Windows xp internet security Trojan - BNK.Win32.Keylogger.gen now outlook does not work

Similar Questions

• recovery of the Trojan - BNK.Win32 - Keylogger.gen and XP Home Security 2012

  "I just get partially of the" XP home security 2012 through Trojan - bnk.win32.gen "virus/malware on an old xp sp3 computer that is protected by MSE and all updates were up-to-date until yesterday 1/3 when the virus is shown.  How MSE failed I don't know, but even the "stand-alone sweeper' that I downloaded late last night would not find it or clean it. The virus deleted the files in system restore, shut down access to the Task Manager, turned the remote access to the computer "on" and created a user account for itself, making it an administrator. ". It has blocked access to the internet and little almost every executable there is on this machine. After trying every difficulty I could gather, including "computer beeps" suggestions, malwarebytes download, download spyware from doctors, I even tried downloading kav12.0.0.374en, I did the rkill and tkill but nothing find and eliminate the infection, at each reboot, that pop-ups will reappear after a few minutes.

  Finally, against my better judgment, I ran "NPE.exe" of norton that I had to run because the virus kept blocking the executable running from security 'start of command-line only' mode. After graduating with the NPE success to start and run, he eliminated all traces of the virus and I rebooted the xp cpu with zero evidence that the machine was infected however the only way to use one of the applications is to go to the directory where are and run executables and windows applications, as all the games etc Notepad, wordpad, paint... tell me that the rundll32 has disappeared, but it is right in the system32 directory where it belongs. This computer is my mother, and there is no backup to speak, is there any where I can find the system settings to restore all other paths then restore the deleted system files?

  Thank you

  Nick

  Hello nicktjr,

  For specific questions on MSE, I'll post in the following forum:

  http://answers.Microsoft.com/en-us/protect/Forum?tab=all

  I would check there before another software antivirus running on the system to ensure that the two can co-exist without any problem.

  The SFC scan helped to solve the problem?

  Let us know.

  Best regards

  Matthew_Ha

• Internet Explorer is infected w / Trojan - BNK.Win32.Keylogger.gen Version8.0.6001.18702, XP Antiyspyware 2012

  When I'm trying to axcess internet explorer, I get a box recommending that I have activate XP Antispyware 2012. He tells me to click to register.

  He tells me to do this because Internet Explorer is infected with Trojan - BNK.Win32Keylogger.gen

  Name: Windows Internet Exployer

  Location C: /ProgramFiles/Internet/Explorer/iexplore.exe

  (all the / brands above address in reverse)

  Company: MicrosoftCorp.

  Version8.0.6001.18702

  Only one user on my computer gets a box indicating the firewall is enabled, disabled, & update is on.

  My user gets same box indicating the Microsoft update is disabled & the other two are on.

  I went to the Microsoft site and updated, scanned, & removed two potential threats.

  I did complete analyses trend & Lavasoft that cleaned up the threats.

  The another usre when trying to axcess internet exporer continues to get this stuff recommended 2012.

  He also requested money for this update when it became clear last night.

  Help, please.

  RainToday

  XP Antiyspyware 2012 is spyware. These spy goods send pop ups to buy their products. If we get into the details of credit card for the purchase of these goods spy, they hack our credit card information.

  If you try to remove this spyware, there are full instructions on how to do

  only hand on the link: http://www.bleepingcomputer.com/virus-removal/remove-xp-antivirus-2012

  If our computer is infected with this spyware, that it will not allow is to open any .exe files. All the. EXE files will be blocked by this spy software. There is only one way to open it.  Just right click on the file and select run as administrator.  That one will work. Using this method, we can open everything. EXE files.

  If you have a PC, download and save the Norton Power Eraser on your desktop, you can download and get more information

  from there, http://www.norton.com/virushelp
  It's free, so you don't have to worry about the price. Just download and save
  and he'll take care of the rest.  After you save the file, right click the Norton Power Eraser(NPE.) EXE file) and select run as administrator. Norton power Eraser will start the scan and remove infections.

