Vista Defender 2013

Vista Defender 2013 Description

Type: Rogue AntiSpyware Programs

ScreenshotVista Defender 2013 is a fraudulent security program that pretends to be a legitimate security tool. There is no difference between Vista Defender 2013 and versions of this bogus security application released in 2010, 2011, and 2012 (for example, Vista Defender 2012). All of these belong to a large family of fake security programs that can detect the victim's operating system and change accordingly in order to carry out a typical rogue security program scam. Vista Defender 2013 should be considered as a dangerous malware infection and Vista Defender 2013 should be removed with the aid of a reliable security application.

Vista Defender 2013 belongs to a family of malware, the WinPC Defender family, that includes fake security programs such as WinPC Defender, SystemDefender, IE Defender, IE Defender, XPdefender, WinDefender2008, PC Privacy Defender, Malware Defender 2009, Smart Defender Pro, Ultimate Defender, Advanced XP Defender, Security Defender Pro 2015.

Vista Defender 2013 and its clones are mainly known because they can adapt to different operating systems. Vista Defender 2013 is a fake security program that will only attack computers with the Windows Vista operating system (Vista Defender 2013 will rarely appear in computers with other versions of Windows, but these cases are very rare). If the victim's computer is running Windows XP or Windows 7, then the victim's computer will be attacked by the two corresponding variants of Vista Defender 2013, XP Defender 2013 or Win 7 Defender 2013. This happens because part of Vista Defender 2013's installation process involved detecting the victim's operating system and downloading its corresponding rogue security program.

Like most rogue security programs, Vista Defender 2013 will attempt to scare the victim into purchasing a fake anti-virus program. It does this by causing the victim's computer to behave erratically and by blocking access to the Internet and to the victim's files. Vista Defender 2013's main symptom is a torrent of system alerts, error messages and pop-up notifications from the Task Bar. All of these will appear constantly, prompting the victim to download a 'full version' of Vista Defender 2013 in order to remove a nonexistent virus infection from the victim's computer. ESG security researchers strongly advise against following any advice in Vista Defender 2013's error messages, due to the fact that Vista Defender 2013 has no way of defending your computer from malware and is actually a malware infection itself.ScreenshotScreenshotScreenshotScreenshotScreenshotScreenshotScreenshotScreenshot


15 security vendors flagged this file as malicious.

Anti-Virus Software Detection
Ikarus Win32.Bancos
AhnLab-V3 Trojan/Win32.Diple
AntiVir TR/Bancos.CDL.8
DrWeb Trojan.KillProc.15905
Avast Win32:Bancos-CDL [Spy]
McAfee Artemis!8A7BB35885CF
Kaspersky Trojan-Ransom.Win32.Foreign.asxx
AVG Dropper.Generic2.AAPU
Ikarus Trojan-Dropper.SuspectCRC
McAfee-GW-Edition Artemis!02E1070C9FAD
AntiVir SPR/Tool.BeeInject.133
Kaspersky Trojan-Spy.MSIL.Agent.buh
Avast MSIL:Crypt-AO
NOD32 a variant of MSIL/Injector.U
AntiVir TR/Boigy.2

