Please read this article -
http://www.hackthissite.org/articles/read/8381. Find a****_****n by source review.
2. using Wireshark, find the c*****.**t file.
filtering by HTTP
If only we read Forum, I think we can guess the name of the file, even though we don't use wireshark.
3. overwrite the c*****.**t file to elevate the authority.
use Directory Traversal.
Please think where user's account is saved and where main_login is.
think how user's account can be changed.
Then, we can know where and how DT is used.
Time zone is not important.
4. using flash decompiler, decompile flash file to read the email.