
Place Value With Large Numbers
lponton
Pas encore d'évaluation
Chapter 2 Forensic Auditing and Fraud Investigation
Document92 pages
Chapter 2 Forensic Auditing and Fraud Investigation
abel habtamu
Pas encore d'évaluation
Life To Date Final
Document89 pages
Life To Date Final
View
100% (1)
Deloittes - AntiFruad Program and Controls PDF
Document27 pages
Deloittes - AntiFruad Program and Controls PDF
Sanath Fernando
Pas encore d'évaluation
IIA Code of Ethics
Document3 pages
IIA Code of Ethics
achistep
Pas encore d'évaluation
W.P BSAccount Rec
Document2 pages
W.P BSAccount Rec
naima
Pas encore d'évaluation
Algebra 10th Maths Formula
Document1 page
Algebra 10th Maths Formula
Anirudhan Ravi
Pas encore d'évaluation
Math Converts Abbreviations Math Converts4 PDF
Document2 pages
Math Converts Abbreviations Math Converts4 PDF
selar89
100% (1)
Tool Review e Remote Forensic Preservation and Examination Tools
Document14 pages
Tool Review e Remote Forensic Preservation and Examination Tools
selar89
100% (1)
Tool Review e Remote Forensic Preservation and Examination Tools
Document14 pages
Tool Review e Remote Forensic Preservation and Examination Tools
selar89
100% (1)
Security Incident Log Review Checklist by Anton Chuvakin and Lenny Zeltser
Document2 pages
Security Incident Log Review Checklist by Anton Chuvakin and Lenny Zeltser
Dr. Anton Chuvakin
Pas encore d'évaluation
Implementing A Procurement Internal Audit Program
Document10 pages
Implementing A Procurement Internal Audit Program
Faruk H. Irmak
Pas encore d'évaluation
Document Retention Policy
Document13 pages
Document Retention Policy
jmontalvo8404
Pas encore d'évaluation
Audit Plan
Document3 pages
Audit Plan
Min Jee
Pas encore d'évaluation
Management Frauds
Document21 pages
Management Frauds
ksmann88
100% (7)
Audit of Insurance Business - 2
Document5 pages
Audit of Insurance Business - 2
ANMOL GUMBER
Pas encore d'évaluation
Categories of Cargo and Types of Ships
Document14 pages
Categories of Cargo and Types of Ships
Vibhav Kumar
100% (1)
Ftbend Payroll Audit Progghfram
Document6 pages
Ftbend Payroll Audit Progghfram
JenofDulwn
Pas encore d'évaluation
Auditing and Assurance - Concepts and Applications - Heading PDF
Document4 pages
Auditing and Assurance - Concepts and Applications - Heading PDF
Luisito
Pas encore d'évaluation
Philpost RR
Document6 pages
Philpost RR
Gene Abot
Pas encore d'évaluation
Elementary Math Charts Packet Free Free Free
Document18 pages
Elementary Math Charts Packet Free Free Free
Iroet Marteni
Pas encore d'évaluation
DIP Making of An Investigation Report
Document15 pages
DIP Making of An Investigation Report
ptsievccd
Pas encore d'évaluation
Preliminary Examination The Contemporary World
Document2 pages
Preliminary Examination The Contemporary World
Jane M
100% (1)
Types of Intermolecular Forces
Document34 pages
Types of Intermolecular Forces
Ruschan Jara
Pas encore d'évaluation
At 04 Auditing Planning
Document8 pages
At 04 Auditing Planning
Jelyn Ruazol
Pas encore d'évaluation
Audit of Purchasing and Disbursement Cycle PDF
Document15 pages
Audit of Purchasing and Disbursement Cycle PDF
ROCHIE LANCIOLA
Pas encore d'évaluation
Petty Cash /imprest Reimbursement Post Audit Checklist
Document2 pages
Petty Cash /imprest Reimbursement Post Audit Checklist
Henry Mapa
100% (1)
Preblending of Raw Materia1
