Data Forensics Investigation Report
VerifiedAdded on  2020/03/16
|17
|2568
|60
AI Summary
This document presents a detailed report on a digital forensics investigation. The investigation involved the recovery of data from a laptop and external hard drive belonging to Mrs. Waugh. The recovered data includes email addresses, company names, and credit card numbers, suggesting involvement in fraudulent activities. The report outlines the investigative process, tools used (ProDiscover), and security measures taken during evidence handling. It concludes that the collected evidence supports a strong case against Mrs. Waugh and may lead to uncovering further associates involved in the criminal operation.
Contribute Materials
Your contribution can guide someone’s learning journey. Share your
documents today.
[Document Title]
[Document Subtitle]
ABSTRACT
[Type the abstract of the document here. The abstract is typically a short summary of the
contents of the document.]
[Document Subtitle]
ABSTRACT
[Type the abstract of the document here. The abstract is typically a short summary of the
contents of the document.]
Secure Best Marks with AI Grader
Need help grading? Try our AI Grader for instant feedback on your assignments.
Abstract
The current project is about the investigation of the laptop that was being held at the airport
baggage scanning process at the Melbourne International Airport. The person under investigation
is Mrs. Waugh. The baggage had digital devices of which we would be taking care of the
investigation, the devices that were being confiscated are Laptop and External HDD drive. The
culprit was on the way back from Pakistan hence the suspicion was on higher side.
2
The current project is about the investigation of the laptop that was being held at the airport
baggage scanning process at the Melbourne International Airport. The person under investigation
is Mrs. Waugh. The baggage had digital devices of which we would be taking care of the
investigation, the devices that were being confiscated are Laptop and External HDD drive. The
culprit was on the way back from Pakistan hence the suspicion was on higher side.
2
Table of Contents
Introduction............................................................................................................................4
CUSTODY OF EXHIBIT.......................................................................................................................4
Analysis Conducted..........................................................................................................................4
Findings.........................................................................................................................................16
Conclusion.....................................................................................................................................16
Summary of the report and results obtained.........................................................................16
References.............................................................................................................................17
3
Introduction............................................................................................................................4
CUSTODY OF EXHIBIT.......................................................................................................................4
Analysis Conducted..........................................................................................................................4
Findings.........................................................................................................................................16
Conclusion.....................................................................................................................................16
Summary of the report and results obtained.........................................................................16
References.............................................................................................................................17
3
Introduction
The devices under the investigation are Laptop and External HDD which were confiscated from
the Mrs. Waugh at the Airport baggage scanner. The Malicious looking Mrs. Waugh looked
tensed at the airport reporting stations, the baggage under the scanner looked suspicious and was
immediately taken into investigation by the authorities. The Laptop and the External HDD being
the digital devices then were confiscated and were handed over to the investigation team and rest
of the baggage was left to the crime police for further investigations.
CUSTODY OF EXHIBIT
On 26th September 2017 at 1:15 am the flight from Pakistan landed Adelaide International airport
having the number TR354, the during the routine baggage scan the baggage had some malicious
packets along with the digital devices. The digital evidences include a Laptop of Model No.:
YT98987 and Serial No.: YT786393650300752 and External HDD with the serial No.
GHDD7868667 were found and confiscated. Officer Maxwell confiscated and sealed the devices
into the baggage number ID4533 for the case and were handed over to the Digital Investigator
Officer Mr. Zampa. The initial investigation revealed that the External HDD size was 500 GB.
Analysis Conducted
The digital evidences include a Laptop of Model No.: YT98987 and Serial No.:
YT786393650300752 and External HDD with the serial No. GHDD7868667. The devices were
given to the investigation team in the sealed envelope No. ID34244. The office of digital devices
is situated at the Adelaide. The devices were being digitally copied and all the digital evidences
then being secured, the copy mode used is logical copy with bit by bit operation so as to make
the exact copy using special software like ProDiscover. The extra hardware protects the any
write operation on the devices. (Zhicong, Delin & Shunxiang, 2008)
The images being created are kept and their backup as well being created and stored on other
external devices as well as on cloud so that in case of any haphazard the evidences are secured.
The Laptop that was being confiscated had the following configuration:
 Intel Core2Duo dual core
 500 GB HDD with different size partition
4
The devices under the investigation are Laptop and External HDD which were confiscated from
the Mrs. Waugh at the Airport baggage scanner. The Malicious looking Mrs. Waugh looked
tensed at the airport reporting stations, the baggage under the scanner looked suspicious and was
immediately taken into investigation by the authorities. The Laptop and the External HDD being
the digital devices then were confiscated and were handed over to the investigation team and rest
of the baggage was left to the crime police for further investigations.
CUSTODY OF EXHIBIT
On 26th September 2017 at 1:15 am the flight from Pakistan landed Adelaide International airport
having the number TR354, the during the routine baggage scan the baggage had some malicious
packets along with the digital devices. The digital evidences include a Laptop of Model No.:
YT98987 and Serial No.: YT786393650300752 and External HDD with the serial No.
GHDD7868667 were found and confiscated. Officer Maxwell confiscated and sealed the devices
into the baggage number ID4533 for the case and were handed over to the Digital Investigator
Officer Mr. Zampa. The initial investigation revealed that the External HDD size was 500 GB.
