Video Screencast Help
Symantec Appoints Michael A. Brown CEO. Learn more.

Action taken:Pending Side Effects Analysis : Access denied

Created: 06 Jun 2008 • Updated: 23 May 2010 | 2 comments
hi all!
yesterday, I scanned my computer and received symantec notification with the content below:
 
Scan type: Auto-Protect Scan
Event: Risk Found!
Security risk detected: W32.Netsky.P@mm!enc
File: C:\WINDOWS\Temp\DSTA26.tmp
Location: C:\WINDOWS\Temp
Computer: PINE
User: SYSTEM
Action taken: Pending Side Effects Analysis : Access denied
Date found: Friday, 6 june 2008  9:45:30 a.m.
who can explain what "Action taken: Pending Side Effects Analysis : Access denied" mean ?
and virus be deleted or quarantine ?
Thanks much!

Comments 2 CommentsJump to latest comment

Paul Murgatroyd's picture
SEP has a component called ERASER.  When SEP detects a threat such as yours, it blocks access to the threat then goes and looks in the ERASER database to see what other files might be related to the threat.  It then takes the action you have configured on the file it found and other associated files as per the ERASER database.
 
Side Effects Analysis is when SEP looks through the database to determine if there are other related files.  "Action taken: Pending Side Effects Analysis : Access denied" means SEP has denied access to the file while it consults the ERASER DB for more information... you should see a second notification or log after that tells you what it did with that and its related files.

Paul Murgatroyd
Principal Product Manager, Symantec Endpoint Protection
Endpoint twitter feed: http://twitter.com/symc_endpoint