Index.dat Log Out | Topics | Search
Moderators | Edit Profile

X-Ways Support Forum » Miscellaneous » Index.dat « Previous Next »

Author Message
Top of pagePrevious messageNext messageBottom of page Link to this message

Ian Scrivens
Username: investigator

Registered: N/A
Posted on Thursday, Apr 19, 2007 - 11:02:   
The following was discovered in the index.dat file. My understanding is that this shows that another url has redirected the user to the site www.faceparty.com. I would appreciate any ones views.

REDR----á—••€/~http://www.faceparty.com/•–•
Top of pagePrevious messageNext messageBottom of page Link to this message

Jimmy Weg
Username: jw

Registered: 7-2006
Posted on Thursday, Apr 19, 2007 - 15:00:   
Server side REDR entries in an index.dat provide the URL from which the browser was redirected.
Top of pagePrevious messageNext messageBottom of page Link to this message

Timothy O'shea
Username: hitbackharder

Registered: N/A
Posted on Friday, Apr 20, 2007 - 11:23:   
If this is the only piece of information within the Forensic examination I would suggest that it has been intentionaly placed there to incriminate. There would be other indicators on the hard drive that would show when this site had been accessed. Your basic tools such as WinSpy would show you and even Windows itself have tools that would show you more information. This means nothing without other entries. REDR only means that that the user has visited an URL that in turns points them to a different URL.

Add Your Message Here
Post:
Username: Posting Information:
Only registered users may post messages here, i.e. you need to have an account.
Password:
Options: Enable HTML code in message
Automatically activate URLs in message
Action:
Forum operated by X-Ways Software Technology AG.