FakeVimes is a family of Rogue Antivirus programs that use designs similar to Microsoft products. There are several sub-families and designs of these rogues circulating around, though they share some common characteristics.
by Giedrius Majauskas
Typical FakeVimes fake antivirus installs around thousand registry rules that are the same for the whole family. The rules block execution of some executable names. The majority of these files belong to antiviruses. What is even more weird, it blocks some fake antiviruses as well. I do not think this is intentional, though it might help to reduce competition. FakeVimes rogues have little to do with legitimate anti-malware applications. These registry rules are detected really well by some anti-malware applications including 2012 version of spyware doctor.
The regular FakeVimes rogue is relatively short lived. Majority of such parasites live around one day and are replaced. This family is adopted by scammers that believe in fast changing names and generic terms that result in little relevant results. Some more generic names of fakeVimes rogues belong to Virus Doctor family, which changes names at much slower pace and have different design. However, they are very similar to original FakeVimes infection. Another related family is the hotfix or thinkpoint one that changed names even slower. However, all the parasites there are related.
The regular FakeVimes rogues can be eliminated by Spyhunter usually. 2012 version of spyware doctor is really good at detecting the registry entries requiring removal for executing regular antivirus. The executable itself can be found and removed quite easily, as these rogue does not change file names too much.
Windows Protection Maintenance is a rogue antivirus program, a member of infamous FakeVimes family which has been creating new rogue antispyware systems on regular basis. The program uses Trojan viruses in order to get inside the system. Once there the program imitates being a reputable security tool which is not true at all. The rogue [...] Read more on Windows Protection Maintenance removal guide
Windows Safety Series is a fake antivirus program that was designed by computer hackers in order to steal money from random computer users. The program belongs to FakeVimes family of rogue which is responsible for a bunch of fake antiviruses that have been released lately. Windows Safety Series is the newest member in this family. [...] Read more on How to remove Windows Safety Series?
Windows Secure Workstation is the latest rogue antivirus released by FakeVimes creators. It is a fake application that is seeking for the money of computer users without providing actual services. You can get infected by visiting some infected websites or by downloading trojans from Torrents, disguised as video clips usually. Once Windows Secure Workstation gets [...] Read more on Windows Secure Workstation removal instructions
Windows Anti-Malware Patch is a rogue antivirus program that comes from FakeVimes family of rogues. If you are aware of this family of infections, you already have an idea what it is about. Just like all previous releases of rogues by FakeVimes use the same interface and methods to get money from random computer hackers. [...] Read more on How to remove Windows Anti-Malware Patch?
Windows Virtual Security is a rogue antivirus program that was designed by the same computer hackers who are responsible for each rogue program from FakeVimes family. The application spreads through infected websites that contain various videos or offer some software to download. Windows Virtual Security comes bundled with those software or it can get inside [...] Read more on Windows Virtual Security removal instructions
Windows Antivirus Release is the freshest FakeVimes rogue antivirus. Although the makers reduced frequency of name changes, the rogues of this family as dangerous as ever. The program spreads through infected websites where computer user is convinced to download an upgrade to Microsoft Security Essentials that supposedly could remove some parasites. No antivirus website will “scan” [...] Read more on Windows Antivirus Release removal guide
Windows Interactive Safety is one more fake antivirus program that actively attacks computers. It is one of Fake Vimes family rogues. This false antimalware is programmed to work as the rest of this type infection: it imitates a system scan for viruses after which presents a list of malfunctions. The warnings want to persuade you [...] Read more on Stop Windows Interactive Safety from harming your PC
Windows Ultimate Safeguard is a fake antivirus program that belongs to FakeVimes family of rogues. As the rest of the family parasites, this program aims to trick owners of infected computers to spend their money on a purchase that is worth nothing. The scheme of cheating is as follows: once the rogue is in PC, [...] Read more on Windows Ultimate Safeguard removal instructions
Windows Antivirus Machine is a rogue antivirus that belongs to FakeVimes family of parasites. This family gathers a bunch of the same way functioning malicious programs that attempt to trick computer users and get their money. These applications imitate actions of antivirus programs and expect you would by its services later. Windows Antivirus Machine infiltrates [...] Read more on Stop Windows Antivirus Machine from harming your PC
Windows Active Guard is another rogue antispyware program that was created by cyber criminals who are responsible for the entire FakeVimes family of fake tools. The purpose of this creation is to gain some money from computer users without putting much effort. The program is downloaded and installed to the system together with various downloads [...] Read more on Windows Active Guard removal guide
Windows Security Renewal is another false antivirus program that belongs to Fake Vimes rogue family. It is programmed to imitate a computer scan after what a list of warnings and alerts is presented. These messages are created to make you believe that your PC is seriously damaged and needs repair as soon as possible. Of [...] Read more on Windows Security Renewal removal guide
Windows Home Patron is a fake antispyware program that is created by cyber criminals who are responsible for FakeVimes family. The program spreads through Trojan viruses and infects computer system without slightest knowledge of the user. Some of the more experienced computer users may already know the name of Wireshark as in fact there exist a [...] Read more on Windows Home Patron removal instructions
Windows Virtual Firewall is one more malware that attacks computers. It belongs to the Fake Vimes family. This rogue is made to convince the user that his/her PC is infected and in order to fix it one must purchase a licensed version of Windows Virtual Firewall. Before spending your money, you should know that this [...] Read more on How to remove Windows Virtual Firewall?
Windows Premium Defender is a nasty rogue antivirus program that attempts to rip computer users off. It is another creation of FakeVimes family that is realeasing new infections for a few months now. The program pretends to be a legitimate antispyware tool and offers using its scanner in order to detect and remove all malicious [...] Read more on Windows Premium Defender removal instructions
Windows Web Combat is a fake antivirus application that comes from the same family as as most of the latest rogue programs – FakeVimes. It uses the same malicious techniques to get inside the system and perform its malicious plans there.most of the time it employs trojans and comes inside while you are downloading something [...] Read more on Stop Windows Web Combat from harming your PC