AVG Logs
Overview
Section titled “Overview”Evidence: AVG Logs
Description: Collect AVG Logs
Category: Applications
Platform: windows
Short Name: avgls
Is Parsed: No
Sent to Investigation Hub: No
Collect File(s): Yes
Background
Section titled “Background”AVG Antivirus is a popular security solution that logs malware detections, scan activities, quarantine actions, and threat analysis. These logs are stored in dedicated log and report directories within the application data folders.
Data Collected
Section titled “Data Collected”This collector gathers structured data about avg logs.
Collection Method
Section titled “Collection Method”This collector gathers AVG log files and scan reports from both legacy Application Data directories and current ProgramData locations, including detection logs and scan reports.
Forensic Value
Section titled “Forensic Value”AVG logs are valuable for identifying detected malware, understanding threat timelines, correlating infections with system activities, and verifying security response actions. They can reveal attempted attacks, quarantined files, and the system’s security posture over time.