Analysis Conducted
The digital evidences include a Laptop of Model No.: YT98987 and Serial No.:
YT786393650300752 and External HDD with the serial No. GHDD7868667. The devices were
given to the investigation team in the sealed envelope No. ID34244. The office of digital devices
is situated at the Adelaide. The devices were being digitally copied and all the digital evidences
then being secured, the copy mode used is logical copy with bit by bit operation so as to make
the exact copy using special software like ProDiscover. The extra hardware protects the any
write operation on the devices. (Zhicong, Delin & Shunxiang, 2008)
The images being created are kept and their backup as well being created and stored on other
external devices as well as on cloud so that in case of any haphazard the evidences are secured.
The Laptop that was being confiscated had the following configuration:
 Intel Core2Duo dual core
 500 GB HDD with different size partition
4
Secure Best Marks with AI Grader
Need help grading? Try our AI Grader for instant feedback on your assignments.
 8 GB RAM
External HDD was also imaged and the images were kept as in the case of the Laptop HDD at
multiple locations, (Zhicong, Delin & Shunxiang, 2008) the imaging software used was
ProDiscover and the screenshot of the entire process is being given below:
5
External HDD was also imaged and the images were kept as in the case of the Laptop HDD at
multiple locations, (Zhicong, Delin & Shunxiang, 2008) the imaging software used was
ProDiscover and the screenshot of the entire process is being given below:
5
The two-layer security in order to make sure nothing is being written on the investigating devices
the Hardware with write block switch is being used in order to make the copy, the software used
is ProDiscover that would help in mitigating the chance of anything being written in the digital
evidences. (Bariki, Hashmi & Baggili, 2011) Therefore, the devices are never being written and
remain in the state in which they were being confiscated. The exact copy is made using the
ProDiscover and the process is being shown below:
6
the Hardware with write block switch is being used in order to make the copy, the software used
is ProDiscover that would help in mitigating the chance of anything being written in the digital
evidences. (Bariki, Hashmi & Baggili, 2011) Therefore, the devices are never being written and
remain in the state in which they were being confiscated. The exact copy is made using the
ProDiscover and the process is being shown below:
6
The logical mode is used in order copy that enables us to make the partition based copy of the
hdd, this way we can easily create the exact copy of the partition and investigate the smaller
region by region that could help in speeding up the entire process. (Bariki, Hashmi & Baggili,
2011) The disk images can be further analyzed using the FTKImager software and findings can
be reported to help discover the evidences that could help in creating solid evidence and case
against the culprit Mrs. Waugh.
7
hdd, this way we can easily create the exact copy of the partition and investigate the smaller
region by region that could help in speeding up the entire process. (Bariki, Hashmi & Baggili,
2011) The disk images can be further analyzed using the FTKImager software and findings can
be reported to help discover the evidences that could help in creating solid evidence and case
against the culprit Mrs. Waugh.
7
Paraphrase This Document
Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser
The USB drive is being copied and using the FTKImager the investigation could be carried out
and the possible evidences could be managed and checked upon. The examination is up to the
forensic expert for pursuing the USB drive further. (Bariki, Hashmi & Baggili, 2011)
8
and the possible evidences could be managed and checked upon. The examination is up to the
forensic expert for pursuing the USB drive further. (Bariki, Hashmi & Baggili, 2011)
8
The logical drive option is used in order to create the specific hard disk partition and being
copied to make the original device copy.
Analysis of the HDD drive copied:
9
copied to make the original device copy.
Analysis of the HDD drive copied:
9
There have been many files and folders that have been deleted from the disk, the software that
have been used is the FTKImager in order to analyze the HDD images for the purpose of
recovering and reading the files that have been deleted. The recovered files then would help in
creating the strong evidences against the culprit so that we can frame the culprit. (Garfinkel,
Malan, Dubec, Stevens & Pham, 2006)
Several files were being found in the image that were deleted and using the FTKImager we were
