Avast Logs

Overview

Evidence: Avast Logs Description: Collect Avast Logs Category: Applications Platform: windows Short Name: avstls Is Parsed: No Sent to Investigation Hub: No Collect File(s): Yes

Background

Avast Antivirus maintains comprehensive logs of malware detections, real-time shield activities, scan results, and quarantine operations. The Chest is Avast's quarantine area where suspected files are isolated, with index.xml tracking quarantined items.

Data Collected

This collector gathers structured data about avast logs.

Collection Method

This collector gathers Avast log files from Application Data and ProgramData directories across different Windows versions, plus the Chest index file that catalogs quarantined threats.

Forensic Value

Avast logs provide critical evidence of malware detections, security threats, user actions, and system protection events. The Chest index reveals quarantined files that may indicate successful attack prevention or ongoing compromise attempts.