Back=right mouse click.
IWSVA is compatible with Damage Cleanup Services (DCS), a separately available program from Trend Micro that allows you to automate the cleanup and repair of client systems following or in response to spyware, phish, and other Internet threats.
The IWSVA - DCS relationship is especially relevant in networks where "outside" machines such as laptops are allowed to join, or where there is no real-time desktop antivirus solution. IWSVA, which monitors inbound and outbound HTTP traffic, can detect outbound traffic to known phish, spyware, and Trojan destinations and block them. It is DCS, however, that can automatically perform the clean up and repair of affected systems.
DCS repairs typically include removing the rogue programs "dropped" by the Trojan onto the client system, cleaning up the Windows Registry, and removing malicious code from memory and boot sectors.
If DCS is unable to contact or repair the affected system(s), you can have it report back to IWSVA, which can then restrict Internet access by redirecting the client's browser to a manual ActiveX DCS cleanup page.
In the "Example Phish" topic (listed in the following section), IWSVA is configured to recognize outbound client requests to the bogus URL and prevent access.
Using Multiple DCS Servers
Example DCS Message
Supported DCS Clients
Example Phish