easily able to the recover them, the many files recovered had nothing much as solid evidence but
there were some files that could have been easily being taken into consideration. (Garfinkel,
Malan, Dubec, Stevens & Pham, 2006)
The following investigation was done and the data found have been given below (small snippet
for the report analysis)
aliquet.nec.imperdiet@loremegetmollis.co.uk,Facilisis Industries,365155-
4986,670670990080386619
pede@odioPhasellusat.ca,Etiam Ligula Incorporated,358700-4601,4911672572360606
euismod.est.arcu@Cras.org,Blandit Mattis PC,346040-0736,30312444432861
sed@quamPellentesquehabitant.net,Sed Hendrerit PC,188798-4860,30340871470658
at.velit@estNunc.edu,Mauris Blandit Consulting,468395-8070,2014 -713763 -89029
nec@augueac.ca,Auctor Associates,619882-9621,670917494635654335
elit.Nulla.facilisi@eusemPellentesque.net,Lobortis Nisi Nibh LLC,347631-7155,3444 -872665 -
73389
malesuada.vel.venenatis@idmagnaet.com,Rutrum Eu Associates,183000-
4055,5401213060534420
ante.ipsum.primis@eleifendCrassed.org,Lobortis Foundation,714092-4338,30200779787985
pharetra.ut@sitametnulla.com,Etiam Vestibulum Massa Industries,673946-
8152,309096838733844
facilisis@est.ca,Aliquam Erat Volutpat Incorporated,594049-4783,213163 -8954912239
bibendum.sed.est@miDuis.com,Eget Odio Aliquam Corp.,729184-4061,658 -94472 -73067 -412
imperdiet.dictum@parturient.org,Duis A Mi LLP,187115-8224,491750 -6860709583
tincidunt.orci.quis@necmalesuada.net,Aliquam Erat Volutpat Inc.,723291-5434,309292 -
2814616551
Praesent.eu.dui@semsempererat.edu,Ac Corporation,186971-0929,375113917802744
ac.tellus@Proinsed.edu,Neque Associates,509657-4404,670646 -9512923336
Vestibulum.accumsan@ornareegestasligula.edu,Diam Luctus Lobortis LLC,779983-
1164,180018084163256
nunc.sit@aliquetPhasellus.net,Aliquam Iaculis Lacus Incorporated,529351-1472,647506 -
5335754210
per.inceptos.hymenaeos@tempusmauris.net,Nibh Enim Inc.,173394-4233,4532827006844893
a@Vestibulumaccumsanneque.net,Vehicula Risus Nulla Company,516522-
8544,67718882521512379
lorem.lorem@magnisdis.net,Ante Iaculis PC,496518-3611,63043300785583106
10
have been used is the FTKImager in order to analyze the HDD images for the purpose of
recovering and reading the files that have been deleted. The recovered files then would help in
creating the strong evidences against the culprit so that we can frame the culprit. (Garfinkel,
Malan, Dubec, Stevens & Pham, 2006)
Several files were being found in the image that were deleted and using the FTKImager we were
easily able to the recover them, the many files recovered had nothing much as solid evidence but
there were some files that could have been easily being taken into consideration. (Garfinkel,
Malan, Dubec, Stevens & Pham, 2006)
The following investigation was done and the data found have been given below (small snippet
for the report analysis)
aliquet.nec.imperdiet@loremegetmollis.co.uk,Facilisis Industries,365155-
4986,670670990080386619
pede@odioPhasellusat.ca,Etiam Ligula Incorporated,358700-4601,4911672572360606
euismod.est.arcu@Cras.org,Blandit Mattis PC,346040-0736,30312444432861
sed@quamPellentesquehabitant.net,Sed Hendrerit PC,188798-4860,30340871470658
at.velit@estNunc.edu,Mauris Blandit Consulting,468395-8070,2014 -713763 -89029
nec@augueac.ca,Auctor Associates,619882-9621,670917494635654335
elit.Nulla.facilisi@eusemPellentesque.net,Lobortis Nisi Nibh LLC,347631-7155,3444 -872665 -
73389
malesuada.vel.venenatis@idmagnaet.com,Rutrum Eu Associates,183000-
4055,5401213060534420
ante.ipsum.primis@eleifendCrassed.org,Lobortis Foundation,714092-4338,30200779787985
pharetra.ut@sitametnulla.com,Etiam Vestibulum Massa Industries,673946-
8152,309096838733844
facilisis@est.ca,Aliquam Erat Volutpat Incorporated,594049-4783,213163 -8954912239
bibendum.sed.est@miDuis.com,Eget Odio Aliquam Corp.,729184-4061,658 -94472 -73067 -412
imperdiet.dictum@parturient.org,Duis A Mi LLP,187115-8224,491750 -6860709583
tincidunt.orci.quis@necmalesuada.net,Aliquam Erat Volutpat Inc.,723291-5434,309292 -
2814616551
Praesent.eu.dui@semsempererat.edu,Ac Corporation,186971-0929,375113917802744
ac.tellus@Proinsed.edu,Neque Associates,509657-4404,670646 -9512923336
Vestibulum.accumsan@ornareegestasligula.edu,Diam Luctus Lobortis LLC,779983-
1164,180018084163256
nunc.sit@aliquetPhasellus.net,Aliquam Iaculis Lacus Incorporated,529351-1472,647506 -
5335754210
per.inceptos.hymenaeos@tempusmauris.net,Nibh Enim Inc.,173394-4233,4532827006844893
a@Vestibulumaccumsanneque.net,Vehicula Risus Nulla Company,516522-
8544,67718882521512379
lorem.lorem@magnisdis.net,Ante Iaculis PC,496518-3611,63043300785583106
10
Secure Best Marks with AI Grader
Need help grading? Try our AI Grader for instant feedback on your assignments.
