This site is for Avast Business products only. For articles on AVG Business products, see AVG Business Help. If you are in the right place but cannot find what you are looking for, please contact Avast Business Support for further assistance.


This Article Applies to:

  • Avast Business Hub


Sandbox lets you run applications in a safe virtual environment, isolated from the rest of your device’s system. This feature is useful when you want to run suspicious or untrusted applications without risk. Sandbox storage is a file space completely isolated from the rest of your system and other Sandboxes.

When you run an application in Sandbox, all necessary files are always copied to Sandbox storage where they can be modified as needed without affecting the original files. Any new files created during virtualization are also saved to Sandbox storage.

By default, Sandbox storage is created in the same drive as the original file. If there is insufficient space on the pre-selected drive or you encounter disk performance issues, you may need to select a different drive or browse for another location.

Sandbox is not available for macOS devices.

Sandbox Storage Tab

Specify where Sandbox storage is created, choosing either the same drive as the modified file or on a specific drive.

Web Browsers Tab

Configure the list of browser options that are not virtualized in the Sandbox, whether you can save trusted downloaded files outside the Sandbox, and whether to automatically clear Sandbox storage on a schedule.

Virtualized Processes Tab

Configure the list of applications that are automatically virtualized.

Privacy Tab

Specify which locations can or cannot be accessed by virtualized applications.

Internet Access Tab

Specify whether to allow all or selected virtualized applications to access the internet, or to block internet access for all virtualized applications.

Adding Sandbox Exclusions

If needed, you can add Sandbox exclusions through the Antivirus Exclusions settings of a selected policy's Exclusions tab. These exclusions will only apply when Sandbox is used to virtualize potentially infected files, and will ensure the specified locations are not brought into the virtualized environment.

For more information on standard and component-specific exclusions, see Configuring Antivirus Exclusions.