SSIM SEP Collector Data Status ID - Need Explanation
When drilling down into events that are part of a SSIM incident you discover that SEP has detected a number of malware threats.
The Data Status ID of the threats is listed as :
2) Partially Corrected
What exactly do these items mean?
* "Uncorrected" is explained as "a threat that has not been remediated, no action taken against it because as a running process it could not be terminated or deleted. The system will need to be rebooted" at the kb article TECH162077- http://bit.ly/TEmvU8