Version: 9.2.0 (#902013124)
Files of interest:
/cache/http folder contains many files, with
.1 file extensions. The
.0 files are web requests for the corresponding
.1 file. The
.1 files are predominantly images and can be viewed by changing their extension appropriately. On our test device, they were either
.png files. These files were predominantly locations near the user, not necessarily locations the user specifically searched for.
This is the fourth data storage method: misnamed file extensions.
Always verify the header of a file that can't be opened, or use automated tools, such as EnCase, to detect the mismatched header/file extension. A good resource to verify a file's signature is http://www.garykessler.net/library/file_sigs.html.