Windows Directories

1. Amcache.hve - C:\Windows\AppCompat\Programs\Amcache.hve
2. Backup of User and Password - C:\Windows\repair\SAM
3. DNS file - C:\Windows\System32\drivers\etc\hosts
4. Network Config file - C:\Windows\System32\drivers\etc\networks
5. NTUSER.dat - C:\Windows\Users\*\NTUSER.dat
6. Prefetch files - C:\Windows\Prefetch
7. Security Log - C:\Windows\System32\config\SECURITY
8. Software Log - C:\Windows\System32\config\SOFTWARE
9. System Log - C:\Windows\System32\config\SYSTEM
10. Usernames and Password - C:\Windows\System32\config\SAM
11. Windows All User Startup - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
12. Windows Event Logs - C:\Windows\System32\winevt\
13. Windows User Startup - C:\Users\*\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup