Laptop News

How to become a computer detective

In the detective series, the researcher sitting in front of the suspect’s computer, press four keys and get all the information sought . In real life is not so simple, but with the right tools it is possible to scan a computer in a few hours.

Looking for what? For images, text, deleted files, chat logs, web history, passwords and all files that can track a person’s activity on a computer . Of course, many of these utilities can also be used to rescue your own information.

Recover deleted files and emails

Unless someone perform periodic cleaning of empty space (for example, Disk Wipe ) or working in temporary environments (eg Live-CD or virtual machines), recovering deleted files is not only possible but simple.

DiskDigger

Some of the most effective tools for this task are DiskDigger , Recuva , Pandora Recovery and TestDisk , which rescues even lost partitions and boot sectors.

If the data is unreadable CDs and DVDs, worth trying a low-level reading ISOBuster . For deleted emails in Outlook Express, Format Recovery is a good free option.

Rescue Passwords

The password protection is a system used by many websites, messengers and office tools. Collect existing keys can save much valuable information.

* BrowserPasswordDecryptor recovers all passwords stored in web browsers

* MessenPass does the same to users and passwords Messenger, ICQ, Yahoo …

* Mail PassView rescues key local mail accounts (Outlook, Eudora, Thunderbird, etc.).

* BulletsPassView , showin and AsteriskKey reveal passwords hidden behind asterisks

* WirelessKeyDump get the passwords for WiFi networks

* FireMaster attempts to recover the master password for Firefox

Mail Passview

Nirsoft and SecurityXploded have many tools designed exclusively for password recovery, almost all executables from USB sticks. It should be remembered that only get passwords stored without protection and that to break the encryption is necessary to use cryptographic attacks (for example, Cain & Abel ).

Digging in caches and histories

When we are using computers, spend much of our time surfing and chatting. This creates products in the form of text and images: the "trash" (cache) and activity logs (records) that are automatically stored (unless cleaned regularly or use private modes ).

* Sniper Chat collects records, pictures and contacts from Messenger, AIM and Yahoo Messenger

* IECacheView, MozillaCacheView, OperaCacheView y ChromeCacheView exploran la caché

* VideoCacheView is dedicated to Flash videos that are stored in the cache

* MyLastSearch collects recent searches performed on Google, Yahoo and Bing

* SkypeLogView used to see which were the last calls made ​​on Skype

* LiveContactsView lists the contact details of Windows Live Messenger

* FlashCookieView analiza las cookies Flash

skypelogview

There are also utilities for specific scenarios. WinPrefetchView , for example, discusses the Prefetch folder for data related to the programs that run more frequently, while Rifiuti delves into the Recycle Bin.

Search documents and email attachments

Search documents is a logical step in any investigation. FI Tools is able to find more than 4,000 types of files and browse its contents. On the other hand, with the help of DocFetcher and Metadata Extractor can search for text and metadata of the documents on the hard disk. To find text, Look Drive is particularly effective.

Drive Look

To rummage in Outlook attachments, OutlookAttachView is incredibly useful. For a quick backup of emails and attachments from Mozilla Thunderbird MozBackup is the first choice. And if you want a quick viewer, low Viewer Mail .

Search, sort and retrieve images

A portable version of Picasa is the best partner to find and organize photos quickly, even Adobis Photo Sorter and Media Event Organizer also serve to classify the images into groups.

Media Event Organizer

To recover deleted photos (Sean honest node ), we recommend Adroit Photo Recovery and Forensic Photo Adroit , the tools of computer forensics specialist in the recovery of images produced.

Explore your hard disk and memory

When considering a computer, you need an overview of folders and files; SpaceSniffer , scanner or Portable WinDirStat offer quick summaries of sharing space on hard drives. To create a database folder, use getFolder and FileList .

SpaceSniffer

Finally, it may happen that the computer you’ve accessed is still on and with open programs. Check out what files are in use with OpenedFilesView and analyzes the memory with the help of a hex editor (eg WinHex or HxD ).

Más avanzados son MoonSols Windows Memory Toolkit y Volatility Framework, que analizan volcados de memoria y ficheros de hibernación de Windows, trozos de memoria "congelados" que pueden contener información valiosa.

Suites: OSForensics y Windows File Analyzer

OSForensics is a suite of computer forensics with a series of unique utilities: text search, contents of the disc, recent activity analyzer, search for deleted files or discordant display of memory and disk.

OSForensics

The particularity of OSForensics, it concentrates several tools in one window, it is your case manager, useful for organizing data from different investigations.

The simplest is Windows File Analyzer , which explores in miniature databases (Thumbs.db files) files, preload (Prefetch), Recent Documents, Internet Explorer history and trash from the Trash.

Windows File Analyzer

An important warning …

These tools are distributed freely, but the legitimacy of their use depends on you. Unless you are authorized to access a computer and extract information, they should not use them.

More Resources:

* Forensics Wiki

* Computer Forensics en Wikipedia

* E-Evidence Tools

* Digital Investigation Journal

Other Electronics News:

• acer btp-43d1 battery
• lenovo thinkpad t500 battery
• lenovo laptop batteries
• canon eos 40d battery grip
• laptop battery

 

Sandboxie: enters programs and websites in a cage

Imagine if every program you boot or website you open an animal loose in your computer: your code is rampant in the memory, leaving all traces of the hard disk, some difficult to eradicate. The virus does not act, because its mission is to prevent dangerous situations, not merely inconvenient.

The only way to run a program without affecting the operating system is isolated from the rest of the system. How? Through Sandbox ie literally, litter box – a program that intercepts any attempt to modify the system and locks it in the act, in short, a secure cage in which to open suspicious software. Let’s see how it works.

Installation and Getting Started

Sandboxie installation is very simple: just choose which language-in our case, Spanish-and follow the steps. The most sensitive is the Sandboxie driver installation, a low level component that is essential for blocking the programs in their attempts to access system resources.

Instalación de Sandboxie

Once installed and opened for the first time, Sandboxie automatically detects the installed applications that require special settings to run alone. Check the list to remove items and click OK. Do not disable this check, it is useful to increase the compatibility of Sandboxie with the software.

Sandboxie detecta aplicaciones instaladas

If the installer does not already done so, we recommend you enable integration with Windows Explorer. Click Configure and then click Integration with Windows Shell , once in the dialog box, mark the last two boxes and click OK.

Activar integracion con el Shell de Windows

Run a program with Sandboxie

Take a few seconds to study the window of Sandboxie. The first thing that jumps out is the program table sandboxed , ie isolated from other system resources. The menu is essential Sandbox: create multiple containers ( sandbox) and manage content and processes in memory.

Ejecutando Sandboxie con AllPlayer

When you right-click on a shortcut or executable, you’ll see a new option: Run Isolated in a Sandbox . Another click and you can assign the execution of the program in question to one of the sandbox exist. A typical configuration is to have a sandbox for surfing and another for opening files of dubious origin.

Lanzar un programa con Sandboxie

Título de programa ejecutado por Sandboxie

Caged programs are recognized by the presence of a pad between brackets in the title bar. Each was assigned an identifier itself (visible from the main window).

Sandboxie will display all open threads for the program, so do not panic if you see more than one process with the same name.

Manage programs caged

The program executed via Sandboxie can not save anything on your computer unless you so wish. For example, if you open a website in a sandbox (using the Run Web Browser menu Sandbox ) and downloads a file, Sandboxie detect the action and ask you what to do with it.

Restaurar archivo con Sandboxie

Remove files from the protected space Sandboxie is an action called "restoration." If you are unsure, do not worry, and then click Close: The files remain in the sandbox . You can view the contents of it by right clicking and selecting Explore Contents.

Contenido de una sandbox

Indeed, the sandbox is a system in miniature, with its own Windows Registry ( RegHive ) installed files and documents. Be very careful when exploring the contents of the sandbox, you will not be protected by the barrier. That is why Sandboxie recommended to manipulate time with a single browser.

Cleaning time

Have you finished working with the sandbox ? Then it’s time to collect belongings and cleaning. Command Quick Restore , accessible from the main window and from the notification icon, it lists the records kept by the individual programs within the chosen space, ready to be stored on your computer.

Restauracion rapida

Now it delete the files in the sandbox : Open the menu with a right click and select Clear Contents. In a show of wisdom, the program offers a last chance to save the files stored, waiting below a summary of the space occupied and the button deletion. Click to say goodbye to all that crap.

Borrado de una sandbox

For more secure deletion, we recommend that you install SDelete or Eraser and configure in paragraph Delete> Delete Order of settings sandbox . Its use ensures the complete disappearance of all traces left by programs temporary.

Have you ever used Sandboxie? Do you know any other alternatives?

Other Electronics News:

• acer travelmate 4000 battery
• lenovo thinkpad r400 battery
• asus laptop batteries
• canon bg-e5 battery grip
• laptop batteries

 

Kensington brings one-click-lock for Notebooks

Click Safe-Lock.

Kensington added another high performance notebook introduced with a new lock mechanism. click safe can be closed particularly easily and quickly.

Including the Palace consists of two components. The pin that is inserted into the Kensington lock slot of the notebook is not an integral part of the castle. Instead, it is fixed with a small Allen wrench. The castle itself can now attach a hand movement. It covered the same course, the screw of the pin, so that an opening by Allen in the closed state is impossible.

The new mechanism is as usual "Keyed Laptop Lock"For 69,99 and"Twin Keyed Laptop Lock"Announced for 89.99. The latter offers the opportunity to secure both the laptop or PC into a second device such as a screen with a lock. The click-safe locking head 180 degree swivel and can be rotated 360 degrees around the cable turn.

The lead of the castle is 1.50 meters long and 5 mm thick. According to Kensington, it consists of very high-quality carbon fiber. The operation of Kensington also demonstrated in a Youtube Video.

Other Business News:

• fujitsu fpcbp136 battery
• fujitsu fpcbp136ap battery
• lenovo 3000 n500 battery
• dell NF343 battery
• laptop batteries

 

How to get rid of the security warning when you run Internet software

Just a few days we have seen how we can get rid of a warning window equivalent in the block system. Of course, for ventaneros not be jealous, now let’s see how to avoid Windows we drill over and over again with this notice of questionable value.

If you have updated Firefox to Version 3 is sure to start seeing the upper windows as far more often than you’d want. This is because before Firefox did not take the trouble to label as downloads from the Internet.

Disable this notice is not a security risk to your system but as a general rule, it is best that you leave it as is if you do not have much idea of what you’re doing. Anyway, if you tired of having to accept this window every time you run something you downloaded from the Internet (or have been sent by messenger, etc.), you can fix in a rather straightforward.

The first thing you need is to run the Group Policy, A section of Administrative Tools. What, you do not find them? This is because Group Policy is only found in the Professional version of Microsoft Windows.

If you have the Home version and do not resign to stay with folded arms in the battle against the windows of notice, you can try this Unofficial file package that, in theory, you can add Administrative Tools to Windows XP Home. Essential to read the text document, in English, included.

But hey, let’s focus. The first thing is to go to Group Policy. The quickest way is to click on the Start Menu / Run and enter:

Then we will see a window similar to the following

Here we must navigate to User Configuration / Administrative Templates / Windows Components / Attachment Manager. On the left you see a series of elements. There are several ways to protect windows from appearing, which we have chosen is the most radical: Windows does not mark any files as its source.

To do this, we double click on "Do not preserve zone information in file attachments".

Tick "Enabled", Click on OK, and finished.

Other Electronics News:

⇒⇒⇒ dell inspiron 1520 battery

⇒⇒⇒ dell inspiron 1521 battery

⇒⇒⇒ dell vostro 1500 battery

⇒⇒⇒ canon eos 450d battery grip

⇒⇒⇒ lenovo thinkpad x61 tablet battery