Jump lists app names

iped-app/resources/config/conf/CategoriesConfig.json

@@ -35,6 +35,8 @@
       ]}
     ]},
     {"name": "Windows Artifacts", "categories":[
+        {"name": "Automatic Destinations", "mimes": ["application/x-automaticdestinations","application/x-automaticdestinations-entry"]},
+        {"name": "Custom Destinations", "mimes": ["application/x-customdestinations","application/x-customdestinations-entry"]},
         {"name": "Event Files", "mimes": ["application/x-elf-file", "application/x-elf-log"]},
         {"name": "Event Records", "mimes": ["application/x-elf-record"]},
         {"name": "Event Transcript", "mimes": ["application/x-event-transcript", "application/x-event-transcript-history", "application/x-event-transcript-inventory-app", "application/x-event-transcript-app-interactivity", "application/x-event-transcript-devices", "application/x-event-transcript-census", "application/x-event-transcript-networking"]},

iped-app/resources/config/conf/CategoriesToExpand.txt

@@ -19,6 +19,8 @@ OLE files
 Georeferenced Files
 Peer-to-peer
 Chrome Cache
+Automatic Destinations
+Custom Destinations
 #Event Files
 
 # Generates registry reports:

iped-app/resources/config/conf/CustomSignatures.xml

@@ -1637,10 +1637,20 @@
         </magic>
         <glob pattern="*.ofc"/>
     </mime-type>
-    
+
     <mime-type type="application/x-vlc-ini">
         <sub-class-of type="text/x-ini"/>
         <glob pattern="vlc-qt-interface.ini"/>
     </mime-type>
 
+    <mime-type type="application/x-automaticdestinations">
+        <glob pattern="*.automaticDestinations-ms"/>
+        <sub-class-of type="application/x-tika-msoffice"/>
+    </mime-type>
+
+    <mime-type type="application/x-customdestinations">
+        <glob pattern="*.customDestinations-ms"/>
+        <sub-class-of type="application/x-tika-msoffice"/>
+    </mime-type>
+
 </mime-info>

iped-app/resources/config/conf/TaskInstaller.xml

@@ -15,6 +15,7 @@
     <task class="iped.engine.task.SetTypeTask"></task>
     <task class="iped.engine.task.SetCategoryTask"></task>
     <task script="RefineCategoryTask.js"></task>
+    <task script="ClassifyJumplists.js"></task>
 
     <!--tasks that ignore items should be after SetCategoryTask, so category of ignored items will be included in CSV properties file-->
     <task class="iped.engine.task.HashDBLookupTask"></task>

iped-app/resources/localization/iped-categories.properties

@@ -168,3 +168,5 @@ Journeys=Journeys
 Networks\ Usage=Networks\ Usage
 Recognized\ Devices=Recognized\ Devices
 Social\ Media\ Activities=Social\ Media\ Activities
+Automatic\ Destinations=Automatic\ Destinations
+Custom\ Destinations=Custom\ Destinations

iped-app/resources/localization/iped-categories_de_DE.properties

@@ -168,3 +168,5 @@ Journeys=Reisen
 Networks\ Usage=Netzwerknutzung
 Recognized\ Devices=erkannte Geräte
 Social\ Media\ Activities=Social\ Media\ Aktivitäten
+Automatic\ Destinations=Automatic\ Destinations[TBT]
+Custom\ Destinations=Custom\ Destinations[TBT]

iped-app/resources/localization/iped-categories_es_AR.properties

@@ -168,3 +168,5 @@ Journeys=Viajes
 Networks\ Usage=Uso\ de\ Redes
 Recognized\ Devices=Dispositivos\ Reconocidos
 Social\ Media\ Activities=Actividades\ Multimedia\ Sociales
+Automatic\ Destinations=Automatic\ Destinations[TBT]
+Custom\ Destinations=Custom\ Destinations[TBT]

iped-app/resources/localization/iped-categories_fr_FR.properties

@@ -168,3 +168,5 @@ Journeys=Voyages
 Networks\ Usage=Utilisation\ des\ Réseaux
 Recognized\ Devices=Appareils\ Identifiés
 Social\ Media\ Activities=Activités\ sur\ les\ Réseaux\ Sociaux
+Automatic\ Destinations=Automatic\ Destinations[TBT]
+Custom\ Destinations=Custom\ Destinations[TBT]

iped-app/resources/localization/iped-categories_it_IT.properties

@@ -168,3 +168,5 @@ Journeys=Viaggi
 Networks\ Usage=Utilizzo\ Rete
 Recognized\ Devices=Dispositivi\ Riconosciuti
 Social\ Media\ Activities=Actività\ su\ Social\ Media
+Automatic\ Destinations=Automatic\ Destinations[TBT]
+Custom\ Destinations=Custom\ Destinations[TBT]

iped-app/resources/localization/iped-categories_pt_BR.properties

@@ -168,3 +168,5 @@ Journeys=Jornadas
 Networks\ Usage=Uso\ de\ Redes
 Recognized\ Devices=Dispositivos\ Identificados
 Social\ Media\ Activities=Atividades\ em\ Redes\ Sociais
+Automatic\ Destinations=Automatic\ Destinations
+Custom\ Destinations=Custom\ Destinations

iped-app/resources/scripts/tasks/RefineCategoryTask.js

@@ -1,4 +1,4 @@
-/*
+/*
  * Script of Category Specialization based on item properties.
  * Uses javascript language to allow flexibility in definitions.
  */
@@ -180,6 +180,18 @@ function process(e){
 	if(length == 0)
 		e.addCategory("Empty Files");
 
+
+        if (mime.equals("application/x-lnk")){
+            if (path.endsWith(".customdestinations-ms>>"+e.getName())){
+                e.setMediaTypeStr("application/x-customdestinations-entry");
+                e.addCategory("Custom Destinations");
+            }
+            if (path.endsWith(".automaticdestinations-ms>>"+e.getName())){
+                e.setMediaTypeStr("application/x-automaticdestinations-entry");
+                e.addCategory("Automatic Destinations");
+            }
+        }
+
 	if(inRecycle(e)){
 		e.addCategory("Windows Recycle");
 		if(e.getName().indexOf("$I") == 0)
@@ -456,6 +468,7 @@ function process(e){
 			e.addCategory("E-Mule");
 		}
 	}
+
 
 	// Custom Regripper Reports