ante@hendrerita.com,Metus Vivamus Euismod Ltd,399458-8725,516461 -154529 -5573
Sed.nulla.ante@gravida.net,Vel Sapien Incorporated,033072-1069,677121121846811670
lobortis@lacus.org,Laoreet Lectus LLC,702356-7105,647096 -648107 -5190
gravida@duiCumsociis.co.uk,Porttitor Scelerisque Neque Corporation,726688-4647,4913 -2452
-3400 -8968
quis.accumsan.convallis@dolorvitaedolor.org,Rutrum Institute,657909-4472,36736134409207
feugiat.nec@posuere.edu,Nunc Sed Libero LLP,242893-7631,4905572567583608825
Phasellus.in@non.ca,A Incorporated,103137-8548,4556279512054
augue.malesuada.malesuada@magnaLorem.ca,Enim Industries,693609-
8695,3098940229638022
aliquet@elit.net,Quis Arcu Vel Consulting,356051-6563,2149 -374019 -97569
Proin.nisl@ornarelectusante.ca,Duis Volutpat Nunc LLC,324682-1007,544455 -581328 -4995
Ut.nec.urna@arcuVivamus.net,Magna Consulting,273685-1805,491791 -816515 -4409
lobortis.mauris.Suspendisse@Sedeu.edu,Lorem PC,176748-4064,4911008051763118303
tincidunt.adipiscing@dolorsitamet.net,Ultricies Ornare Elit Ltd,105023-6346,3736 -791350 -
41556
natoque.penatibus.et@neque.co.uk,Donec Felis Orci Company,994716-3698,6304 -0599 -0183 -
3141
fermentum.metus.Aenean@Sednec.edu,Massa Integer Inc.,837574-9531,649 -03512 -83406 -
743
lacinia.at.iaculis@nectempusmauris.co.uk,Sed Est Ltd,405009-2016,525905 -261826 -3972
molestie@etarcuimperdiet.co.uk,Ante Associates,066614-0058,36601952955212
tempus.eu.ligula@Pellentesqueutipsum.co.uk,Maecenas Malesuada Incorporated,696665-
8707,538867 -3694595138
neque.Nullam@mi.com,Lacus Quisque Imperdiet LLP,205424-6448,30012816650161
Cras.eu@velitegetlaoreet.co.uk,Arcu Aliquam Limited,193243-1891,6304078400147811
Class.aptent@dolor.edu,Sed Consulting,034274-2954,376557577628360
Maecenas.ornare.egestas@vestibulummassa.ca,Ipsum Curabitur Company,674834-0145,1800 -
9118 -2020 -5571
arcu@egestashendrerit.ca,Nisl Inc.,822464-3521,6481 -2028 -7301 -0240
Integer@sagittis.co.uk,Aliquet Limited,804779-8890,455 -68925 -25533 -048
odio.a.purus@lorem.com,Tincidunt Donec Vitae Consulting,314342-
1604,675963856627995334
Proin.dolor.Nulla@laoreetipsum.com,A Arcu Limited,937915-5253,180004950096010
pede@Vivamus.co.uk,Lacus Cras Interdum Corporation,865757-5877,6706759281341384258
at.pede.Cras@imperdiet.net,Scelerisque Sed Sapien LLC,878595-1230,2131324924684493
sed@ac.org,Mauris A Corp.,257350-3618,180054937836889
tincidunt.neque@maurisutmi.co.uk,Dis Parturient Montes Institute,768236-
1170,6706059641623889
malesuada.fringilla.est@nisidictum.ca,Sodales At Velit LLC,655544-3099,4532533635213
tortor.at.risus@Suspendissetristique.com,Nunc In At Corporation,419622-
1412,5528972992083230
eu.ligula@euturpis.net,Diam Vel Corp.,723796-9907,30371330585885
Fusce@etarcuimperdiet.co.uk,Commodo Auctor Velit Ltd,132330-1190,538983 -2513374633
11
Sed.nulla.ante@gravida.net,Vel Sapien Incorporated,033072-1069,677121121846811670
lobortis@lacus.org,Laoreet Lectus LLC,702356-7105,647096 -648107 -5190
gravida@duiCumsociis.co.uk,Porttitor Scelerisque Neque Corporation,726688-4647,4913 -2452
-3400 -8968
quis.accumsan.convallis@dolorvitaedolor.org,Rutrum Institute,657909-4472,36736134409207
feugiat.nec@posuere.edu,Nunc Sed Libero LLP,242893-7631,4905572567583608825
Phasellus.in@non.ca,A Incorporated,103137-8548,4556279512054
augue.malesuada.malesuada@magnaLorem.ca,Enim Industries,693609-
8695,3098940229638022
aliquet@elit.net,Quis Arcu Vel Consulting,356051-6563,2149 -374019 -97569
Proin.nisl@ornarelectusante.ca,Duis Volutpat Nunc LLC,324682-1007,544455 -581328 -4995
Ut.nec.urna@arcuVivamus.net,Magna Consulting,273685-1805,491791 -816515 -4409
lobortis.mauris.Suspendisse@Sedeu.edu,Lorem PC,176748-4064,4911008051763118303
tincidunt.adipiscing@dolorsitamet.net,Ultricies Ornare Elit Ltd,105023-6346,3736 -791350 -
41556
natoque.penatibus.et@neque.co.uk,Donec Felis Orci Company,994716-3698,6304 -0599 -0183 -
3141
fermentum.metus.Aenean@Sednec.edu,Massa Integer Inc.,837574-9531,649 -03512 -83406 -
743
lacinia.at.iaculis@nectempusmauris.co.uk,Sed Est Ltd,405009-2016,525905 -261826 -3972
molestie@etarcuimperdiet.co.uk,Ante Associates,066614-0058,36601952955212
tempus.eu.ligula@Pellentesqueutipsum.co.uk,Maecenas Malesuada Incorporated,696665-
8707,538867 -3694595138
neque.Nullam@mi.com,Lacus Quisque Imperdiet LLP,205424-6448,30012816650161
Cras.eu@velitegetlaoreet.co.uk,Arcu Aliquam Limited,193243-1891,6304078400147811
Class.aptent@dolor.edu,Sed Consulting,034274-2954,376557577628360
Maecenas.ornare.egestas@vestibulummassa.ca,Ipsum Curabitur Company,674834-0145,1800 -