• Windows Media Player Security upgrade 2.5.01 need upgrade button does not work

  Trying to get the Update 2.5.0.1 DRM for Windows Media Player 11 in always unsuccessful XP regardless of what I do.  The upgrade button is grayed out in Google Chrome to http://drmlicense.one.microsoft.com/Indivsite/en/indivit.asp and although she is shown here not greyed out in IE, when you click on it then the new upgrade has completed successfully the button appears, but is grayed. The upgrade does not.  I need the update to download and transfer audiobooks, the Overdrive Media Console in Windows Media...

  the Forum that you accessed not all that useful - to with 'her' security upgrade not mediaplayer

• can't connect to my home internet income james ashley forgot it the link password does not work and the password I was given does not fit into the password box

  can't connect to my home internet income james ashley forgot it the link password does not work and the password I was given does not fit into the password box

  Are you sure that you do not have to register on this site through the usual way and what you should be used elsewhere on the site?

  Have you tried to contact them to help this topic or to check if they have a FAQ on this subject?

  I found this in another thread that you created [*]:

  I'm not sure do I bought a home income internet james ashley program and I copied the login info I was given and the password does not fit into the window of password and I forgot the link password does not work I sent emails, but do not receive an answer im don't know what to do is anyway you can help me to recover my info or help me change the password?

  I assume that you have downloaded and installed this program and need to use this password in this program or only you can use these data to download the program from the site james ashley?

• I had a windows 2008 r2 domain 1 DC everything worked fine, I added a second windows of DC 2012 now Kerberos does not work for RDP

  I had a windows 2008 r2 domain 1 DC everything worked fine, I added a second windows of DC 2012 now Kerberos does not work for the RDP, Hyper V replication is nothing below a couple of samples of what I see I do not know where to begin finding the problem

  + System

  -Supplier

  [Name]  Microsoft-Windows-Security-Kerberos
  [Guid]  {98E6CFCB-EE0A-41E0-A57B-622D4E1B30B1}
  [EventSourceName]  Kerberos
   
  -EventID 3

  [Qualification] 32768
   
  Version 0
   
  Level 2
   
  Task 0
   
  Opcode 0
   
  Keywords 0 x 80000000000000
   
  -TimeCreated

  [SystemTime] 2016-01 - 03 T 01: 34:27.000000000Z
   
  2991 EventRecordID
   
  Correlation
   
  -Execution

  [ProcessID] 0
  [ThreadID] 0
   
  Channel system
   
  Computer DC02.xxxxxxonline.com
   
  Security

  -EventData

  LogonSession xxxxxxONLINE.COM\xxxxxx
  ClientTime
  1:34:27.0000 03/01/2016 Z ServerTime
  Error code 0 x 19
  ErrorMessage KDC_ERR_PREAUTH_REQUIRED
  ExtendedError
  ClientRealm
  CustomerName
  ServerRealm xxxxxxONLINE.COM
  ServerName krbtgt/xxxxxxONLINE.COM
  TargetName krbtgt / * address email is removed from the privacy *
  ErrorText
  E file
  Line d3f
  30773054A103020113A24D044B3049301FA003020112A1181B16524F434B45594F4E4C494E452E434F4D726F636B65793005A003020117301FA003020103A1181B16524F434B45594F4E4C494E452E434F4D726F636B65793009A103020102A20204003009A103020110A20204003009A10302010FA2020400

  --------------------------------------------------------------------------------

  Binary data:

  In the words

  0000: 54307730 010203A 1 044DA213 3049304B
  0008: 0203A01F 18A 11201 4F52161B 59454B 43
  0010: 494C4E4F 432E454E 6F724D4F 79656B 63
  0018: 03A 00530 30170102 0203A01F 18A 10301
  0020: 4F52161B 59454B 43 494C4E4F 432E454E
  0028: 6F724D4F 79656B 63 03 HAS 10930 A2020102
  0030: 30000402 0203 HAS 109 02A 21001 09300004
  0038: 010203 A 1 0402A20F 00

