Atlanta Security User Group

I need some clafication on what exactly is being presented in the Infected and At Risk Computers Quick Report.

Does it mean, these are the computers that have been infected and are STILL at risk at the moment they last checked in.
Or does it mean, these are the computers that reported infected, that might have been cleaned, but you need to clear out in the computer status logs?

Clarification too.

 If you are a system administrator, you see counts of the number of Newly Infected and Still infected computers in your site. If you are a domain administrator, you see counts of the number of Newly Infected and Still infected computers in your domain. Still Infected is a subset of Newly Infected, and the Still Infected count goes down as you eliminate the risks from your network. Computers are still infected if a subsequent scan would report them as infected. For example, Symantec Endpoint Protection might have been able to clean a risk only partially from a computer and thus Auto-Protect still detects the risk.

Title: 'About Risk reports and logs'
Document ID: 2009081410532848
> Web URL: http://service1.symantec.com/support/ent-security.nsf/docid/2009081410532848?Open&seg=ent


Title: 'About the different types of Symantec Endpoint Protection Manager Reports'
Document ID: 2009081409151448
> Web URL: http://service1.symantec.com/support/ent-security.nsf/docid/2009081409151448?Open&seg=ent

 One table lists computers that have a virus infection. The other table lists the computers that have a security risk that has not yet been remediated.