9118 -2020 -5571
arcu@egestashendrerit.ca,Nisl Inc.,822464-3521,6481 -2028 -7301 -0240
Integer@sagittis.co.uk,Aliquet Limited,804779-8890,455 -68925 -25533 -048
odio.a.purus@lorem.com,Tincidunt Donec Vitae Consulting,314342-
1604,675963856627995334
Proin.dolor.Nulla@laoreetipsum.com,A Arcu Limited,937915-5253,180004950096010
pede@Vivamus.co.uk,Lacus Cras Interdum Corporation,865757-5877,6706759281341384258
at.pede.Cras@imperdiet.net,Scelerisque Sed Sapien LLC,878595-1230,2131324924684493
sed@ac.org,Mauris A Corp.,257350-3618,180054937836889
tincidunt.neque@maurisutmi.co.uk,Dis Parturient Montes Institute,768236-
1170,6706059641623889
malesuada.fringilla.est@nisidictum.ca,Sodales At Velit LLC,655544-3099,4532533635213
tortor.at.risus@Suspendissetristique.com,Nunc In At Corporation,419622-
1412,5528972992083230
eu.ligula@euturpis.net,Diam Vel Corp.,723796-9907,30371330585885
Fusce@etarcuimperdiet.co.uk,Commodo Auctor Velit Ltd,132330-1190,538983 -2513374633
11
The data was being recovered was easy to guess as the first being the email address, second
being the name of the company or organization and then being the credit card numbers. The
further investigation on the data can be done by the police as this would come under the crime
investigation. (Bariki, Hashmi & Baggili, 2011)
The next step is to recover the image files so as to find out the bmp and gif based images, the
tool used to investigate the images is the S-Tool in order to recover the secret files from the
images hidden under them. The files whose resolution is small and size being on the higher side
are being specially investigated. The passphrases for the purpose being selected randomly and S-
Tools are being recovered by the files. To recover the secret text the secret passphrase and
encryption combination are being tried and the data file is being revealed. (Bariki, Hashmi &
Baggili, 2011)
The data revealed from the file and being investigated the following information was being
revealed by the software. The hidden file in the images shows the malicious activities being
planned by Mrs. Waugh. (Bariki, Hashmi & Baggili, 2011)
Purus In LLP,283887 9464,0.4310578482,16421011-2704
Magnis Dis Corp.,132821 8811,-0.1999274303,16300625-4506
12
being the name of the company or organization and then being the credit card numbers. The
further investigation on the data can be done by the police as this would come under the crime
investigation. (Bariki, Hashmi & Baggili, 2011)
The next step is to recover the image files so as to find out the bmp and gif based images, the
tool used to investigate the images is the S-Tool in order to recover the secret files from the
images hidden under them. The files whose resolution is small and size being on the higher side
are being specially investigated. The passphrases for the purpose being selected randomly and S-
Tools are being recovered by the files. To recover the secret text the secret passphrase and
encryption combination are being tried and the data file is being revealed. (Bariki, Hashmi &
Baggili, 2011)
The data revealed from the file and being investigated the following information was being
revealed by the software. The hidden file in the images shows the malicious activities being
planned by Mrs. Waugh. (Bariki, Hashmi & Baggili, 2011)
Purus In LLP,283887 9464,0.4310578482,16421011-2704
Magnis Dis Corp.,132821 8811,-0.1999274303,16300625-4506
12
Tellus Justo Company,037681 8647,0.1585892172,16780312-6007
Mollis Dui In LLP,537701 4302,-0.0997272243,16430504-9498
Mi Pede Nonummy Associates,924024 1316,-0.0743062599,16311116-5985
In Cursus Inc.,317283 3521,-0.143298066,16640221-5930
Interdum PC,719665 2171,-0.2728092945,16790905-1158
Curae; Donec Industries,908861 3527,-0.0158876399,16490705-6651
Phasellus Dapibus Quam Corporation,798605 6070,0.1961998078,16420110-
7598
Sapien Gravida Non Associates,307114 5845,-0.2954613787,16570322-0235
Porttitor Scelerisque Neque Foundation,073854 4261,-
0.0743369335,16060115-8207
Suspendisse Company,784127 9305,-0.2568650451,16450401-5852
Ornare Tortor Corp.,326020 0732,-0.14861969,16470314-6771
Viverra Ltd,612872 0197,-0.0540805376,16600306-7110
Faucibus LLC,074630 7651,0.1101871286,16500224-0165
Mauris Non Associates,068236 1449,-0.1298097156,16540321-9149
Magna Cras PC,297239 6655,-0.0129996863,16000622-1006
Faucibus Ut Nulla Corporation,203118 5271,0.1542995918,16530125-9429
Urna Justo Institute,767731 5389,-0.3465816082,16830223-5893
Lectus Associates,987051 4974,0.0657970416,16090201-8381
