In this directory we can some files and folders there. Now we will move to user’s directory here we selected trmr_rohit_marines directory for further analysis.Īs can be seen in above figure we are under trmr_rohit_marines directory. Under the Language tag we can see the language used by the user which is en simply it means english.Īnother information like Devices used in the system speakers and Mic can be seen under Devices tag. Next in UI version tag we will get the current skype version 5.6.59.110 which is used by the users. So first I take D5 and convert it.Īfter converting in decimal value what can see the decimal value is 213, now by this way we can get the whole IP address and Port number.Īs can be seen in above figure after converting the whole value into decimal we get this 213.199.179.173:40017 For this we are using here online conversion tool. Now what we will do we convert this Hexadecimal value D5C7B3AD9C51 to decimal numbers for revealing the IP and port number. The IP starts after 0400050041050200 it means D5C7B3AD9C51 is the IP address. We can see in above figure the output is Saturday 16th November, 2012 17:49:44 GMT.Īnother important thing in this file is the HostCache tag. Here we are using online conversion tools and see what we get after conversion. This is a Unix style timestamp so we will convert it to readable format. We can open this file directly through any browser otherwise here we are using Notepad++ for opening shared.xml file and it will look like this shown in below figureįirst thing what we will see in this file the timestamp which is showing a value 1384624184.32. It is a configuration type file so first we will analyze this XML file. As shown in the below figure:Īs can we see in the below figure there is a XML file named shared. These four directories are users directory who are using Skype in this system. We are in the Skype directory and we can see the four red box marked directories are: happysahoo2959, namita.nahak, sudhanshu251286, trmr_rohit_marines.
OPEN SKYPE MAIN DB WINDOWS
Windows Vista and later: C:UsersWINDOWS-USERAppDataRoamingSkypeSKYPE-USER.Windows XP and previous: C:Documents and SettingsWINDOWS-USERApplication DataSkypeSKYPE-USER.Show Time: First we will start from the Skype’s file location So In this article we are going to perform forensics analysis of Skype application. The Intrusion Detecting Systems are used for that purpose. The security personnel deploy the effective measures using the computer forensics. The IP address plays an important role to find out the geographical position of the terrorists. There are many tools that can be used in combination with the computer forensics to find out the geographical information and the hide outs of the criminals. For this purpose computer forensics are used as they help in tracking the criminal. There can be theft of the data from an organization in which case the organization may sustain heavy losses. So the computer forensics has become a vital part in the corporate world. The loss caused is dependent upon the sensitivity of the computer data or the information for which the crime has been committed. There are various computer crimes took place on small scale as well as large scale. In this high-tech world variety of computer crimes that take place. Need of Computer Forensics in today’s world: Skype also has an Internet connection box, so that you can convert your regular telephone to use the internet for your telephone service.Īs forensics perspective it can give us a lot of information which can be present as evidence in court of law. If you have a Microphone and Speakers, you can use Skype to call people that have Skype.