Artifacts for Account Usage: Last Login || Success/Fail Logons || Last Password Change || Logon Types || RDP Usage.

Artifacts for file download Part 2: Firefox || Internet Explorer || Chrome.

Artifacts for file download Part 1: Open/Save MRU Artifacts || Email Attachments || Skype History

Artifacts for Deleted File or File Knowledge Part 2: Search -WordWheelQuery || Index.dat file://

Artifacts for Deleted File and file knowledge Part 1: ACMRU || Last Visited MRU || Vista/Win7-10 Thumbnails || Recycle Bin.

Artifacts for File Opening/Creation Part 2: Last Visited MRU || Office Recent Files || LNK Files || Prefetch || JumpLists.

Artifacts for File Opening/Creation Part 1: Open/Save MRU || Recent Files || Shell Bags

Artifacts for Program execution Part 2: Jump Lists || RunMRU Start || UserAssist

Artifacts for Program execution Part 1: Last Visited MRU || Application Compatibility Cache || Prefetch

Lnk files Analysis: Tool-->LECmd.exe

Unveiling the Significance of LNK Files in Digital Forensics

Recycle Bin $I analyses Tool-->I_Parse_v1.1

Recycle Bin forensic

Shell Bags Analysis: Tool-->SBECmd.exe or ShellBagsExplorer- GUI Version (Very Important artifact)

Understanding Shell Bags in Windows Forensics

Jump list Analysis: Tool-->JLECmd.exe

Unveiling the Significance of Jump list Files in Digital Forensics

Unveiling Suspicious Files with DensityScout

KAPE: A Detailed Exploration

Glimpses of Brilliance: Kape