Anti forensics, Ccleaner, forensics, how to delete your facebook account, how to find cookies on your hard drive, how to find files on your hard drive, how to use internet evidence finder, Internet Evidence Finder, Privacy, Secure Delete, secure deletion, Security, security tool, what would forensics software find
Internet Evidence Finder – what a Forensics team would find on your computer
The police use Internet Evidence finder – a software tool written by a Canadian company, who offer a 14 day free trial.
As a Christmas special, we’ll detail how to download this Forensics Tool and run it against your pc. You’ll see all those downloads you’d forgotten about, or unused Google maps appear… it’s spooky to say the least.
It’s dangerous for you to leave such accounts lying around – so use this tool to find them, and delete these accounts.
Step 1 – Download your free trial.
They will send a download link to an email account.
Email will state:
Step #1: Click here to begin download. Now Download the link given to you by email
Step #2: When the download is complete, open the IEFv571.0013setup.exe file and follow the prompts to complete installation.
Step #3: A dialogue box will pop up stating “The license key or dongle for IEF v5 is missing or invalid”; Click “Ok”.
Now Download the link given to you by email
Step 1 – Save File
Wizard will run
Accept standard file location
Accept default Start menu
Accept create a desktop icon
Internet Evidence Finder is now installed.
IEF ERROR – Ignore this error is because it’s a trial version
Click on “Drives”
Full Search of C drive has been selected
SELECT ALL – checkbox bottom left hand side of screen
Yahoo user name message
Yes to continue without a user name
Enter Destination folder
Browse to desktop (for destination folder)
No case information is needed
Just leave it run. Green ticks will appear as each stage completes.
As you can see, IEF finds everything from your Google maps to pictures, cookies and successful downloads. A Forensics team can see the maps you’ve looked at, successful downloads. Things you’ve forgotten about, will be revealed.
Click on the remnant and it will give you pictures and download URL’s. Revealing date and times of the downloads, exactly as a Forensics team would cite in court.
The Forensics software has rebuilt webpages that I’ve visited for VPNBook (they reissued new OpenVPN certificates in December). IEF has rebuilt that webpage, and shows exactly what I’d been looking at (Certificate downloads). This could just as easily be your banking website.
How do you prevent the Forensics team seeing your banking or medical websites?
- The advice of the EFF, is to regularly use secure delete programs
- Use Ccleaner or Eraser. Ccleaner is the easiest to start off with.