Hello,
I believe, this is what you are looking for.
How to use Application and Device Control to limit the spread of a threat.
Since it's a Malware, leave it to the Symantec Endpoint Protection v.11.
This malware is mere a FakeAV.
It is very important you to carry this software on all machines with latest version of definitions.
There are number of Articles which suggests wide area of Prevention ways and Resolution steps.
Here are the few of the article which you can go through to get your questions answered.
1) How to troubleshoot FakeAV if it is not detected
2) Using Symantec Support Tool, how do we Collect the Suspicious Files and Submit the same to Symantec Security Response Team.
3) Containing An Outbreak: How to clean your network after an incident
http://www.symantec.com/content/en/us/enterprise/media/security_response/whitepapers/containing_an_outbreak.pdf
4) Hardening Symantec Endpoint Protection with an Application and Device Control Policy to increase security
Also, check these which may help as well.
How to block known virus executables that run from %UserProfile% using Application and Device Control
Hope these Excellent Articles help you the best!!!