Analysis of Free Download Manager for forensic artefacts

Muhammad Yasin; Muhammad Arif Wahla; Firdous Kausar

doi:10.1007/978-3-642-11534-9_6

Analysis of Free Download Manager for forensic artefacts

Muhammad Yasin^*, Muhammad Arif Wahla, Firdous Kausar

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

5 Citations (Scopus)

Abstract

Free Download Manager (FDM) is one of the most popular download managers due to its free availability, high download speed and versatility. It contains a lot of information that is of potential evidentiary value even if a user deletes web browser history, cookies and temporary internet files. This software records download activities across multiple files saved with. SAV extensions in the User Profile. This paper analyzes: 1) the windows registry entries particularly concerned to configuration and user settings, 2) the log files (with. SAV extension) created by FDM to trace download activities, and 3) RAM and swap files from a forensic perspective. This research work describes a number of traces left behind after the use of FDM such as install location, default download path, downloaded files, and menu extensions to name a few, thus enabling digital investigators to search for and interpret download activities. The widespread use of FDM makes this research work an attractive option for forensic investigators, ranging from law enforcement agencies to employers monitoring personnel.

Original language	English
Title of host publication	Digital Forensics and Cyber Crime - First International ICST Conference, ICDF2C 2009, Revised Selected Papers
Pages	59-68
Number of pages	10
DOIs	https://doi.org/10.1007/978-3-642-11534-9_6
Publication status	Published - 2010
Externally published	Yes
Event	1st International Conference on Digital Forensics and Cyber Crime, ICDF2C 2009 - Albany, NY, United States Duration: Sept 30 2009 → Oct 2 2009

Publication series

Name	Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering
Volume	31 LNICST
ISSN (Print)	1867-8211

Conference

Conference	1st International Conference on Digital Forensics and Cyber Crime, ICDF2C 2009
Country/Territory	United States
City	Albany, NY
Period	9/30/09 → 10/2/09

Keywords

Digital investigation
Forensic artefacts
Free Download Manager

ASJC Scopus subject areas

Computer Networks and Communications

Access to Document

10.1007/978-3-642-11534-9_6

Cite this

Yasin, M., Wahla, M. A., & Kausar, F. (2010). Analysis of Free Download Manager for forensic artefacts. In Digital Forensics and Cyber Crime - First International ICST Conference, ICDF2C 2009, Revised Selected Papers (pp. 59-68). (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering; Vol. 31 LNICST). https://doi.org/10.1007/978-3-642-11534-9_6

Analysis of Free Download Manager for forensic artefacts. / Yasin, Muhammad; Wahla, Muhammad Arif; Kausar, Firdous.
Digital Forensics and Cyber Crime - First International ICST Conference, ICDF2C 2009, Revised Selected Papers. 2010. p. 59-68 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering; Vol. 31 LNICST).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Yasin, M, Wahla, MA & Kausar, F 2010, Analysis of Free Download Manager for forensic artefacts. in Digital Forensics and Cyber Crime - First International ICST Conference, ICDF2C 2009, Revised Selected Papers. Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, vol. 31 LNICST, pp. 59-68, 1st International Conference on Digital Forensics and Cyber Crime, ICDF2C 2009, Albany, NY, United States, 9/30/09. https://doi.org/10.1007/978-3-642-11534-9_6

@inproceedings{70ff6cc6caa54616938e4ddae1b5a190,

title = "Analysis of Free Download Manager for forensic artefacts",

abstract = "Free Download Manager (FDM) is one of the most popular download managers due to its free availability, high download speed and versatility. It contains a lot of information that is of potential evidentiary value even if a user deletes web browser history, cookies and temporary internet files. This software records download activities across multiple files saved with. SAV extensions in the User Profile. This paper analyzes: 1) the windows registry entries particularly concerned to configuration and user settings, 2) the log files (with. SAV extension) created by FDM to trace download activities, and 3) RAM and swap files from a forensic perspective. This research work describes a number of traces left behind after the use of FDM such as install location, default download path, downloaded files, and menu extensions to name a few, thus enabling digital investigators to search for and interpret download activities. The widespread use of FDM makes this research work an attractive option for forensic investigators, ranging from law enforcement agencies to employers monitoring personnel.",

keywords = "Digital investigation, Forensic artefacts, Free Download Manager",

author = "Muhammad Yasin and Wahla, {Muhammad Arif} and Firdous Kausar",

year = "2010",

doi = "10.1007/978-3-642-11534-9_6",

language = "English",

isbn = "3642115330",

series = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering",

pages = "59--68",

booktitle = "Digital Forensics and Cyber Crime - First International ICST Conference, ICDF2C 2009, Revised Selected Papers",

note = "1st International Conference on Digital Forensics and Cyber Crime, ICDF2C 2009 ; Conference date: 30-09-2009 Through 02-10-2009",

}

TY - GEN

T1 - Analysis of Free Download Manager for forensic artefacts

AU - Yasin, Muhammad

AU - Wahla, Muhammad Arif

AU - Kausar, Firdous

PY - 2010

Y1 - 2010

N2 - Free Download Manager (FDM) is one of the most popular download managers due to its free availability, high download speed and versatility. It contains a lot of information that is of potential evidentiary value even if a user deletes web browser history, cookies and temporary internet files. This software records download activities across multiple files saved with. SAV extensions in the User Profile. This paper analyzes: 1) the windows registry entries particularly concerned to configuration and user settings, 2) the log files (with. SAV extension) created by FDM to trace download activities, and 3) RAM and swap files from a forensic perspective. This research work describes a number of traces left behind after the use of FDM such as install location, default download path, downloaded files, and menu extensions to name a few, thus enabling digital investigators to search for and interpret download activities. The widespread use of FDM makes this research work an attractive option for forensic investigators, ranging from law enforcement agencies to employers monitoring personnel.

AB - Free Download Manager (FDM) is one of the most popular download managers due to its free availability, high download speed and versatility. It contains a lot of information that is of potential evidentiary value even if a user deletes web browser history, cookies and temporary internet files. This software records download activities across multiple files saved with. SAV extensions in the User Profile. This paper analyzes: 1) the windows registry entries particularly concerned to configuration and user settings, 2) the log files (with. SAV extension) created by FDM to trace download activities, and 3) RAM and swap files from a forensic perspective. This research work describes a number of traces left behind after the use of FDM such as install location, default download path, downloaded files, and menu extensions to name a few, thus enabling digital investigators to search for and interpret download activities. The widespread use of FDM makes this research work an attractive option for forensic investigators, ranging from law enforcement agencies to employers monitoring personnel.

KW - Digital investigation

KW - Forensic artefacts

KW - Free Download Manager

UR - http://www.scopus.com/inward/record.url?scp=84865969677&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84865969677&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-11534-9_6

DO - 10.1007/978-3-642-11534-9_6

M3 - Conference contribution

AN - SCOPUS:84865969677

SN - 3642115330

SN - 9783642115332

T3 - Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering

SP - 59

EP - 68

BT - Digital Forensics and Cyber Crime - First International ICST Conference, ICDF2C 2009, Revised Selected Papers

T2 - 1st International Conference on Digital Forensics and Cyber Crime, ICDF2C 2009

Y2 - 30 September 2009 through 2 October 2009

ER -

Analysis of Free Download Manager for forensic artefacts

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Cite this