VIPRE Logs

Overview

Evidence: VIPRE Logs Description: Collect VIPRE Logs Category: Applications Platform: windows Short Name: vprls Is Parsed: No Sent to Investigation Hub: No Collect File(s): Yes

Background

VIPRE (formerly GFI AntiMalware and Sunbelt AntiMalware) is a business security solution that maintains logs across multiple product iterations. It stores logs in both system-wide ProgramData and user-specific AppData locations.

Data Collected

This collector gathers structured data about vipre logs.

Collection Method

This collector gathers VIPRE logs from current and legacy installations including VIPRE Business Agent, GFI Software AntiMalware, and Sunbelt Software AntiMalware directories.

Forensic Value

VIPRE logs provide evidence of malware detections, business endpoint security events, and threat activities across different product versions. They're valuable for investigating security incidents in business environments.

PreviousUSN Journal as CSV NextVisual Studio Team Explorer Config

Last updated 3 days ago

Was this helpful?