by   February 14 2011   
Anti virus Scan Standart avantiscan.exe ; Trojan horse Generic20.BSFB. Did you notice the spelling of Standard? Standart. This was the virus downloads trademark. I use it only as to illustrate and offer one more reason we all need to read more. But you'll need to overlook when I make a typo or spelling error, right? No! I get emails pointing out those mistakes as well. But in this case, downloading the Anit Virus Scan Standart would have been a good time to read and take notice.

Anti virus Scan Standart avantiscan.exe ; Trojan horse Generic20.BSFB.

Did you notice the spelling of Standard? Standart. This was the virus downloads trademark. I use it only as to illustrate and offer one more reason we all need to read more. But you'll need to overlook when I make a typo or spelling error, right? No! I get emails pointing out those mistakes as well. But in this case, downloading the Anit Virus Scan Standart would have been a good time to read and take notice.

Trojan horse Generic20.BSFB was found during a normal scan of a computer used to surf the net. This virus was installed with the classical popup / popunder javascript image. On close, on click the virus was installed. It would not allow login.

This virus installed from a banner advertisement.

(49 different viruses found matches the image popup. Accurate and distructive.)

The popup screen showed "You are infected with 49 viruses" and offered a program link to download and install to remove this virus.

There are hundreds of scam sites selling anti-virus software that is fake. They seem to use names very close to actual companies that are in the business of virus removal.

The rule of thumb is if you get a popup then it's a scam marketing attempt to separate you from your money. I have never seen "Honest Marketing" us a popup alert window. So never believe a popup message about your system unless you actually launched or started the application from your computer or from an accredited website.

"E:\Program Files (x86)\Antivirus Scan Standart\avantiscan.exe";"Trojan horse Generic20.BSFB"

"";"E:\Users\My Computer\AppData\Roaming\CC70.tmp";"Virus identified Packed.DelfCrypt";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox\extensions\{9CE11043-9A15-4207-A565-0C94C42D590D}\chrome\content\timer.xul";"Trojan horse JS/XULCache.C";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\TMPC933.tmp";"Trojan horse Cryptic.FI";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\setup3083959040.exe";"Trojan horse Cryptic.BYB";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\setup2271836992.exe";"Trojan horse Cryptic.BYB";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\PRAGMAe396.tmp";"Virus found Win32/Heur";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\lkwenoju.exe";"Trojan horse Agent2.CAKW";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\jar_cache2443306128009389169.tmp";"Trojan horse FakeAlert.YY";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\ijwkqvygt\irltrwclajb.exe";"Trojan horse Generic20.BQLT";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\e.exe";"Trojan horse Pakes.IEO";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\dkikqtl.exe";"Trojan horse Generic20.BXFN";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\Digital Protection\Uninstall.exe";"Trojan horse Generic17.BAME";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\Digital Protection\dighook.dll";"Trojan horse Cryptic.FR";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\Digital Protection\digext.dll";"Trojan horse Downloader.Generic9.BWUS";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\dhdhtrdhdrtr5y";"Virus found Win32/Heur";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\cerwsxonam.exe";"Trojan horse Downloader.Generic10.BVGH";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\C962.exe";"Virus found Win32/Heur";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\asdB0F9.tmp.exe";"Virus found Win32/Heur";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\asdB0F8.tmp.exe";"Virus found Win32/Heur";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\asdA027.tmp.exe";"Virus found Win32/Heur";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\asd1E2B.tmp.exe";"Virus found Win32/Heur";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\70198.94393360568.exe";"Trojan horse Generic21.FUD";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\6.573462089479613E8.exe";"Trojan horse Generic20.BWCU";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\4.7428123637683547E8.exe";"Trojan horse Generic20.BTVF";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\4.036196932571657E7.exe";"Trojan horse Generic21.FUD";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\35204.933896769384.exe";"Trojan horse Generic20.BQLT";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\3.9495889649861E7.exe";"Trojan horse Generic20.BXFN";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\2846.tmp";"Trojan horse Cryptic.BYB";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\2.0155314791070264E7.exe";"Trojan horse Generic20.BTVF";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\19792079";"Trojan horse Pakes.IEO";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\1.4379226073453766E8.exe";"Trojan horse Generic20.BXFN";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\00919677.exe";"Trojan horse Generic20.BQLT";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\00796199.exe";"Trojan horse Generic20.BTVF";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\00665269.exe";"Trojan horse Generic20.BTVF";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\0.9773828695459704.exe";"Trojan horse Agent2.CABW";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\0.760336930093833.exe";"Trojan horse Agent2.CANW";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\0.48482902451217047.exe";"Trojan horse Generic21.FUD";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\0.4674886137181211.exe";"Trojan horse Generic20.BXFN";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\0.3328999351202242.exe";"Trojan horse Generic20.BWCU";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\0.3149377565348839.exe";"Trojan horse Generic20.BXFN";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\0.2854483921032669.exe";"Trojan horse Generic21.FEJ";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\0.26889835586315625.exe";"Trojan horse Generic21.FEJ";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Temp\0.1988758883891002.exe";"Trojan horse Generic21.FUD";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H3CA1T5P\iztbjhowu[1].htm";"Trojan horse Downloader.Generic10.ANLO";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GG1T59HM\sjnlgn[1].htm";"Trojan horse Generic20.BWFS";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CYTYSI7P\cptrlg[1].htm";"Trojan horse Generic20.BXFN";"Moved to Virus Vault"
"";"E:\Users\My Computer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9ZVMWKRA\qhlkrzhf[1].htm";"Trojan horse Agent2.CAKW";"Moved to Virus Vault"
"";"E:\ProgramData\cKgBjPe06504\cKgBjPe06504.exe";"Trojan horse FakeAlert.YY";"Moved to Virus Vault"
"";"E:\Program Files (x86)\Antivirus Scan Standart\avantiscan.exe";"Trojan horse Generic20.BSFB";"Moved to Virus Vault"

Final Reading: If you looked at the EXE you might even think of a very popular AV software manufacturer. That's what Virus Creators look for.

Anti virus Scan Standart avantiscan.exe ; Trojan horse Generic20.BSFB. Did you notice the spelling of Standard? Standart. This was the virus downloads trademark. I use it only as to illustrate and offer one more reason we all need to read more. But you'll need to overlook when I make a typo or spelling error, right? No! I get emails pointing out those mistakes as well. But in this case, downloading the Anit Virus Scan Standart would have been a good time to read and take notice.