This site is only for Avast Business products. For articles on AVG Business products, see AVG Business Help.

Web Shield

This Article Applies to:

  • Avast Business CloudCare

Web Shield protects your system from threats while browsing the web. It also prevents malicious scripts from running, even when you are offline. In Web Shield, you can enable and configure web, HTTPS, and script scanning.

We do not recommend you install this component on a server OS that is also running Microsoft Exchange. The Exchange and Anti-spam components handle Exchange-level filtering and will conflict with this component.

For Windows configuration options, see below. For MacOS X configuration options, click here: MacOS X.

Main Settings Tab

Web scanning: choose whether to receive warnings when downloading files with poor reputations and/or to scan traffic from well-known browser processes only.

HTTPS scanning: choose whether to use intelligent stream scanning, not scan trusted sites, block malware URLs, use script scanning, enable QUIC/HTTP3, and/or block botnet attacks.

Script scanning: choose which browsers on the end devices will be scanned by Web Shield during use.

Web Scanning Tab

Configure which items should be scanned when they are downloaded from the web.

Scan type: choose to scan all files, or selected file types (specified extensions and/or specified MIME-types), and choose whether to unpack archives with valid digital signatures.

Actions Tab

Control what actions are taken by Avast when a virus, potentially unwanted program (PUP), unwanted tool, or suspicious file is detected.

Main Action/First action to try: select the first action you want your Antivirus to take (for example, if it will first attempt to fix or quarantine the threat, or delete it immediately).

Notification Options: choose whether to show notifications when Web Shield takes action against a detected threat.

Packers Tab

Configure which archive (packer) files Essential/Premium/Ultimate Business Security should try to unpack during the scanning process. Unpacked files can be better analyzed for malware by Web Shield. Unpacking a file is the same as extracting a file from an archive. Original archives, including the files contained within, remain intact when being processed by your Shield.

You can select All packers, or specific packer files from the extensive list by checking the boxes.

Sensitivity Tab

Adjust the sensitivity of the Essential/Premium/Ultimate Business Security scan for Web Shield.

Heuristics Sensitivity: Heuristics enable Antivirus to detect unknown malware by analyzing code for commands that may indicate malicious intent. The default setting is Normal. With higher sensitivity, Antivirus is more likely to detect malware, but also more likely to make false-positive detections that incorrectly identify files as malware. Code emulations unpack and test suspected malware in an emulated environment where the file cannot cause damage to devices. Use code emulation is enabled by default

Sensitivity: choose to test whole files, which will cause the scan to be slower but more extensive

PUP and suspicious files: choose whether or not to scan for Potentially Unwanted Programs (PUPs)

For Antivirus versions 21.5 and newer, you can also choose whether to scan for potentially unwanted tools.

Site Blocking Tab

Configure the list of URL addresses that are blocked by Web Shield. Site blocking works very similar to configuring exceptions, only the configured addresses are blocked instead of excluded from scanning.

Script Exclusions Tab

Configure the list of scripts that are not scanned by Web Shield, listed by URL.

For more information on configuring exclusions for Web Shield, see Web Shield Exclusions.

Exclusions that you specify on this screen only apply to Web Shield and do not affect any other scans or Shields. To exclude a location from all Essential/Premium/Ultimate Business Security scans, see Configuring Standard Antivirus Exclusions.

Report File Tab

Customize the content of the Shield-specific scan report file, such as which items are included, the file name, and file type. The report is saved in one of the following locations:

  • Windows 10, Windows 8.1, Windows 8, Windows 7, or Windows Vista: C:\ProgramData\Avast Software\Avast\report
  • Windows XP: C:\Documents and Settings\All Users\Application Data\Avast Software\Avast\report

MacOS X

Enable IPv6: choose whether IPv6 is utilized.

Scan secured connections: choose whether to scan secure connections, and/or secure connections from browsers only.

PUP: choose whether to report potentially unwanted programs.

Exclusion list: configure the list of URLs that are not scanned by Web Shield.

For more information on configuring exclusions for Web Shield, see Web Shield Exclusions.

Exclusions that you specify on this screen only apply to Web Shield and do not affect any other scans or Shields. To exclude a location from all Essential/Premium/Ultimate Business Security scans, see Configuring Standard Antivirus Exclusions.