  In bytes

  0000: 30 77 30 54 A1 03 02 01 0w0T¡...
  0008: 13 4 04 4 B 30 49 30 A2. ¢ M.K0I0
  0010: A0 03 02 01 12 A1 18 1F. ....¡.
  0018: 1 16 52 4F 43 4 B 45 59 B... XXXXXX
  0020: 4F 4 49 4F 4E 45 2ND 43 ONLINE. C
  0028: 4 72 6F 63 6 b 65 79 OMxxxxxx 4F
  0030:30 05 A0 03 02 01 17 30 0. .... 0
  0038: A0 03 02 01 03 A1 18 1F. ....¡.
  0040: 1 16 52 4F 43 4 B 45 59 B... XXXXXX
  0048: 4F 4 49 4F 4E 45 2ND 43 ONLINE. C
  0050: 4 72 6F 63 6 b 65 79 OMxxxxxx 4F
  0058:30 09 03 02 01 02 A2 A1 0... ¡¢
  0060: 02 04 09 03 02 A1 00 30... 0.¡..
  0068:01 A2 02 04 00 30 09 10... ¢... 0.
  0070: A1 03 02 01 0F A2 02 04... ¢...
  0078: 00                        .

  + System

  -Supplier

  [Name]  Microsoft-Windows-Security-Kerberos
  [Guid]  {98E6CFCB-EE0A-41E0-A57B-622D4E1B30B1}
  [EventSourceName]  Kerberos
   
  -EventID 3

  [Qualification] 32768
   
  Version 0
   
  Level 2
   
  Task 0
   
  Opcode 0
   
  Keywords 0 x 80000000000000
   
  -TimeCreated

  [SystemTime] 2016-01 - 02 T 16: 52:38.000000000Z
   
  2943 EventRecordID
   
  Correlation
   
  -Execution

  [ProcessID] 0
  [ThreadID] 0
   
  Channel system
   
  Computer DC02.xxxxxxonline.com
   
  Security

  -EventData

  LogonSession xxxxxxONLINE.COM\xxxxxx
  ClientTime
  16:52:38.0000 02/01/2016 Z ServerTime

  
  Error code 0 x 19
  ErrorMessage KDC_ERR_PREAUTH_REQUIRED
  ExtendedError
  ClientRealm
  CustomerName
  ServerRealm xxxxxxONLINE.COM
  ServerName krbtgt/xxxxxxONLINE.COM
  TargetName krbtgt / * address email is removed from the privacy *
  ErrorText
  E file
  Line d3f
  30773054A103020113A24D044B3049301FA003020112A1181B16524F434B45594F4E4C494E452E434F4D726F636B65793005A003020117301FA003020103A1181B16524F434B45594F4E4C494E452E434F4D726F636B65793009A103020102A20204003009A103020110A20204003009A10302010FA2020400

  --------------------------------------------------------------------------------

  Binary data:

  In the words

  0000: 54307730 010203A 1 044DA213 3049304B
  0008: 0203A01F 18A 11201 4F52161B 59454B 43
  0010: 494C4E4F 432E454E 6F724D4F 79656B 63
  0018: 03A 00530 30170102 0203A01F 18A 10301
  0020: 4F52161B 59454B 43 494C4E4F 432E454E
  0028: 6F724D4F 79656B 63 03 HAS 10930 A2020102
  0030: 30000402 0203 HAS 109 02A 21001 09300004
  0038: 010203 A 1 0402A20F 00

