File Shield is available for both Workstations and Servers.
File Shield is the main layer of active protection in Avast Business Antivirus. It scans programs and files saved on devices for malicious threats in real-time before allowing them to be opened, run, modified, or saved. If malware is detected, File Shield prevents the program or file from infecting devices.
By default, File Shield is configured to provide optimal protection when switched on. We strongly recommend you keep this shield turned on at all times and only make configuration changes if you have an advanced understanding of malware protection principles.
File and folder locations can include wildcard characters ? and *. The asterisk replaces zero or more characters, and the question mark replaces a single character. For example:
- To exclude all HTML files, type .htm into the text box.
- To exclude a folder and its sub-folders, add * to the end of the folder name, for example, C:\example*.
- To exclude all files labeled in a certain way on any of your hard drives, include ?:\ in front of the path, for instance ?:\example.exe.
- Click one of the following tabs:
- Workstation Settings
- Server Settings
- Click the Active Protection tab.
- In the Shields section, move the slider to enable File Shield.
- Click Apply Changes.
To Configure When File Shield Scans Files
- Click Service Delivery > Policies > Avast Antivirus.
- Click the name of a policy.
- Click one of the following tabs:
- Workstation Settings
- Server Settings
- Click the Active Protection tab.
- Click the Scan behavior tab.
- Click the Customize link in the File Shield section.
- In the Scan When Executing section, click any of the following:
- Scan programs when executing
- Scan scripts when executing
- Scan libraries when executing
- In the Scan When Opening section, click any of the following:
- Scan documents when opening
- Scan documents with custom extensions, then type the custom extensions to scan.
- Scan all files
- In the Scan When Attaching section, click any of the following:
- Scan auto-run items when removable media is attached
- Scan diskette boot sectors on access
- In the Scan When Writing section, click any of the following:
- Scan files when writing
- Scan files with default extensions
- Scan documents with custom extensions, then type the custom extensions to scan.
- Scan all files
- Do not scan files on remote shares
- Do not scan files on removable media
To scan all files that have specific file extensions, click the Scan files with custom extension check box. Type the extension in the box, then click Add. Repeat until you have added all your extensions.
- Click Apply Changes.
Configuring Avast Business Antivirus Policies: Excluding Files, File Types, and Locations from File Shield
You can modify the list of locations that are not scanned. Exclusions are files and locations that are not scanned. Enable check boxes to define when files are not scanned, when files are not read, written to, or executed. You can use wildcards in file names, paths, and extensions, such as ? to represent a single character, and * to represent a character string.
- Click Service Delivery > Policies > Avast Antivirus.
- Click the name of a policy.
- Click one of the following tabs:
- Workstation Settings
- Server Settings
- Click the Active Protection tab.
- Click the Customize link in the File Shield section.
- Click the Exclusions tab.
- Click any of the following check boxes:
- R—Read
- W—Write
- E—Execute
- Type a file name, path, or extension.
- Click Add.
- Repeat steps 8-9 until you have excluded all your chosen file names, paths, and extensions.
- Click Apply Changes.
To Remove a File Shield Exclusion
- Click Service Delivery > Policies > Avast Antivirus.
- Click the name of a policy.
- Click one of the following tabs:
- Workstation Settings
- Server Settings
- Click the Active Protection tab.
- Click the Customize link in the File Shield section.
- Click the Exclusions tab.
- Next to the exclusion you want to remove, click .
- Click Apply Changes.
Configuring Avast Business Antivirus Policies: Customizing Actions to Take When File Shield Finds Viruses, Potentially Unwanted Programs, or Suspicious Files
You can specify what actions to take when Avast Antivirus detects a virus, potentially unwanted program, or suspicious file.
- Click Service Delivery > Policies > Avast Antivirus.
- Click the name of a policy.
- Click one of the following tabs:
- Workstation Settings
- Server Settings
- Click the Active Protection tab.
- Click the Customize link in the File Shield section.
- Click the Actions tab.
- Click one of the following tabs:
- Virus
- PUP
- Suspicious
- Select an option in the Choose what action Avast will perform after finding a virus box.
- Select an option in the if the action fails, use box.
