Back=right mouse click.
Whenever IWSVA detects an Internet threat in a client download, it will take the action configured for that type of threat (clean, delete, quarantine) and display a notification message in the client's browser.
IWSVA continues to block all subsequent requests for the same URL—organization wide—for a default of four hours. Those users will see a URL blocking notification.
To change the default post-event blocking time:
Using a text editor, locate the parameter "infected_url_block_length" in the IWSVA configuration file: /etc/iscan/intscan.ini
Specify a time, in hours, you want URL blocking to occur for a URL after IWSVA has detected an Internet threat at that URL.
