When Ransomware Shield detects an attempt to change a file by an unknown or disallowed application in one of the protected folders, the user can decide to either Block or Allow modifications to the content of the protected folders.
If the user blocks, we report this to the administrator (in Avast Business Hub) as a "solved" case, because the potentially unwanted file modification was blocked.
If the user ALLOWED it, we report it as an "unresolved" case to urge the administrator to review this particular case and in case the application/process that was allowed is legitimate, then we recommend adding it to the "trusted applications" list to prevent this application from triggering the dialog again. In other words, this is an "unresolved" case/incident/threat to bring it to the attention of the administrator for review.
