I am somewhat disappointed so far with the notification system. method 1 I can setup email alerts directly from the client when there is a threat or event alert warning. This option works great until I receive 200 email's because one Trojan on one machine keeps recreating itself and getting caught by the real-time scanner. method 2 setting up a notification per hour based on last threats This option would be great if it would only pull the actually "last threats" instead of every last threat from my entire log which consist of an entire year worth of data. I really don't need to know if clientA had a threat 3 months ago. Is there a way to receive 1 notification when someone has a threat. I address said threat and all is well... if this isn't something that can be done then is there anything I can do about receiving 200 emails from one client? I am getting emails every single minute and when I use notification manager I get emails once per hour but I get threats that aren't even threats any longer.