Dui Associates,814058 4932,-0.4100752343,16470516-2529
Cras Eu Industries,553109 0586,-0.4607737612,16190628-3468
Maecenas Libero Est LLC,886705 4358,0.5850786779,16450724-5654
Vel Pede Corporation,212666 3778,0.1061358814,16610308-0245
Euismod Et Ltd,515389 2111,0.0035202604,16900210-7614
Eu Incorporated,346727 2153,-0.3637871355,16150727-1458
Id LLC,886581 5388,-0.2232275225,16710808-9645
Libero At Institute,578962 2056,-0.2822143738,16060824-0099
Duis LLC,403839 0367,0.0803691424,16890325-3220
Tristique Neque Venenatis Ltd,465834 3902,-0.2051493551,16581207-0992
Dolor Corp.,044175 0460,-0.0612405575,16120918-9537
Sem Elit Pharetra Incorporated,888853 7274,0.5352763102,16640703-4245
13
Mollis Dui In LLP,537701 4302,-0.0997272243,16430504-9498
Mi Pede Nonummy Associates,924024 1316,-0.0743062599,16311116-5985
In Cursus Inc.,317283 3521,-0.143298066,16640221-5930
Interdum PC,719665 2171,-0.2728092945,16790905-1158
Curae; Donec Industries,908861 3527,-0.0158876399,16490705-6651
Phasellus Dapibus Quam Corporation,798605 6070,0.1961998078,16420110-
7598
Sapien Gravida Non Associates,307114 5845,-0.2954613787,16570322-0235
Porttitor Scelerisque Neque Foundation,073854 4261,-
0.0743369335,16060115-8207
Suspendisse Company,784127 9305,-0.2568650451,16450401-5852
Ornare Tortor Corp.,326020 0732,-0.14861969,16470314-6771
Viverra Ltd,612872 0197,-0.0540805376,16600306-7110
Faucibus LLC,074630 7651,0.1101871286,16500224-0165
Mauris Non Associates,068236 1449,-0.1298097156,16540321-9149
Magna Cras PC,297239 6655,-0.0129996863,16000622-1006
Faucibus Ut Nulla Corporation,203118 5271,0.1542995918,16530125-9429
Urna Justo Institute,767731 5389,-0.3465816082,16830223-5893
Lectus Associates,987051 4974,0.0657970416,16090201-8381
Dui Associates,814058 4932,-0.4100752343,16470516-2529
Cras Eu Industries,553109 0586,-0.4607737612,16190628-3468
Maecenas Libero Est LLC,886705 4358,0.5850786779,16450724-5654
Vel Pede Corporation,212666 3778,0.1061358814,16610308-0245
Euismod Et Ltd,515389 2111,0.0035202604,16900210-7614
Eu Incorporated,346727 2153,-0.3637871355,16150727-1458
Id LLC,886581 5388,-0.2232275225,16710808-9645
Libero At Institute,578962 2056,-0.2822143738,16060824-0099
Duis LLC,403839 0367,0.0803691424,16890325-3220
Tristique Neque Venenatis Ltd,465834 3902,-0.2051493551,16581207-0992
Dolor Corp.,044175 0460,-0.0612405575,16120918-9537
Sem Elit Pharetra Incorporated,888853 7274,0.5352763102,16640703-4245
13
Paraphrase This Document
Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser
Mollis Company,492132 4002,0.1371757533,16991012-8926
Phasellus Nulla Integer Associates,962119 3565,-0.1004962437,16690420-
2451
Est Mauris Eu Ltd,404311 6849,-0.1341152923,16600524-6381
Sem Consulting,409324 8369,-0.4545940569,16770627-4581
Etiam Ligula Company,243560 8753,-0.1456838187,16750205-7206
Ipsum Nunc LLC,814179 0330,0.1641261574,16240807-2367
Sapien Nunc Pulvinar Incorporated,493782 4763,-0.161925388,16620715-
6115
Mauris Sit Amet Corp.,014624 5501,-0.244043938,16071122-8080
Etiam Corporation,609329 9037,-0.2942848745,16870110-7172
Integer Aliquam Adipiscing Foundation,137013
2118,0.3453834112,16470503-5055
Magna Duis Company,788981 4484,0.1237364009,16120403-3060
Ante Vivamus Inc.,244013 2286,-0.2710027365,16290214-4696
Eros Proin Ultrices Foundation,733037 6877,-0.1017044884,16170129-5923
Nibh Vulputate Mauris Incorporated,662690 1646,0.7067727951,16261105-
1323
Nunc Ullamcorper Corp.,127361 1275,-0.26663591,16720727-6556
Justo Nec Foundation,907893 3125,-0.13004362,16760314-0109
Montes Nascetur Consulting,873191 8473,0.1318947871,16290216-7986
Montes Industries,623846 2516,0.0128444872,16510429-8244
Aliquam Erat PC,414124 2430,0.2870260937,16090317-6014
Quisque PC,235723 1238,0.1512399017,16300528-0544
Hendrerit Donec Incorporated,556279 7042,0.0252852401,16670418-8066
Nunc Id LLC,453123 8675,-0.0240660524,16881107-2290
At Velit Limited,209196 9184,0.1763703318,16731102-2185
Semper Nam Tempor LLC,918730 7070,0.122363324,16350816-7248
Ut LLP,878529 0670,0.1891162099,16790323-4412
Dictum Placerat LLP,333220 2021,0.0280627096,16360723-3529
Dolor Sit Amet Inc.,708788 9064,0.0335470791,16570829-5265
Tincidunt Adipiscing LLC,977270 2305,-0.0388222605,16610828-1277
Morbi Quis Urna Associates,615869 9303,-0.0280534004,16390220-3441
14
Phasellus Nulla Integer Associates,962119 3565,-0.1004962437,16690420-
2451
Est Mauris Eu Ltd,404311 6849,-0.1341152923,16600524-6381
Sem Consulting,409324 8369,-0.4545940569,16770627-4581
