Hello,
If the Home page of the Symantec Endpoint Protection Manager (SEPM), in the Endpoint Status section (Middle Left), the Disable (Orange) status shows several Symantec Endpoint Protection (SEP) clients as disabled.
The SEP Clients will show up in this section if any of the following are in a disabled state:
- Auto-Protect Status
- Firewall Status
- Sonar Status
- Download Insight Status
- Network Intrusion Prevention Status
- Browser Intrusion Prevention IE Status
- Browser Intrusion Prevention Firefox Status
- Tamper Protection Status
Secondly, Still Infected:
The Still Infected count shows the total number of risks that a scan would continue to classify as infected, also within the configured time interval. For example, computer may still be infected because Symantec Endpoint Protection can only partially remove the risk. After you investigate the risk, you can clear the Still Infected count from the Computer Status log.
Hope that helps!!