Yes you can enable the feature for "Application learning" and with the help of the learned application list you can find out what all applications are running on the client where SEP is installed.

With the help of system Lockdown feature you can block unwanted software from running

Note :- Test these things before you do it in the production

You woudl be able to get these reports via System Lock down Feature, You can configure the logging system on one machine and you would get reports for all that your looking for.

Please refer to this article:-

Configuring system lockdown

https://www-secure.symantec.com/connect/forums/report-2

Application Learning allows Symantec Endpoint Protection (SEP) clients to report information and statistics about the executables that are run on them. This information is provided to the Symantec Endpoint Protection Manager (SEPM) and aggregated into the SEPM database. The purpose of this information is to build a list of known applications in an environment to create Application-based firewall rules, Host Integrity (HI) rules and can be used as a reference for developing Application Control rules and Centralized Exceptions

check this link

http://www.symantec.com/business/support/index?page=content&id=TECH134367

once identified you can set for systemlockdown using this link

 Enabling system lockdown to block unapproved applications

http://symantec.com/docs/HOWTO55132

I agree with Pete to use Application learning. However, System Lockdown can be dangerous (if your whitelist doesn't span all necessary applications, the client may freeze), but even if it works, it's cumbersome to maintain because you constantly have to add new approved applications. For example, every browser patch must be added to the System Lockdown whitelist.

Perhaps it's better you forbid the unauthorized software through Application Control rules. See this PDF document: http://www.symantec.com/connect/sites/default/files/Configuring_Application_Control_1.1.pdf