Etiam Ligula Company,243560 8753,-0.1456838187,16750205-7206
Ipsum Nunc LLC,814179 0330,0.1641261574,16240807-2367
Sapien Nunc Pulvinar Incorporated,493782 4763,-0.161925388,16620715-
6115
Mauris Sit Amet Corp.,014624 5501,-0.244043938,16071122-8080
Etiam Corporation,609329 9037,-0.2942848745,16870110-7172
Integer Aliquam Adipiscing Foundation,137013
2118,0.3453834112,16470503-5055
Magna Duis Company,788981 4484,0.1237364009,16120403-3060
Ante Vivamus Inc.,244013 2286,-0.2710027365,16290214-4696
Eros Proin Ultrices Foundation,733037 6877,-0.1017044884,16170129-5923
Nibh Vulputate Mauris Incorporated,662690 1646,0.7067727951,16261105-
1323
Nunc Ullamcorper Corp.,127361 1275,-0.26663591,16720727-6556
Justo Nec Foundation,907893 3125,-0.13004362,16760314-0109
Montes Nascetur Consulting,873191 8473,0.1318947871,16290216-7986
Montes Industries,623846 2516,0.0128444872,16510429-8244
Aliquam Erat PC,414124 2430,0.2870260937,16090317-6014
Quisque PC,235723 1238,0.1512399017,16300528-0544
Hendrerit Donec Incorporated,556279 7042,0.0252852401,16670418-8066
Nunc Id LLC,453123 8675,-0.0240660524,16881107-2290
At Velit Limited,209196 9184,0.1763703318,16731102-2185
Semper Nam Tempor LLC,918730 7070,0.122363324,16350816-7248
Ut LLP,878529 0670,0.1891162099,16790323-4412
Dictum Placerat LLP,333220 2021,0.0280627096,16360723-3529
Dolor Sit Amet Inc.,708788 9064,0.0335470791,16570829-5265
Tincidunt Adipiscing LLC,977270 2305,-0.0388222605,16610828-1277
Morbi Quis Urna Associates,615869 9303,-0.0280534004,16390220-3441
14
Bibendum Sed Associates,228187 9326,-0.1963684768,16840308-8571
Risus Nunc Corporation,913295 6054,0.1187652829,16760420-1272
Dui Incorporated,239447 2605,-0.0846458626,16450223-7086
Dignissim Magna A Company,758022 9677,-0.012794866,16240816-7613
Accumsan Sed Foundation,419313 6407,0.3748733912,16220812-0085
Consectetuer Ltd,054076 0436,0.068583807,16130430-4619
Taciti Associates,762729 7471,-0.130920162,16390624-7964
Nam Ligula Elit Institute,162781 3569,-0.2585570721,16400627-8032
Non Corporation,228879 4254,0.0034404979,16780510-3483
Erat Volutpat Nulla Company,369355 5041,0.2176165685,16500518-7587
Eleifend Inc.,552914 2001,-0.0028583047,16000809-5754
At Iaculis Quis Corp.,967378 2026,-0.1963786934,16650407-3690
Augue Sed Molestie Limited,106684 9207,-0.3540618648,16330106-5805
Eget Massa Suspendisse Industries,196102 2769,0.1250953438,16300807-
4118
Amet Associates,495651 0806,0.2551218769,16880814-5273
Cum Sociis Corp.,017426 8664,0.1727329564,16221216-4863
Molestie Corporation,085598 5305,-0.387469213,16341126-9164
Tellus Suspendisse Sed LLC,343986 9235,0.1158950683,16570203-6863
Lorem Institute,537516 6823,0.1377098868,16110803-1608
Duis Dignissim Ltd,277375 9853,-0.0540144092,16780609-1653
Nam Consequat Dolor PC,233901 4983,-0.0890216446,16900623-3812
In LLC,166175 8464,0.0221390364,16950212-0174
Vitae Orci Inc.,746193 7208,-0.2242973119,16961125-1365
Placerat Cras Limited,484793 1716,0.0528654205,16560108-7165
Convallis Corp.,608915 0533,0.2435166009,16220907-0594
Sapien Nunc LLC,567227 8321,0.4677666125,16471021-4489
Et Consulting,582541 7198,-0.0786763165,16500809-0622
Arcu Sed Eu Associates,378992 9381,0.3140778526,16830901-2931
Nec Tellus Inc.,387933 1274,0.1662612794,16750322-6495
Ante Corp.,707868 0712,0.2191068894,16880806-6503
Eu Tellus Eu Corporation,459090 8945,-0.0603987243,16340125-4713
15
Risus Nunc Corporation,913295 6054,0.1187652829,16760420-1272
Dui Incorporated,239447 2605,-0.0846458626,16450223-7086
Dignissim Magna A Company,758022 9677,-0.012794866,16240816-7613
Accumsan Sed Foundation,419313 6407,0.3748733912,16220812-0085
Consectetuer Ltd,054076 0436,0.068583807,16130430-4619
Taciti Associates,762729 7471,-0.130920162,16390624-7964
Nam Ligula Elit Institute,162781 3569,-0.2585570721,16400627-8032
Non Corporation,228879 4254,0.0034404979,16780510-3483
Erat Volutpat Nulla Company,369355 5041,0.2176165685,16500518-7587
Eleifend Inc.,552914 2001,-0.0028583047,16000809-5754
At Iaculis Quis Corp.,967378 2026,-0.1963786934,16650407-3690
Augue Sed Molestie Limited,106684 9207,-0.3540618648,16330106-5805
Eget Massa Suspendisse Industries,196102 2769,0.1250953438,16300807-
4118
Amet Associates,495651 0806,0.2551218769,16880814-5273
Cum Sociis Corp.,017426 8664,0.1727329564,16221216-4863
Molestie Corporation,085598 5305,-0.387469213,16341126-9164
Tellus Suspendisse Sed LLC,343986 9235,0.1158950683,16570203-6863
Lorem Institute,537516 6823,0.1377098868,16110803-1608
Duis Dignissim Ltd,277375 9853,-0.0540144092,16780609-1653
