Hi All:
Has any other SEP user out there had experience with "Security Master AV"?
We had this situation today. A user laptop was infected with this fake AV. The SEP agent was not running anymore.
Now we are at a point where 'preventive' measures failed and start to think how to remove this virus.
I checked
http://www.symantec.com/business/security_response/landing/azlisting.jsp?azid=S
Security Master AV is not listed in the Threats list.
A search does not show any relevant results.
A google search reveals bleepingcomputer had an uninstall guide since 26May2010.
http://www.bleepingcomputer.com/virus-removal/remove-security-master-av
I know not all AV are 100% and its a mouse and cat catch up game.
But between 26May and today 8Aug, sounds like a very long time for a reputable Security company to catch up.
I have opened a case to Symantec to tackle this virus. And help to install SEP (we can't install after trying so many things).
I'm just thinking why there is no 'self-help' info on the virus on the security response site and forum. A removal tool sounds necessary.
I tried to run a removal tool from Norton but it asks to be connected to the internet. Of course at this point we have isolated the infected laptop from the network.
Hope somebody shares.