This site is only for Avast Business products. For articles on AVG Business products, see AVG Business Help.

File Shield

This Article Applies to:

  • Avast Business CloudCare

File Shield is the main layer of active protection in Essential/Premium/Ultimate Business Security. It scans programs and files saved on devices for malicious threats in real-time before allowing them to be opened, run, modified, or saved. If malware is detected, File Shield prevents the program or file from infecting devices.

We strongly recommend you always keep this shield turned on and only make configuration changes if you have an advanced understanding of malware protection principles.

For Windows configuration options, see below. For MacOS X configuration options, click here: MacOS X.

Scan Behavior Tab

Scan when executing: select whether to scan programs, scripts, and/or libraries when the files or programs are executed

Scan when opening: select whether to scan documents, documents with custom extensions (you input), and/or all files when the documents or files are opened

Scan when writing: select whether to scan files when writing (default extensions, custom extensions, or all files), and also whether or not to scan files on remote shares or removable media when the files are created or modified

Scan when attaching: select whether to scan auto-run items and/or diskette boot sectors when removable media is attached

Actions Tab

Control what actions are taken by Avast when a virus, potentially unwanted program (PUP), unwanted tool, or suspicious file is detected.

Main Action/First action to try: select the first action you want your Antivirus to take (for example, if it will first attempt to fix or quarantine the threat, or delete it immediately).

If, for whatever reason, Avast cannot complete the main action, it will attempt the action selected under If the action fails, use.

Notification Options: choose whether to show notifications when File Shield takes action against a detected threat, and/or to perform the selected action upon restart.

Processing of infected archives: choose whether to only remove the packed file from the archive (and if that fails, do nothing), remove the packed file from the archive (and if that fails, remove the entire archive), or to remove the entire archive.

Packers Tab

Configure which archive (packer) files Essential/Premium/Ultimate Business Security should try to unpack during the scanning process. Unpacked files can be better analyzed for malware by File Shield. Unpacking a file is the same as extracting a file from an archive. Original archives, including the files contained within, remain intact when being processed by your Shield.

You can select All packers, or specific packer files from the extensive list by checking the boxes.

Sensitivity Tab

Adjust the sensitivity of the Essential/Premium/Ultimate Business Security scan for File Shield.

Heuristics Sensitivity: Heuristics enable Antivirus to detect unknown malware by analyzing code for commands that may indicate malicious intent. The default setting is Normal. With higher sensitivity, Antivirus is more likely to detect malware, but also more likely to make false-positive detections that incorrectly identify files as malware. Code emulations unpack and test suspected malware in an emulated environment where the file cannot cause damage to devices. Use code emulation is enabled by default

Sensitivity: choose to test whole files, which will cause the scan to be slower but more extensive

PUP and suspicious files: choose whether or not to scan for Potentially Unwanted Programs (PUPs)

For Antivirus versions 21.5 and newer, you can also choose whether to scan for potentially unwanted tools.

Report File

Customize the content of the Shield-specific scan report file, such as which items are included, the file name, and file type. The report is saved in one of the following locations:

  • Windows 10, Windows 8.1, Windows 8, Windows 7, or Windows Vista: C:\ProgramData\Avast Software\Avast\report
  • Windows XP: C:\Documents and Settings\All Users\Application Data\Avast Software\Avast\report

Advanced Settings

You can access these extra settings by clicking Advanced Settings at the bottom of the File Shield settings section. Use the check boxes to enable or disable these settings.

Do not scan verified system DLLs: select whether or not to scan files belonging to the operating system

Use transient caching: select whether or not temporary memory stores information about previously scanned items; files scanned once and not detected as threats will not be scanned again until either the system is restarted or the virus definitions are updated

Use persistent caching: select whether or not files verified as clean (e.g. with a valid digital signature) will be scanned again, even after system restart or virus definitions update

MacOS X

These options can be accessed from the Antivirus section by clicking the Mac Settings tab.

Settings: controls whether infected files are moved to Virus Chest and PUPs reported, and allows you to configure exclusions.

For more information on configuring exclusions for File Shield, see File Shield Exclusions.

Exclusions that you specify on this screen only apply to File Shield and do not affect any other scans or Shields. To exclude a location from all Essential/Premium/Ultimate Business Security scans, see Configuring Standard Antivirus Exclusions.