?
Solved

Drive mapping in XP

Posted on 2013-01-14
6
Medium Priority
?
307 Views
Last Modified: 2013-01-15
Hi there.
A user in our organisation has since relocated to another dept with no access the their old computer.  They used to have a fileserver folder mapped as a drive on their profile on the old computer.  I need to transfer their files from the mapped drive, but since I can't login at the user, I have no way (that I know) of telling where the mapped drive pointed to on the server.  

Is there a config file somewhere in the user's profile that would indicate the drive mappings they were using?

Thanks :-)
0
Comment
Question by:Aaronazz
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 38776896
check the group policy/scripts . if they manually mapped them then you won't find the info.

thanks

 mike
0
 

Author Comment

by:Aaronazz
ID: 38776899
Unfortunately the user mapped the server folder themselves.
0
 
LVL 14

Accepted Solution

by:
Rob Miners earned 750 total points
ID: 38776944
You may be able to remote/access to the workstation and load the users ntuser.dat file to find the information.

HKEY_CURRENT_USER (HKCU)
Registry Values in the Keys control or contain configuration information that is specific to the currently logged-on User.

The settings are stored in files located under the Users directory for each User who has logged onto the computer. In windows 7 those files are the “C:\Users\(Username)\ NTUSER.DAT” file and the “C:\Users\(Username)\AppData\Local\Microsoft\Windows\ UsrClass.dat” file(s).

In XP the files can be found in "C:\Documents and Settings\(Username)\ NTUSER.DAT"

Manually Editing Profiles

http://technet.microsoft.com/en-us/library/cc722901.aspx

Windows 7 Registry Forensics

http://www.forensicmag.com/article/windows-7-registry-forensics-part-3

eXample:

In the registry editor

Use the mouse, to select "HKEY_LOCAL_MACHINE" so that it is highlighted

goto the "Registry" File Menu, choose "Load Hive"

Browse to Drive letter \Users\"User_Name" and type in ntuser.dat and press the Enter key to open the file.

Enter "$user" as the name for the key.

Highlight "$user" in the pane on the left.

navigate to $user

Once completed, ensure "$user" is highlighted and choose "Unload Hive" from the "Registry Menu".

Close regedt32.
0
WordPress Tutorial 4: Recommended Plugins

Now that you have WordPress installed, understand the interface, and know how to install new parts, let’s take a look at our recommended plugins.

 
LVL 18

Assisted Solution

by:Mike T
Mike T earned 750 total points
ID: 38778289
Does the user not remember? The simplest solution is to ask them surely...

Once you have mapped the user's hive (as above) look for mountpoint under
HKEY_CURRENT_USER\Software\Microsoft\windows\CurrentVersion\Explorer .
0
 

Author Closing Comment

by:Aaronazz
ID: 38778467
Thanks for all the advice.  

I did manage to access the ntuser.dat file on the remote computer from my computer, but became a bit nervous when it came to loading the hive on it locally.  Urgency became the priority and I ended up allowing the user a password reset to allow temporary access to another staff member onsite to log into the computer to look at the path displayed next the mapped drive in "My Computer".

I wil save this method for another day.  Thanks again.
0
 
LVL 14

Expert Comment

by:Rob Miners
ID: 38779994
Good to see that you are sorted :)
0

Featured Post

WordPress Tutorial 2: Terminology

An important part of learning any new piece of software is understanding the terminology it uses. Thankfully WordPress uses fairly simple names for everything that make it easy to start using the software.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article helps those who get the 0xc004d307 error when trying to rearm (reset the license) Office 2013 in a Virtual Desktop Infrastructure (VDI) and/or those trying to prep the master image for Microsoft Key Management (KMS) activation. (i.e.- C…
Here's a look at newsworthy articles and community happenings during the last month.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
In this video, viewers will be given step by step instructions on adjusting mouse, pointer and cursor visibility in Microsoft Windows 10. The video seeks to educate those who are struggling with the new Windows 10 Graphical User Interface. Change Cu…
Suggested Courses

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question