Avast Logs
Overview
Section titled “Overview”Evidence: Avast Logs
Description: Collect Avast Logs
Category: Applications
Platform: windows
Short Name: avstls
Is Parsed: No
Sent to Investigation Hub: No
Collect File(s): Yes
Background
Section titled “Background”Avast Antivirus maintains comprehensive logs of malware detections, real-time shield activities, scan results, and quarantine operations. The Chest is Avast’s quarantine area where suspected files are isolated, with index.xml tracking quarantined items.
Data Collected
Section titled “Data Collected”This collector gathers structured data about avast logs.
Collection Method
Section titled “Collection Method”This collector gathers Avast log files from Application Data and ProgramData directories across different Windows versions, plus the Chest index file that catalogs quarantined threats.
Forensic Value
Section titled “Forensic Value”Avast logs provide critical evidence of malware detections, security threats, user actions, and system protection events. The Chest index reveals quarantined files that may indicate successful attack prevention or ongoing compromise attempts.