Under your Access Protection and Unwanted Programs Policy, Have you enabled all the necessary rules to stop malware from infesting the computers in the first place ?
Going by the info provided by you, I believ that McAfee is not oblivious to that software and knows that it is a rogue program and that is why it is detecting it as well but afterit has installed itself. Alas, Thats a little too late. However, that also makes me wonder hwo about upping the ante against the bad guys in my Access Protection and on On Access Scanner settings ?
Please provide me a screenshot of what your settings are under Access Protection and also the On Access Scanner.
Managed to capture the remote executable that this Fake was trying to install. Sent this executable up to VirusTotal and only about 1/3rd of the major virus companies detected it. It reported that both McAfee & Symantec could not identify it. It was a new variant that only came out that morning and would explain why McAfee didn't detect it. I guess I could have turned up the levels for Artemis. However, in our environment we can't risk any false positives and leave artemis to a lower level.
It is getting harder and harder to prevent these Fakes. I guess we need to educate our end users to not click on any unknow links/files.
Please see this link for details on how to submit samples to us - as you are a corporate customer you have access to the service portal and can use this to send a sample and log a service request at the same time.
Hope this helps,
Moving this to the security awareness area in case you need further assistance.