Nam Consequat Dolor PC,233901 4983,-0.0890216446,16900623-3812
In LLC,166175 8464,0.0221390364,16950212-0174
Vitae Orci Inc.,746193 7208,-0.2242973119,16961125-1365
Placerat Cras Limited,484793 1716,0.0528654205,16560108-7165
Convallis Corp.,608915 0533,0.2435166009,16220907-0594
Sapien Nunc LLC,567227 8321,0.4677666125,16471021-4489
Et Consulting,582541 7198,-0.0786763165,16500809-0622
Arcu Sed Eu Associates,378992 9381,0.3140778526,16830901-2931
Nec Tellus Inc.,387933 1274,0.1662612794,16750322-6495
Ante Corp.,707868 0712,0.2191068894,16880806-6503
Eu Tellus Eu Corporation,459090 8945,-0.0603987243,16340125-4713
15
Ultricies Corporation,934355 5778,0.4248831811,16980726-9577
Semper Pretium Neque LLP,956458 5744,0.0252176562,16351102-6837
Massa Suspendisse Foundation,353888 9340,0.0003271644,16110509-4401
Mauris Sit Corporation,035073 4216,-0.1659375281,16070906-4349
Vehicula Risus Nulla Consulting,648576 5801,0.1415269729,16651028-4893
Ut Ltd,632738 3284,-0.0319814157,16220524-6347
Non Dapibus Rutrum Incorporated,238090 4488,-0.1751083559,16581204-
5721
Amet Faucibus Associates,274093 5271,0.0052574912,16861015-7433
Findings
The finding includes the following:
1. The data revealed from the file and being investigated the following information was
being revealed by the software
2. The data was being recovered was easy to guess as the first being the email address,
second being the name of the company or organization and then being the credit card
numbers.
Conclusion
The evidence collected can be used to make the strong case against Mrs. Waugh and the
evidence would surely help in uncovering other associates which could be further involved in
this racket and cases could also being filed against them.
Summary of the report and results obtained
The investigation details are being mentioned below with summary of the findings:
1. The digital evidences include a Laptop of Model No.: YT98987 and Serial No.:
YT786393650300752 and External HDD with the serial No. GHDD7868667 were found
and confiscated.
2. Copy of the devices were created using the ProDiscover and Hardware which blocks any
write operations
3. The evidences were kept in very high security after the imaging process.
4. OS of the Laptop was Windows 10.
16
Semper Pretium Neque LLP,956458 5744,0.0252176562,16351102-6837
Massa Suspendisse Foundation,353888 9340,0.0003271644,16110509-4401
Mauris Sit Corporation,035073 4216,-0.1659375281,16070906-4349
Vehicula Risus Nulla Consulting,648576 5801,0.1415269729,16651028-4893
Ut Ltd,632738 3284,-0.0319814157,16220524-6347
Non Dapibus Rutrum Incorporated,238090 4488,-0.1751083559,16581204-
5721
Amet Faucibus Associates,274093 5271,0.0052574912,16861015-7433
Findings
The finding includes the following:
1. The data revealed from the file and being investigated the following information was
being revealed by the software
2. The data was being recovered was easy to guess as the first being the email address,
second being the name of the company or organization and then being the credit card
numbers.
Conclusion
The evidence collected can be used to make the strong case against Mrs. Waugh and the
evidence would surely help in uncovering other associates which could be further involved in
this racket and cases could also being filed against them.
Summary of the report and results obtained
The investigation details are being mentioned below with summary of the findings:
1. The digital evidences include a Laptop of Model No.: YT98987 and Serial No.:
YT786393650300752 and External HDD with the serial No. GHDD7868667 were found
and confiscated.
2. Copy of the devices were created using the ProDiscover and Hardware which blocks any
write operations
3. The evidences were kept in very high security after the imaging process.
4. OS of the Laptop was Windows 10.
16
Secure Best Marks with AI Grader
Need help grading? Try our AI Grader for instant feedback on your assignments.
5. Account of the laptop was named Waugh
6. Browser history was also investigated but being out of scope of this reporting.
17
6. Browser history was also investigated but being out of scope of this reporting.
17
1 out of 17
![[object Object]](/_next/image/?url=%2F_next%2Fstatic%2Fmedia%2Flogo.6d15ce61.png&w=640&q=75){kind=small}
Your All-in-One AI-Powered Toolkit for Academic Success.
 +13062052269
info@desklib.com
Available 24*7 on WhatsApp / Email
![[object Object]](/_next/static/media/star-bottom.7253800d.svg)
Unlock your academic potential
© 2024  |  Zucol Services PVT LTD  |  All rights reserved.