- In the Options section, click any of the following check boxes:
- Show notifications for actions
- Perform the selected action when the system restarts
- In the Processing Infected Archives section, click one of the following check boxes:
- Try to remove only the packed file from the archive; if it fails, do nothing
- Try to remove only the packed file; if it fails, remove the whole containing archive
- Always remove the whole archive
- Click Apply Changes.
Configuring Avast Business Antivirus Policies: Customizing Which Archive Files Avast Attempts to Unpack During a File Shield Scan
You can choose which archive (packer) files Avast Business Antivirus should attempt to unpack during the scanning process.
File Shield is better able to analyze files for malware when files are unpacked. Unpacking a file is the same as extracting a file from an archive. Original archives, including the files contained within, remain intact when being processed by File Shield.
- Click Service Delivery > Policies > Avast Antivirus.
- Click the name of a policy.
- Click one of the following tabs:
- Workstation Settings
- Server Settings
- Click the Active Protection tab.
- Click the Customize link in the File Shield section.
- Click the Packers tab.
- Do one of the following:
- Click All packers.
- Click the check boxes of individual packers.
- Click Apply Changes.
Configuring Avast Business Antivirus Policies: Customizing Avast Antivirus File Shield Sensitivity
You can define the following settings for File Shield:
Heuristics enable Avast Business Antivirus to detect unknown malware by analyzing code for commands that may indicate malicious intent. Specify your preferences for the following options:
- Indicate your preferred level of heuristic sensitivity. The default setting is Normal. With higher sensitivity, Avast Business Antivirus is more likely to detect malware, but also more likely to make false-positive detections (incorrectly identify files as malware).
- Code emulations unpack and test any suspected malware in an emulated environment where the file cannot cause damage to devices. Use code emulation is enabled by default.
Enable the Test whole files check box if you want the scan to analyze entire files rather than only the parts typically affected by malicious code. When this option is enabled, the scan is slower but more thorough.
Enable the Scan for potentially unwanted programs (PUPs) check box if you want the scan to look for programs that are stealthily downloaded with other programs and typically perform unwanted activity.
- Click Service Delivery > Policies > Avast Antivirus.
- Click the name of a policy.
- Click one of the following tabs:
- Workstation Settings
- Server Settings
- Click the Active Protection tab.
- Click the Customize link in the File Shield section.
- Click the Sensitivity tab.
- Select an option in the Heuristics Sensitivity box.
- Click any of the following check boxes:
- Use code emulation
- Test whole files
- Scan for potentially unwanted programs (PUPs)
- Click Apply Changes.
Configuring Avast Business Antivirus Policies: Generating and Customizing File Shield Reports
You can generate a report of scans and customize the content of the report.
Report files are saved in one of the following locations:
- Windows 10, Windows 8.1, Windows 8, Windows 7, or Windows Vista: C:\ProgramData\Avast Software\Avast\report
- Windows XP: C:\Documents and Settings\All Users\Application Data\ Avast Software\Avast\report
- Click Service Delivery > Policies > Avast Antivirus.
- Click the name of a policy.
- Click one of the following tabs:
- Workstation Settings
- Server Settings
- Click the Active Protection tab.
- Click the Customize link in the File Shield section.
- Click the Report File tab.
- Click the Generate Report File check box.
- Type a name in the File Name box.
- Select the File Type.
- Select an option in the If File Exists box.
- Click any of the Reported Items you want to include in the report:
- Infected items
- Harderrors
- Softerrors
- OKitems
- Skipped items
- Click Apply Changes.
Configuring Avast Business Antivirus Policies: Customizing File Shield Advanced Settings
You can configure advanced and performance-related settings of antivirus scans.
- Click Service Delivery > Policies > Avast Antivirus.
- Click the name of a policy.
- Click one of the following tabs:
- Workstation Settings
- Server Settings
- Click the Active Protection tab.
- Click the Customize link in the File Shield section.
- Click the Advanced Settings tab.
- Click any of the following check boxes:
- Do not Scan Verified System DLLs—Excludes verified system library files (.dll) from scanning.
- Use Transient Caching—Files which have been previously scanned and temporarily verified as clean are not scanned again until the next system restart or virus definitions update.
- Use Persistent Caching—Trusted files that are verified as safe are not scanned again, even after a system restart or virus definitions update.
- Click Apply Changes.