Application Resilience policies for Avast Antivirus

You can activate an Application Resilience policy for Avast Antivirus to collect information about the functional status of Avast Antivirus installed on your Windows devices and view the results in reports. You can also configure the policy to attempt to repair or reinstall the application.

Health checks

In addition to checking the version, the following table describes the health checks performed:

If you select Report higher versions as Compliant, higher versions report Compliant without running health checks.

Component	Test performed
Services	Installed	Running	Signed by
Avast Antivirus (AvastSvc.exe) Avast Tools (aswToolsSvc.exe) AvastWscReporter (wsc_proxy.exe)	P	P	One of the signers entered in the policy configuration By default, Signers contains "Avast Software s.r.o.".
Scheduled tasks	Exists	Enabled	Configured properly
Overseer	P	P	URI: \Avast Software\Overseer
			Command: C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
			Argument: /from_scheduler:1
Antivirus	Active antivirus application
Avast Antivirus¹	P
Application name
The application uses the following name: Avast Free Antivirus

¹ Only checked if Check if Avast Antivirus is the active antivirus application is selected in the policy configuration

Repairing and reinstalling

You can configure an Application Resilience policy for Avast Antivirus to enable the Application Resilience (RAR) component A lightweight software component of the Secure Endpoint Agent that detects the status of third party applications installed on a device. The component may also attempt to repair the third party application if it is non-compliant. The RAR component is deployed on a device only when the device is associated with a customized policy group and that policy group's Application Resilience policy is activated. to repair Avast Antivirus if it's not functioning, or reinstall it if it's missing or can't be repaired.

Depending on the Absolute product licenses associated with your account, the Report and repair and Report, repair, and reinstall options may not be available.

The RAR component of the Secure Endpoint Agent can respond to the following issues:

Issue	Resolution
Repair
One or more of the following services aren't running: Avast Antivirus (AvastSvc.exe) Avast Tools (aswToolsSvc.exe) AvastWscReporter (wsc_proxy.exe)	The RAR component restarts each stopped service.
One or more of the following services aren't installed and the service's executable can be detected on the device: Avast Antivirus (AvastSvc.exe) Avast Tools (aswToolsSvc.exe) AvastWscReporter (wsc_proxy.exe)	The RAR component reinstalls each missing service.
The Overseer task doesn't exist, is configured with the wrong task action, or isn't enabled	The RAR component recreates the scheduled task.
The Overseer task isn't enabled	The RAR component enables the scheduled task.
The Overseer task isn't configured properly	The RAR component reconfigures the scheduled task.
Reinstall
Downgrades are not supported. If the version installed on a device is higher than the expected version, no action is taken.
One or more of the following services aren't installed and the service's executable cannot be detected on the device: Avast Antivirus (AvastSvc.exe) Avast Tools (aswToolsSvc.exe) AvastWscReporter (wsc_proxy.exe)	The RAR component downloads and installs the configured version of the application. After installing Avast Antivirus, the RAR component can only set Avast Antivirus as the active antivirus application if Avast Antivirus is the only antivirus program on the device, or the only other antivirus application is Microsoft Defender Antivirus.¹
Avast Antivirus is not the active antivirus application¹
Avast Antivirus failed to be repaired, or the expected version isn't installed

¹ Only checked if Check if Avast Antivirus is the active antivirus application is selected in the policy configuration

Preparing the installer

The installer:

must be an EXE file
can have any file name

Pre-caching installers

The RAR component looks for the following files names when checking pre-cached installers:

Component	File name
Installers	AvastAntivirus.exe

Configuring Application Resilience policies

Before you activate an Application Resilience policy you need to configure the policy. In addition to the settings in Configuring Application Resilience policies, you need to configure the application version and whether Avast Antivirus is the active antivirus application.

To configure the application version:

Under Avast Antivirus version, enter the version of Avast Antivirus you expect to be running on your devices.
- The target version must be a sequence of digits separated by a period.
- You can use wildcard "*" characters after the major version number, for example, 23.* or 23.1.*.
Make sure the version you are entering is consistent with version 23.1.x or higher.
Select Check if Avast Antivirus is the active antivirus application if you want the RAR component to check to see if Avast Antivirus is the active antivirus application running on the device. Leave this option is unselected if you haven't configured Avast to be the active antivirus application.

If you selected the Report, repair, and reinstall option, you also need to configure these settings in addition to the settings in Configuring Application Resilience policies.

To configure the Avast Antivirus specific settings:

[Optional] To only reinstall the application if it's missing, select the checkbox next to Do not reinstall or upgrade if the app is already installed. When this option is selected, the application is not reinstalled when either of the following conditions apply:
- The application version is lower than the expected version.
- The application can't be repaired.
[Optional] Under Additional installation commands, enter the applicable installation command-line parameters to configure any settings not covered by the policy configuration. For more information on available parameters, see Avast's documentation.