Web Shield

This Article Applies to:

  • Business Hub
  • Avast Business On-Premise Console

Web Shield protects your system from threats while browsing the web. It also prevents malicious scripts from running, even when you are offline. In Web Shield, you can enable and configure web, HTTPS, and script scanning.

We do not recommend you install this component on a server OS that is also running Microsoft Exchange. The Exchange and Anti-spam components handle Exchange-level filtering and will conflict with this component.

Business Hub and Cloud Console: Windows and MacOS X configuration options are mixed together in the policy settings for the various components.

On-Premise Console: For Windows configuration options, see below. For MacOS X configuration options, click here: MacOS X (On-Premise Console).

Main Settings Tab

Business Hub and Avast Business Cloud Console

Avast Business On-Premise Console

Web scanning: choose whether to receive warnings when downloading files with poor reputations and/or to scan traffic from well-known browser processes only.

HTTPS scanning: choose whether to use intelligent stream scanning, not scan trusted sites, block malware URLs, use script scanning, enable QUIC/HTTP3, and/or block botnet attacks.

Enable IPv6: (Business Hub and Cloud Console) for MacOS X systems; choose whether to scan devices using IPv6 or not

Scan secured connections: (Business Hub and Cloud Console) for MacOS X systems; choose whether to scan connections made over secure protocols or not

PUP: (Business Hub and Cloud Console) for MacOS X systems; choose whether to report potentially unwanted programs (PUPs) or not

Web Scanning Tab

Business Hub and Avast Business Cloud Console

Avast Business On-Premise Console

Configure which items should be scanned when they are downloaded from the web.

Scan type: choose to scan all files, or selected file types (specified extensions and/or specified MIME-types), and choose whether to unpack archives with valid digital signatures.

Exclusions Tab (On-Premise Console only)

Configure the list of URLs, MIME-types, and/or processes that are not scanned by Web Shield.

This tab does not exist in the Business Hub, as exclusions are added exclusively in the Exclusions page of the policy.

For more information on configuring exclusions for Web Shield, see Web Shield Exclusions.

Exclusions that you specify on this screen only apply to Web Shield and do not affect any other scans or Shields. To exclude a location from all Avast Business Antivirus scans, see Configuring Standard Antivirus Exclusions.

Actions Tab

Business Hub and Avast Business Cloud Console

Avast Business On-Premise Console

Control what actions are taken by Avast when a virus, potentially unwanted program (PUP), or suspicious file is detected.

Main Action /First action to try : select the first action your Antivirus will take between Abort connection or Ask.

Notification Options: choose whether to show notifications when Web Shield takes action against a detected threat.

Packers Tab

Business Hub and Avast Business Cloud Console

Avast Business On-Premise Console

Configure which archive (packer) files Avast Business Antivirus should try to unpack during the scanning process. Unpacked files can be better analyzed for malware by Web Shield. Unpacking a file is the same as extracting a file from an archive. Original archives, including the files contained within, remain intact when being processed by your Shield.

You can select All packers, or specific packer files from the extensive list by checking the boxes.

Sensitivity Tab

Business Hub and Avast Business Cloud Console

Avast Business On-Premise Console

Adjust the sensitivity of the Avast Business Antivirus scan for Web Shield.

Heuristics Sensitivity: Heuristics enable Antivirus to detect unknown malware by analyzing code for commands that may indicate malicious intent. The default setting is Normal. With higher sensitivity, Antivirus is more likely to detect malware, but also more likely to make false-positive detections that incorrectly identify files as malware. Code emulations unpack and test suspected malware in an emulated environment where the file cannot cause damage to devices. Use code emulation is enabled by default

Sensitivity: choose to test whole files, which will cause the scan to be slower but more extensive

PUP and suspicious files: choose whether or not to scan for Potentially Unwanted Programs (PUPs)

Site Blocking Tab

Business Hub and Avast Business Cloud Console

Avast Business On-Premise Console

Configure the list of URL addresses that are blocked by Web Shield. Site blocking works very similar to configuring exceptions, only the configured addresses are blocked instead of excluded from scanning.

Script Exclusions Tab (On-Premise Console only)

Configure the list of scripts that are not scanned by Web Shield, listed by URL.

This tab does not exist in the Business Hub, as exclusions are added exclusively in the Exclusions page of the policy.

For more information on configuring exclusions for Web Shield, see Web Shield Exclusions.

Exclusions that you specify on this screen only apply to Web Shield and do not affect any other scans or Shields. To exclude a location from all Avast Business Antivirus scans, see Configuring Standard Antivirus Exclusions.

Report File Tab

Business Hub and Avast Business Cloud Console

Avast Business On-Premise Console

Customize the content of the Shield-specific scan report file, such as which items are included, the file name, and file type. The report is saved in one of the following locations:

  • Windows 10, Windows 8.1, Windows 8, Windows 7, or Windows Vista: C:\ProgramData\Avast Software\Avast\report
  • Windows XP: C:\Documents and Settings\All Users\Application Data\Avast Software\Avast\report

MacOS X (On-Premise Console)

Enable IPv6: choose whether IPv6 is utilized.

Scan secured connections: choose whether to scan secure connections, and/or secure connections from browsers only.

PUP: choose whether to report potentially unwanted programs.

Exclusion list: configure the list of URLs that are not scanned by Web Shield.

For more information on configuring exclusions for Web Shield, see Web Shield Exclusions.

Exclusions that you specify on this screen only apply to Web Shield and do not affect any other scans or Shields. To exclude a location from all Avast Business Antivirus scans, see Configuring Standard Antivirus Exclusions.