Threat and Alert Types

This Article Applies to:

  • Avast Business Cloud Console
  • Avast Business On-Premise Console

Device Statuses

Your devices are marked with colored dots so you can easily see the state of your network. Different statuses are marked with different colors.

  • Green—Indicates the device is protected and safe. No action is required.
  • Yellow—Indicates the device is vulnerable. For example, a device might be yellow if a scan has not been run in a long time, or if the device has been added within the last thirty days but has not been activated. If a device is yellow, you should take the recommended action as soon as possible.
  • Red—Indicates the device is in danger. For example, if a threat has been detected on the device. Take immediate action.
  • Grey—Indicates the device is inactive or is in the process of being activated. Decide whether to activate the device or remove it from the network.

Device Alerts

Cloud Console

Alerts and threat notifications for the Cloud Console fall under three categories: device management, Antivirus, and Patch Management. If your device message indicates one of these alerts, please take the recommended action.

Device Management

  • Offline 21+ days. Your device has not synced in more than 21 days. Check why the device is not connected to the network and connect it.
  • Offline 14+ days. Your device has not synced in more than 14 days. Check why the device is not connected to the network and connect it.
  • Obsolete OS. Your device is using an obsolete version of the operating system. Consider updating the device to a more recent OS to resolve this vulnerability.
  • Restart needed. Your device needs to be restarted for one or more reasons. Create a restart task for affected devices.
  • Agent outdated 21+ days. The device management agent is out of date by more than 21 days. Check why the device is not updating.
  • Device has been reinstalled. The device has been reinstalled by the user on the device. No further action is needed.
  • Device has been migrated. The device has been properly migrated to your Console.

Antivirus

  • Antivirus subscription expired. Device is using an expired Antivirus subscription. Choose a new subscription with remaining available seats or purchase new seats.
  • Some OS drivers missing. MacOS drivers are missing or need to be approved on the device.
  • Agent outdated 21+ days. The Antivirus agent is out of date by more than 21 days. Create a task to update the agent.
  • Virus definitions outdated 21+ days. The virus definitions in the database are out of date by more than 21 days. Create a task to update the virus definitions.
  • Virus definitions outdated 14+ days. The virus definitions in the database are out of date by more than 14 days. Create a task to update the virus definitions.
  • Protection components disabled. Some of the core protection components have been disabled manually by the end user. Create a task to restart the device and its components.
  • Threat unresolved. One or more threats have been found by one of the Shields but could not be resolved. You should inspect the Policy configuration or examine the threat and resolve it manually from the Threats list in Device Details.
  • Threat quarantined. One or more threats have been found by one of the Shields and automatically moved to quarantine. You should examine the threat and either delete or restore the threat manually from quarantine.
  • Threat found and resolved. One of more threats have been found by one of the Shields and has been resolved automatically. No further action is needed.

Patch Management

  • Patch subscription expired. Device is using an expired Patch Management subscription. Choose a new subscription with remaining available seats or purchase new seats.
  • Patches failed to deploy. One or more patches have failed to deploy to the device. View the patch itself to see possible reasons.
  • Critical patches missing. One or more critical/important patches are missing on the device. You should deploy them via the Patches page.
  • Patches missing. One or more low severity patches are missing on the device. You should deploy them via the Patches page.
  • Patch scan failed. Scan for missing patches has failed on the device. Create a task to scan the device again.

On-Premise Console

Alerts and threat notifications for the On-Premise Console are simple. If your device message indicates one of these alerts, please take the recommended action.

  • Virus definitions are out of date. New virus definitions are available. Update your virus definitions.
  • A threat was detected and is currently in the virus chest. View the virus chest. You are taken to the virus chest where you can see entries filtered by the current device.
  • Your device has been out of communication for an extended period. The device may be unprotected. Check why the device is not connected to the network and connect it.
  • The device software is out of date. A new software version is available. Create and execute the program update task on the current device.
  • Web Shield is currently disabled on your device. Check the status of your device settings and enable Web Shield as needed.
  • File Shield is currently disabled on your device. Check the status of your device settings and enable File Shield as needed.
  • Mail Shield is currently disabled on your device. Check the status of your device settings and enable Mail Shield as needed.