This site is only for Avast Business products. For articles on AVG Business products, see AVG Business Help.

Threat and Alert Types

This Article Applies to:

  • Business Hub
  • Avast Business On-Premise Console

Device Statuses

Your devices are marked with colored dots so you can easily see the state of your network. Different statuses are marked with different colors.

  • Green—Indicates the device is protected and safe. No action is required.
  • Yellow—Indicates the device is vulnerable. For example, a device might be yellow if a scan has not been run in a long time, or if the device has been added within the last thirty days but has not been activated. If a device is yellow, you should take the recommended action as soon as possible.
  • Red—Indicates the device is in danger. For example, if a threat has been detected on the device. Take immediate action.
  • Grey—Indicates the device is inactive or is in the process of being activated. Decide whether to activate the device or remove it from the network.

Device Status Breakdown

Device Global Status Antivirus Status (AV-related risks) Patches Status (Patch-related risks) Device Status (Device-related risk checks) One or More Product Subscriptions
Safe  
  • Deployed
  • Deploying
  • Ignored
  • Scheduled
  • Failed to deploy - whole patch in policy is OFF
  • Missing (Critical) - whole patch in policy is OFF
 
  • Valid
Vulnerable
  • Threat found and resolved
  • Virus definitions older than 7 days
  • Missing (Important)
  • Failed to scan (patch)
  • Device offline more than 14 days
  • Restart needed
  • Valid
In Danger
  • Threat found and unresolved
  • One of the Shields disabled
  • Virus definitions older than 14 days
  • Failed to deploy - whole patch in policy is ON
  • Missing (Critical) - whole patch in policy is ON
  • Device offline more than 30 days
  • MacOS drivers missing
  • Version older than 18.8 (Win XP, Vista)
  • Client out of date
  • Valid
Expired      
  • Invalid

Device Alerts

Hub

Alerts and threat notifications for the Hub fall under five categories: Antivirus, Patch Management, Cloud Backup, Devices, and Subscriptions. If your device message indicates one of these alerts, please take the recommended action. Alerts should automatically be resolved and removed by the event listed under “Auto-resolve”.

Antivirus

Alert name Details Suggested Action Auto-resolve
Threat unresolved One or more threats have been found by one of the Shields but could not be resolved Inspect your Policy configuration, examine the threat and remove it manually from the Threats list in Device Details, or restart the device to perform a Boot Time Scan None
Virus definitions outdated 14+ days The virus definitions in the database are out of date by more than 14 days Create a task to update the virus definitions (VPS update) VPS updated
Virus definitions outdated 21+ days The virus definitions in the database are out of date by more than 21 days Create a task to update the virus definitions (VPS update) VPS updated
Threat quarantined One or more threats have been found by one of the Shields and automatically moved to the Virus Chest Examine the threat in the Virus Chest and either delete or restore it manually None
OS permissions missing One or more security service(s) needs to be allowed on the device Click Learn more on the alert to find out how to allow the proper permissions OS Permissions allowed
Antivirus program outdated The Antivirus program is out of date Create a task to update the Antivirus program Antivirus program updated
Threat found and resolved One or more threats has been found by one of the Shields and has been resolved automatically No further action is necessary, but we recommend creating a Quick Scan task for the device None

Patch Management

Alert name Details Suggested Action Auto-resolve
Critical patch missing One or more critical/important patches are missing on the device Deploy the missing patches via the Devices or Patches page Patch deployed*
Patch failed to install One or more patches have failed to install on the device View the patch itself to see the possible reasons for failure Patch deployed
Patches missing One or more low severity patches are missing on the device Deploy the missing patches via the Devices or Patches page Patch deployed*
* = If the patch is installed outside of Avast‘s Patch Management software, this alert is deleted

Cloud Backup

Alert name Details Suggested Action Auto-resolve
No backup space left Your Cloud Backup storage is full and there is no space for new backups Purchase more backup space or clear out obsolete files Subscription increased / space cleared
Restore failed Some or all files could not be restored to a device View files, check device is connected to the Hub and try again None
Backup overdue Your scheduled device backup has not been performed for a specified period of time Check why device isn’t backing up Backup runs successfully
Backup failed Your device backup failed to complete Check why device isn’t backing up successfully Backup runs successfully
Running out of backup space Cloud Backup storage is almost full and there is limited space for new backups Purchase more backup space or clear out obsolete files Subscription increased / space cleared
Device could not be removed Your device could not be removed from the Hub due to an ongoing restore task Wait for restore to finish, then remove device None
Partial backup Some files on your device were not backed up Check which files were not backed up and why Backup runs successfully
Restore finished Files were successfully restored to a device View device None

Devices

Alert name Details Suggested Action Auto-resolve
Device requires restart Your device needs to be restarted for one or more reasons Create a restart task for the affected device(s) Device restarted
Agent outdated 21+ days The device management agent is out of date by more than 21 days Check why the device is not updating Agent updated
Device connection lost 14+ days Your device backup failed to complete Check why the device is not connected to the network and reconnect it Device online
Device connection lost 21+ days Cloud Backup storage is almost full and there is limited space for new backups Check why the device is not connected to the network and reconnect it Device online
Obsolete OS Some files on your device were not backed up Consider updating the device to a more recent OS None

Subscriptions

Alert name Details Suggested Action Auto-resolve
Antivirus subscription expired One or more device(s) is using an expired Antivirus subscription Renew the subscription, choose a new subscription with available seats, or purchase new seats Subscription valid again
Patch management subscription expired One or more device(s) is using an expired Patch Management subscription Renew the subscription, choose a new subscription with available seats, or purchase new seats Subscription valid again

On-Premise Console

Alerts and threat notifications for the On-Premise Console are simple. If your device message indicates one of these alerts, please take the recommended action.

  • Virus definitions are out of date. New virus definitions are available. Update your virus definitions.
  • A threat was detected and is currently in the virus chest. View the virus chest. You are taken to the virus chest where you can see entries filtered by the current device.
  • Your device has been out of communication for an extended period. The device may be unprotected. Check why the device is not connected to the network and connect it.
  • The device software is out of date. A new software version is available. Create and execute the program update task on the current device.
  • Web Shield is currently disabled on your device. Check the status of your device settings and enable Web Shield as needed.
  • File Shield is currently disabled on your device. Check the status of your device settings and enable File Shield as needed.
  • Mail Shield is currently disabled on your device. Check the status of your device settings and enable Mail Shield as needed.