Document26 pages
Preblending of Raw Materia1
Mohammed Abdo
100% (1)
Auditing Treasury Functions Dec07
Document4 pages
Auditing Treasury Functions Dec07
Hary Hartawan
Pas encore d'évaluation
WellaPlex Technical 2017
Document2 pages
WellaPlex Technical 2017
Rinita Bhattacharya
Pas encore d'évaluation
Appointment of Members of Evaluation Committees Request For Proposals
Document2 pages
Appointment of Members of Evaluation Committees Request For Proposals
KAMALUDDIN
Pas encore d'évaluation
Internal Investigation Report
Document17 pages
Internal Investigation Report
PennLive
0% (1)
General Ledger and Reporting Final
Document7 pages
General Ledger and Reporting Final
Jac Klyn
Pas encore d'évaluation
A. Engagement Letter From Client To CPA - PALACIO
Document2 pages
A. Engagement Letter From Client To CPA - PALACIO
Pinky Daisies
Pas encore d'évaluation
13 Introduction To Internal Auditing
Document6 pages
13 Introduction To Internal Auditing
Shailene David
Pas encore d'évaluation
Certificate of Occupancy And/Or Permit-To-Operate Requirements
Document1 page
Certificate of Occupancy And/Or Permit-To-Operate Requirements
Lucio Loyloy Sanchez
Pas encore d'évaluation
Audit of Bank and Cash
Document4 pages
Audit of Bank and Cash
Iftekhar Ifte
Pas encore d'évaluation
Audit of Inventories
Document21 pages
Audit of Inventories
yousef
Pas encore d'évaluation
DFA5048 - Chapter 3 - Internal Control and Cash
Document65 pages
DFA5048 - Chapter 3 - Internal Control and Cash
Wa Ode Muslimah
Pas encore d'évaluation
Security Quotation
Document7 pages
Security Quotation
Mantesh Vhadalure
Pas encore d'évaluation
Audit Compliance Committee Charter
Document6 pages
Audit Compliance Committee Charter
Ali Mohammed Abdellah
Pas encore d'évaluation
Audit Report: Qualified Opinion Scope Limitations
Document4 pages
Audit Report: Qualified Opinion Scope Limitations
AnaghaPuranik
Pas encore d'évaluation
Employee Identification and Access Cards Policy and Procedure
Document2 pages
Employee Identification and Access Cards Policy and Procedure
chelly
100% (1)
Audit Report ROPA
Document10 pages
Audit Report ROPA
gianneism
100% (1)
Declaration of Conflict of Interest Form
Document1 page
Declaration of Conflict of Interest Form
ElnurRecebov
Pas encore d'évaluation
12the Auditors Report On FS (Samples)
Document22 pages
12the Auditors Report On FS (Samples)
Franz Campued
Pas encore d'évaluation
Court Order Example#2
Document2 pages
Court Order Example#2
Shawn Freeman
Pas encore d'évaluation
Notarized Certification
Document3 pages
Notarized Certification
Rheneir Mora
Pas encore d'évaluation
B07 UTP & WT Non Routine and Estimation Process
Document8 pages
B07 UTP & WT Non Routine and Estimation Process
Jamey Simpson
Pas encore d'évaluation
Employee Offence Declaration Form
Document1 page
Employee Offence Declaration Form
akshay12489
Pas encore d'évaluation
Internal Controls Questionnaire
Document5 pages
Internal Controls Questionnaire
Carlos Eduardo C. da Silva
Pas encore d'évaluation
PHC-BOA Updates
Document67 pages
PHC-BOA Updates
Maynard Mirano
100% (1)
22 Stock Audit Report Format
Document15 pages
22 Stock Audit Report Format
Saptarshi Coomar
Pas encore d'évaluation
AML Officer
Document14 pages
AML Officer
zulfiqarmba
Pas encore d'évaluation
A1 - ICQ Agency Level Controls
Document7 pages
A1 - ICQ Agency Level Controls