  In bytes

  0000: 30 77 30 54 A1 03 02 01 0w0T¡...
  0008: 13 4 04 4 B 30 49 30 A2. ¢ M.K0I0
  0010: A0 03 02 01 12 A1 18 1F. ....¡.
  0018: 1 16 52 4F 43 4 B 45 59 B... XXXXXX
  0020: 4F 4 49 4F 4E 45 2ND 43 ONLINE. C
  0028: 4 72 6F 63 6 b 65 79 OMxxxxxx 4F
  0030:30 05 A0 03 02 01 17 30 0. .... 0
  0038: A0 03 02 01 03 A1 18 1F. ....¡.
  0040: 1 16 52 4F 43 4 B 45 59 B... XXXXXX
  0048: 4F 4 49 4F 4E 45 2ND 43 ONLINE. C
  0050: 4 72 6F 63 6 b 65 79 OMxxxxxx 4F
  0058:30 09 03 02 01 02 A2 A1 0... ¡¢
  0060: 02 04 09 03 02 A1 00 30... 0.¡..
  0068:01 A2 02 04 00 30 09 10... ¢... 0.
  0070: A1 03 02 01 0F A2 02 04... ¢...
  0078: 00                        .

  This issue is beyond the scope of this site which is for the consumer to related issues.

  To ensure that you get a proper answer, ask either on the Technet site, if it is a type of Pro problem, or MSDN if it's related to the developer

  http://social.technet.Microsoft.com/forums/en-us/homes/en-us/home

  http://social.msdn.Microsoft.com/Forum

• I changed Windows xp to windows 8.1 now CS5 does not work. Error6. what I have to do. Can be

  I changed Windows xp to windows 8.1 now CS5 does not work. Error6. what I have to do. Can you please help?

  
  

  Use the cleaning to remove/uninstall CS5 tool if it is still on the machine.  Before reinstalling.

  Adobe Creative Suite cleanup tool
  ---------------------------------

  helps resolve installation for CS3 thru CS6 and creative cloud problems

  http://www.Adobe.com/support/contact/cscleanertool.html

• Trojan - BNK.win32.keyblogger.gen

  I just got the Trojan virus - BNK.win32.keyblogger.gen... How can I get rid of him? I'm not computer. I also lost my address bar. Can someone help me?

  How can I get rid of him? I'm not computer.

  http://www.bleepingcomputer.com/virus-removal/remove-antivirus-Vista-2010>

  UTC/GMT is 18:23 Thursday, December 29, 2011

• Windows 7 update msxml now wirerless does not work

  install router wireless n again portable sony with windows 7. Windows msxml update and now the wirerless does not work

  Hi Mary1965,

  Welcome to the Microsoft answers site.

  ·         What is the error message or the error code that you get when you try to access the wireless internet?

  I suggest that you run a troubleshooting utility that might help you to connect wireless online.

  1. click on start.

  2. troubleshooting in the start search type.

  3. click on network and Internet in the Troubleshooting window.

  4. click on the NIC to resolve problems with the wireless connection.

  Check now if you are able to communicate online wireless or not.

  If the problem persists, I suggest you uninstall this particular update which was responsible for programs and features and check.

  Now start the Windows updates once more and check.

  You can try to install the stand-alone package to update manually and check.

  Swathi B - Microsoft technical support.
  Visit our Microsoft answers feedback Forum and let us know what you think.

• I recently installed Windows 7 Home Premium (x 64) on my HP Pavilion DV6 laptop and now Aero does not work!

  It is all opaque and I'm trying to install the Intel graphics drivers and Nvidia graphics will not work!

  What I'm doing! She also does not connect to the internet, the sound does not work and I cannot adjust the brightness of the screen.

  Should I try Windows 7 Ultimate? (My PC is recorded, not mobile phone).
  I will provide you more details if you need.

  Hello

  Please review these links and see if the problem is resolved.

  Open the Aero Troubleshooter

  Please visit this link and check if the hardware and software requirements are met.

  What is the Aero visual experience?

  Please get back to us with the State of the question.

