[bitx]

Windows Foolproof Protector
FakeVimes
testercleanperfomance(dot)info

[thisisu]

Windows Foolproof Protector
FakeVimes - 182469197ef407703dca5845a08d994e
pass: infected
https://www.virustotal.com/file/f1e0ec6 ... /analysis/

[Blaze]

Windows Protection Unit

[Neurofunk]

https://www.virustotal.com/file/3c963d3 ... 334603595/
Smart Fortress 2012 (WinWebSec)
MD5: f2b7c1c176a45c6b0a7637254390f14c
Detection Ratio: 8/42

[thisisu]

Windows Antivirus Patch
FakeVimes - 8e2e6240bfe10a3a8cf3c91fa9bc273e
pass: infected
https://www.virustotal.com/file/08b8073 ... /analysis/

[thisisu]

Smart Fortress 2012
Winwebsec - 70e4788c232692a9a154ee542ae2e8c1
pass: infected
https://www.virustotal.com/file/bcaa525 ... 334629386/

[thisisu]

Windows Antivirus Patch
FakeVimes - MD5: 542ad9a260323a63d70e2324a2ebc74b
https://www.virustotal.com/file/e11ee24 ... /analysis/

[thisisu]

Windows Safety Manager
FakeVimes - MD5: 45a8a976e37f3035c9fc7d029faff405
https://www.virustotal.com/file/9f3214a ... /analysis/

Kind of interesting to me (and perhaps to you) that these last 2 FakeVimes infections only provide the Protector-????.exe. It used to be a seperate installer (around 2.03MB) that would extract the Protector-????.exe to %appdata%. However, some of the "installers" did not function correctly even on live machines so I think they just decided to use the direct .exe - no "installer" file. :)

[thisisu]

Here is one with the full installer :)

Windows Safety Manager
FakeVimes - MD5: ee9d8d8f22f855560fcd0265295184bd
https://www.virustotal.com/file/2bafea6 ... /analysis/

[thisisu]

Windows Safety Manager
FakeVimes - MD5: 40d9c0ceab737cde61867a9165d98c67
https://www.virustotal.com/file/fc816e8 ... 334719396/