Reihannah Paguital-Magno
Pas encore d'évaluation
Nternal Udit LAN: Project or System Name
Document12 pages
Nternal Udit LAN: Project or System Name
Shower Fadi
Pas encore d'évaluation
NDA Template
Document5 pages
NDA Template
Luigi Marvic Feliciano
Pas encore d'évaluation
Lead Schedule: Refer To The Attached Sample Bank Confirmation Template
Document4 pages
Lead Schedule: Refer To The Attached Sample Bank Confirmation Template
Christian Dela Cruz
Pas encore d'évaluation
David Nickel IA Investigation at DAWG Williamson County Sheriff's Office
Document25 pages
David Nickel IA Investigation at DAWG Williamson County Sheriff's Office
Buddy Falcon
Pas encore d'évaluation
Advanced Accounting Chapter 5: A Voucher System
Document5 pages
Advanced Accounting Chapter 5: A Voucher System
hanibells
Pas encore d'évaluation
Fatcape Management Solutions
Document3 pages
Fatcape Management Solutions
Cele Kimbini
Pas encore d'évaluation
Driver'S Application For Employment: To Be Read and Signed by Applicant
Document7 pages
Driver'S Application For Employment: To Be Read and Signed by Applicant
Hustle Media
Pas encore d'évaluation
IL Attorney General Computer Forensics Report Summary - Annabel Melongo, Save-A-Life Foundation
Document14 pages
IL Attorney General Computer Forensics Report Summary - Annabel Melongo, Save-A-Life Foundation
nkjembxiujgmns
100% (2)
Forensic Plagerism
Document8 pages
Forensic Plagerism
too robaa
Pas encore d'évaluation
What You Didn't Know Comput
Document73 pages
What You Didn't Know Comput
selar89
Pas encore d'évaluation
Mnemonic S Devices For American History Through Reconstruction
Document1 page
Mnemonic S Devices For American History Through Reconstruction
selar89
Pas encore d'évaluation
Private Data and Public Value
Document216 pages
Private Data and Public Value
selar89
Pas encore d'évaluation
Reading Responses
Document12 pages
Reading Responses
luvlyhaifaneeza
Pas encore d'évaluation
UK MoD UnderstandingArabPeople
Document31 pages
UK MoD UnderstandingArabPeople
selar89
Pas encore d'évaluation
Day02 Physical Pentesting
Document19 pages
Day02 Physical Pentesting
selar89
Pas encore d'évaluation
Mind Map
Document131 pages
Mind Map
rmoulton6754
Pas encore d'évaluation
Geography Terms Power Point
Document23 pages
Geography Terms Power Point
selar89
Pas encore d'évaluation
Mnemonic S Devices For American History Through Reconstruction
Document1 page
Mnemonic S Devices For American History Through Reconstruction
selar89
Pas encore d'évaluation
Digital Forensic File Recovery: © Michael Wilkinson
Document6 pages
Digital Forensic File Recovery: © Michael Wilkinson
selar89
Pas encore d'évaluation
Memory Forensics Cheat Sheet v1
Document2 pages
Memory Forensics Cheat Sheet v1
adam593
Pas encore d'évaluation
File Systems Cheat Sheet
Document3 pages
File Systems Cheat Sheet
selar89
Pas encore d'évaluation
Truth About Agent Vs Agentless
Document11 pages
Truth About Agent Vs Agentless
selar89
Pas encore d'évaluation
CompTIA Security
Document3 pages
CompTIA Security
selar89
Pas encore d'évaluation
IPv6 Security Talk 2012
Document112 pages
IPv6 Security Talk 2012
selar89
Pas encore d'évaluation
Classic Poems To Memorize
Document56 pages
Classic Poems To Memorize
selar89
100% (1)
Acid and Base Balance
Document5 pages
Acid and Base Balance
selar89
Pas encore d'évaluation
