OfficeScan can take the following actions against viruses/malware and spyware/grayware:
Delete: Deletes an infected file
Quarantine: Renames and then moves an infected file to the client computer’s quarantine directory. When the client connects to the server, the client sends quarantined files to the server’s quarantine directory.
Clean: Cleans a cleanable file before allowing full access to the file, or lets the specified next action handle an uncleanable file
Rename: Changes the infected file’s extension to "vir". Users cannot open the file initially, but can do so if they associate the file with a certain application. A virus/malware may execute when opening the renamed infected file.
Pass: Allows full access to the infected file without doing anything to the file. A user may copy/delete/open the file.
Deny Access: Denies access (copy, open) to the infected file. The client does not move the file to a different location (as opposed to Quarantine). Users can manually delete the file.
Clean: Terminates processes or delete registries, files, cookies and shortcuts
Pass: Logs the spyware/grayware detection for assessment
Deny Access: Denies access (copy, open) to the detected spyware/grayware components