We are running Symantec Endpoint Protection Manager 12.1.5 on Windows Server 2008 R2 Datacenter.
On the "Home" dashboard, under "Virus and Risks Activity Summary", we have a large number of computers listed under "Still Infected" (Viruses column). When I click on that number, a report gets generated.
Many of these computers are Macs running some variant of OS X.
The main issue is they list a computer (or the same computer is listed several times) and the last column in the report (which is "Action") just says "Left alone". For example:
Computer/User/IP Address = <lists the computer and IP address>
Operating System = OS X 10.8
Current Definitions/Scan Definitions = 02/05/2015 r1 02/05/2015 r1
Scan Type = Definition downloaded
Risk = OSX.SearchProtect
First Infected Time = 11/12/2014 19:26:55
Status Last Updated = 02/05/2015 12:49:30
Domain/Server/Group = <client group>
File/Entry = \Volumes\InstallOptimizer\.resources\takeOverSearchAssetsMac.app\Contents\MacOS\takeOverSearchAssetsMac
Action = Left alone
For other entries, I'm seeing the "Action" be "Not applicable".
Is there any way to remove these entries and/or clean them up? It seems like Symantec should be deleting these. I've run Administrator scans on the clients and that doesn't seem to do anything (other than update the "Status Last Updated" column).