2003 30
Document11 pages
2003 30
selar89
Pas encore d'évaluation
Cumulative Report - Unofficial: Hamilton County - General Election Unofficial - November 02, 2010
Document21 pages
Cumulative Report - Unofficial: Hamilton County - General Election Unofficial - November 02, 2010
selar89
Pas encore d'évaluation
Rse
Document60 pages
Rse
H S Vishwanath Shastry
Pas encore d'évaluation
Different Principles Tools and Techniques in Creating A Business
Document5 pages
Different Principles Tools and Techniques in Creating A Business
Luna Ledezma
Pas encore d'évaluation
Quiz 2 I - Prefix and Suffix Test
Document10 pages
Quiz 2 I - Prefix and Suffix Test
guait9
Pas encore d'évaluation
Model 900 Automated Viscometer: Drilling Fluids Equipment
Document2 pages
Model 900 Automated Viscometer: Drilling Fluids Equipment
Jazmin
Pas encore d'évaluation
Paper 4 Material Management Question Bank
Document3 pages
Paper 4 Material Management Question Bank
Dr. Rakshit Solanki
100% (2)
1 s2.0 S2238785423001345 Main
Document10 pages
1 s2.0 S2238785423001345 Main
Hamada Shoukry Mohammed
Pas encore d'évaluation
Measures For Floods
Document4 pages
Measures For Floods
Mutsitsiko
Pas encore d'évaluation
5 - Perception and Individual Decision Making in Organizational Behavior
Document25 pages
5 - Perception and Individual Decision Making in Organizational Behavior
JanaVrsalović
Pas encore d'évaluation
SQL
Document13 pages
SQL
Radhakrishnan__7263
Pas encore d'évaluation
Under Suitable Conditions, Butane, C: © OCR 2022. You May Photocopy This
Document13 pages
Under Suitable Conditions, Butane, C: © OCR 2022. You May Photocopy This
Mahmud Rahman
Pas encore d'évaluation
Products List
Document11 pages
Products List
Porag Ahmed
Pas encore d'évaluation
Alto Hotel Melbourne Green
Document2 pages
Alto Hotel Melbourne Green
Shubham Gupta
Pas encore d'évaluation
Visual Inspection Report
Document45 pages
Visual Inspection Report
Khoirul Anam
Pas encore d'évaluation
Reflective Memo 1-Practicum
Document5 pages
Reflective Memo 1-Practicum
api-400515862
Pas encore d'évaluation
Resa Auditing Theorydocx - Compress
Document64 pages
Resa Auditing Theorydocx - Compress
Mae
Pas encore d'évaluation
Evaporative Cooling
Document68 pages
Evaporative Cooling
shivas34regal
100% (1)
Model No. TH-65JX850M/MF Chassis. 9K56T: LED Television
Document53 pages
Model No. TH-65JX850M/MF Chassis. 9K56T: LED Television
Ravi Chandran
Pas encore d'évaluation
Skilled Worker Overseas FAQs - Manitoba Immigration and Economic Opportunities
Document2 pages
Skilled Worker Overseas FAQs - Manitoba Immigration and Economic Opportunities
wesam
Pas encore d'évaluation
Black Hole Safety Brochure Trifold Final
Document2 pages
Black Hole Safety Brochure Trifold Final
vixy1830
Pas encore d'évaluation
Group 4&5 Activity Syntax Analyzer
Document6 pages
Group 4&5 Activity Syntax Analyzer
Juan Pransisko
Pas encore d'évaluation
Steve Jobs
Document18 pages
Steve Jobs
Vibhor Aggarwal
Pas encore d'évaluation
Previous Papers GPSC Veterinary Officer AHI Advt. No. 33 2016 17 Date of Preliminary Test 08 01 2017 Subject Concerned Subject Que 101 To 300 Provisional Key PDF
Document18 pages
Previous Papers GPSC Veterinary Officer AHI Advt. No. 33 2016 17 Date of Preliminary Test 08 01 2017 Subject Concerned Subject Que 101 To 300 Provisional Key PDF
DrRameem Bloch
100% (1)