• Windows 8.1 installed on my HP Pavilion g7 & Player DVD does not work

  Hi all, I installed Windows 8.1 on my HP Pavilion g7 and now my DVD player does not work for some reason, ideas? I tried troubleshooting and it detects that there is a problem with the USB - IF USB Host Controller xHCI driverfor.

  THX,

  GSlice

  Hello:

  I would try each of the steps in resolution 2, 3, 4 and 5 on the link below.

  One of them can work.

  http://support.Microsoft.com/kb/314060

• Installed the Windows updates now sound does not work.

  I used the windows update Center yesterday and installed the updates that were for my computer, now my sound does not work. When I try and open "Dolby-Publisher of stars", I get this message:

  
  Any help tp fix it would be greatly appreciated as im am not very wise computer.

  Will,

  According to the scenario provided it seems that the problem is that you have updated the drivers for the audio device, but you have not updated the application (Dolby Home Theater - perhaps). If you have two choices, update the application to a version more recent or uninstall the installed update which is relevant to the audio driver (through programs and features - updated).

  See you soon.

• Windows - corrupt file message, telling me to run the chkdsk utility - does not work

  This is the message I get: "the file or directory C:\System Volume Information\EfaData\SYMEFA. DB-journal is damaged and unreadable.  Please run the chkdsk utility. "When I type chkdsk/f to the command prompt it tells me that it cannot run while windows is open and asks if I want it to work when I reboot.  I say Yes and restart and nothing happens.  What I am doing wrong?

  This is the message I get: "the file or directory C:\System Volume Information\EfaData\SYMEFA. DB-journal is damaged and unreadable.  Please run the chkdsk utility. "When I type chkdsk/f to the command prompt it tells me that it cannot run while windows is open and asks if I want it to work when I reboot.  I say Yes and restart and nothing happens.  What I am doing wrong?

  Two observations:

  1 symefa seems to be linked to something of Norton/Symantec called "Symantec Extended File Attributes" that seems related to Unix file data, so why it is present on a Windows system is a good question. A position I've seen connects it with Norton Internet Security 2010/2011 and suggests that uninstall NIS using theNorton removal tool will solve the problem.

  2. the System Volume Information folder is a folder 'hidden super' which is not normally accessible.  This is where Windows XP stores the system restore points andother information important to the operating system .  I suspect that Norton/Symantec has decided to take advantage of the great hidden nature of this file in order to hide some of his own thing.  You can access the System Volume information as described herehttp://support.microsoft.com/kb/309531 and delete the offending file.  But I would get rid of NIS first and then delete the file.

• I'm stuck in reboot loop after trying to install one of the service packs, my cd rom is not working and I don't have a windows cd anyway, I tried to disable automatic reboot, but it does not work, I am running vista

  get service pack was not installed recovery changes and restart without end, once more I have no cd of windows and my rom is not working anyway, it really is _ me off, my computer was useless for days now and I have a very important job out there which is essential to my work. Thanks a lot for windows, I'll be switching os very soon

  Hi Asdlfjasdfjlasdf,

  How did you install ServicePack initially?

  You can try to start safe mode and try to perform a system restore.

  Step 1:

  For a safe boot, you can follow the below given steps:

  1. remove all floppy disks, CDs and DVDs from your computer and restart your computer.

  Click the Start button, click the arrow next to the button lock and then click on restart.

  2. do one of the following:

  a. If your computer has a single operating system installed, press and hold the F8 key as your computer restarts. You need to press F8 before the Windows logo appears. If the Windows logo appears, you need to try again by waiting until the Windows logon prompt appears, and then stop and restart your computer.

  b. If your computer has multiple operating systems, use the arrow keys to select the operating system you want to start in safe mode, and then press F8.

  3. in the display Advanced Startup Options, use the arrow keys to select the option of safe mode you want and press ENTER. For more information about the options, see startup options (including safe mode).