Technical Information

Screenshots & Other Imagery

SpyHunter Detects & Remove Vista Defender 2013

File System Details

Vista Defender 2013 creates the following file(s):
# File Name MD5 Detection Count
1 SetupUbi.exe 735e3f35a14cc39fb874b0799a198fb3 127
2 Reboot.exe 10ff0d7610d2a3b7a67854b1b70594fb 30
3 Java.exe 189a3ad00e9023ddbd8b96bc7b25ff3e 12
4 TMf2g99RPH1P2EI.exe 2f5b8fa2968ecb754e181c50e4e869dc 11
5 winmgr.exe bfdef30de6842d4190ec34213593ec49 9
6 update.exe 6124c9689dc1db263359cf83df35325b 6
7 Bla Bla.exe cb9d64689c607953224011d89c08d839 6
8 IZ Crypt Pre Alpha.exe 5a251700f95ca463af81440a06c11086 5
9 A-2068193475.exe 9a65737e5ccc95b04f26f95eaa2be535 4
10 wincmd.exe 506a814c73adbfa70107a40085b90b4a 4
11 074.exe bfd3d50001f18345a7c1a18f4625ed8e 3
12 msdcsc.exe 8f42640869da36976902d674b41cc36a 3
13 ntonctrol.exe 82d507b3655eabbf1c5038aba38bc742 2
14 nodxigobfuby.exe 1ccf02a5ac2c4d22a52c6180b2b2bd8c 2
15 svchast.exe 87b549a60cfc9dd0d4040fb78e879637 2
16 894481.exe 8bd4851fb17d576e54df0b41bd3233c8 2
17 Teemu.exe 2f6ec4885e14e3904d94c037ad8c98fa 2
18 up2date.exe a8a12411d33c56520ef81a83416caca6 2
19 SERVICES.EXE 48b0f162c65c7316db6ec1d294f8f37e 2
20 wins.exe cb5c8a3f5cba769669f662ab9e30b913 2
21 mslutv.exe 7295902ee0f05ab37a2f764e9b45a8b6 2
22 mswuiiio.cmd efb4c09c027c67ee90ab204b9c1ffdc2 1
23 5879257.dll 96d5dfe63f44097d219e1d749ba07d0a 1
24 gbpsvs.dll ea505c2d439a5f36e3e079f25b41ae56 1
25 wlcon.dll fa8d670443046dd1f99dd08241362027 1
26 gbieha.dll ed5ef662951776536fc5a09266de8b08 1
27 6954194.dll 6702fa8bfb4b5582511f22d93cb45a0a 1
28 ycfyycfewuj.exe dc051532febb8ee31d8ad7b7c6ac205c 1
29 8103874.dll b9097671abbe840bb69102e82adc8544 1
30 %CommonAppData%\pcdfdata\[RANDOM CHARACTERS].exe N/A
31 %CommonStartMenu%\Programs\Vista Defender\Remove Vista Defender.lnk N/A
32 %CommonAppData%\pcdfdata\app.ico N/A
33 %CommonAppData%\pcdfdata\config.bin N/A
34 %CommonStartMenu%\Programs\Vista Defender\Vista Defender.lnk N/A
35 %CommonAppData%\pcdfdata\uninst.ico N/A
36 %CommonAppData%\pcdfdata\defs.bin N/A
37 %CommonStartMenu%\Programs\Vista Defender\Vista Defender Help and Support.lnk N/A
38 %CommonAppData%\pcdfdata\support.ico N/A
39 %CommonAppData%\pcdfdata\vl.bin N/A
40 %AllUsersProfile%\Desktop\Vista Defender.lnk N/A
More files

Registry Details

Vista Defender 2013 creates the following registry entry or registry entries:
Registry key
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "pcdfsvc" = "%CommonAppData%\pcdfdata\[RANDOM CHARACTERS].exe /min
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command "(Default)" = ""%CommonAppData%\pcdfdata\[RANDOM CHARACTERS].exe" /ex "%1" %*"

More Details on Vista Defender 2013

The following messages associated with Vista Defender 2013 were found:
Malware Intrusion
Sensitive areas of your system were found to be under attack. Spy software attack or virus infection possible. Prevent further damage or your private data will get stolen. Run an anti-spyware scan now. Click here to start.
Security breach!
Beware! Spyware infection was found. Your system security is at risk. Private information may get stolen, and your PC activity may get monitored. Click for an anti-spyware scan.
System hacked!
Unknown programs is scanning your system registry right now! Identity theft detected!
Vista Defender 2013 Alert
Internet Connection alert!
Suspicious network activity detected!
Malware infection is possible!
Vista Defender 2013 Alert
System hacked!
Unknown programs is scanning your system registry right now! Identity theft detected!

Site Disclaimer is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.


  • Sam:

    I got vista defender 2013. I sure wish they could catch the jerks. I have a second user account on my computer. I switched users to that other account. The erros stopped. So I reloaded a previous restore point. I then switched to the opriginal user account and the vista defender was gone.

  • catherine:

    Great delivery. Solid arguments. Keep up the good work.