Hello,
What version of SEP are you carrying?
Checking it carefully, found this:
Your Symptoms looks very similar to these as below:
You run a scan multiple times and it continually finds threats previously quarantined in C:\Documents and Settings\All Users\Application Data\Symantec\SRTSP\Quarantine. A full system scan will find the files and claim that it successfully quarantined the file but will be found my another full system scan in the same location.
Cause: Unknown. It is suspected that the SRTSP is a middle point for the main quarantine typically located in C:\Documents and Settings\All Users\Application data\Symantec Endpoint Protection\Quarantine
Solution:
Disable the System Restore from the Machine.
When trying to access C:\Documents and Settings\All Users\Application Data\Symantec\SRTSP\Quarantine you will probably get an access denied.
- Right click on the folder, go to Properties then Security.
- Add the user who is currently logged on with Full Control.
- Open command window (Start > Run > cmd).
- At command prompt, navigate to the directory (cd "C:\Documents and Settings\All Users\Application Data\Symantec\SRTSP\Quarantine")
- Delete all files by typing the command del *.* and hit enter.
- Restore the default privileges by removing the user added with Full Control.
- Initiate a full system scan.