  4 log your computer with a user account with administrator rights.

  When your computer is in safe mode, you will see marked Safe Mode in the corners of the screen. To leave safe mode, restart your computer and let Windows start normally.

  If you are able to boot to the desktop in safe mode try doing a restore of the system at a point when the computer was working fine.

  For more information on Safe Mode, follow the link below:

  Start your computer in safe mode

  http://Windows.Microsoft.com/en-us/Windows-Vista/start-your-computer-in-safe-mode

  Step 2:

  To restore the operating system to an earlier point in time, follow these steps:

  1. Click Start, type system restore in the search box, and then click System Restore in the list programs.

  If you are prompted for an administrator password or a confirmation, type your password or click on continue.

  2. in the System Restore dialog box, click on choose a different restore point and then click Next

  3. in the list of restore points, click a restore point created before you started having the problem, and then click Next

  4. click on finish

  Note: When you perform the system restore to restore the computer to a previous state, programs and updates that you have installed are removed.

  For more information, please follow the below given link:

  How to repair the operating system and how to restore the configuration of the operating system to an earlier point in time in Windows Vista

  http://support.Microsoft.com/kb/936212/

  After you perform a restore of the system try to boot into normal mode and then download the standalone vista service pack and try to install.

  How to obtain the latest Windows Vista service pack

  http://support.Microsoft.com/kb/935791

  Once it is finished downloading the pack of autonomous before installing the service pack disable security software, the system n clean boot, and then install the stand-alone pack. Once the installation is complete normal startup mode and re activate the security software.

  If you are not able to perform the above steps then you will need to take your computer to the technical workshop and get it rectified.

  The steps to perform a clean boot are given below:

  1 log on to the computer using an account with administrator rights

  2. click on start, type msconfig.exe in the start search box and press ENTER to start the System Configuration utility.

  If you are prompted for an administrator password or for confirmation, type your password, or click on continue

  3. on the general tab, click Selective startup, and then clear the check box load startup items. (The check box use the file Boot is not available.)

  4. on the Services tab, click to select the skin all the Microsoft services check box, and then click Disable all

  Note: Following this step lets services Microsoft continue to run. These services include networking, Plug-and-Play, record of events, error reporting, and other services. If you disable these services, you can permanently delete all restore points. Do not do this if you want to use with existing restore points system restore utility

  Once you restart to try Office Outlook and see if you get the same error message. If not then follow the divide and conquer method mentioned in the article about which program is causing the problem.

  For more information about the clean boot, follow the below given link:

  How to troubleshoot a problem by performing a clean boot in Windows Vista or in Windows 7

  http://support.Microsoft.com/kb/929135

  When you have completed the installation of the service pack, follow these steps to reset the computer to start as usual:

  1. click on start, type msconfig.exe in the start search box and press ENTER.

  If you are prompted for an administrator password or for confirmation, type your password, or click on continue.

  2. on the general tab, click the Normal startup option, and then click OK.

  3. When you are prompted to restart the computer, click on restart

  Hope this information is useful.

  Amrita M

  Microsoft Answers Support Engineer
  Visit our Microsoft answers feedback Forum and let us know what you think.

• Windows update will not work or let me start the update program, get the Windows Update error cannot currently get "some updates because this service does not work"

  I moved and my computer is stuck off like 2 and a half months. Well, now I'm back on it, but for some reason any my Windows Update does not start. Whenever I go to him, he tells me that the program is not running and you may have to restart. I do and he said to me again and the same thing. So I went in my services to ensure that all programs, that depends on run works and he says even its operation. How can I fix it?

  Hello Nick,

  Here is a link where you can reset windows update components.

  http://go.Microsoft.com/?linkid=9665683

  Download the fix - it and run the fix - it.

  Please select the mode option run aggressive.

  Disable your anti-virus software.

  Restart the computer and verify if you are able to install the updates.

  Kind regards

  Sumanth.B.S