Remove Trojan-BNK.Win32.Keylogger.gen
Removal instructions

Severity scale:  
Trojan-BNK.Win32.Keylogger.gen is also known as Trojan-BNK.Win32.Keylogger.gen | Type: Adware

Trojan-BNK.Win32.Keylogger.gen is a dangerous infection, which takes an important role in the distribution of rogue anti-spyware and ransomware infections. Besides, sometimes it may be reported on fake alerts that belong to XP Internet Security 2010Internet Security 2013Win 7 Protection 2013 and similar threats. By reporting about different kinds of viruses, they typically try to scare their victims and then create a need of their removal services. These services may cost from $10 to $100 and in reality be worthless

HOW CAN I GET INFECTED WITH Trojan-BNK.Win32.Keylogger.gen?

Trojan-BNK.Win32.Keylogger.gen attacks computers via security vulnerabilities found, so you should always have anti-virus and anti-spyware installed on your computer if you want to avoid this threat. Once computer gets infected, virus downloads malicious files that belong to more serious viruses that are used to swindle the money from users. You can get infected with rogue anti-spyware or ransomware with a help of Trojan-BNK.Win32.Keylogger.gen.

Another way, how you can run into Trojan-BNK.Win32.Keylogger.gen, involves fake notifications that also belong to rogues. They typically  state that private data (passwords, credit card details, etc.) might be stolen because of this trojan. However, this warning is a total lie and Trojan-BNK.Win32.Keylogger.gen is reported only to scare you into thinking that you are dangerously infected. 

HOW TO REMOVE Trojan-BNK.Win32.Keylogger.gen?

If you are infected with Trojan-BNK.Win32.Keylogger.gen or receive the pop-up ad that reports about it, concentrate on checking your PC with updated anti-spyware. If you can't launch it, follow these steps:

1. Reboot your computer to Safe Mode with Networking. Just reboot your PC and, as soon as it starts booting up, start pressing F8 repeatedly. 
2. Loggin as the same user as you were in normal Windows mode 
3. Now click on IE or other browser and select 'Run As' or 'Run As administrator', enter your Administrator account password (if needed).
4. Enter this link to your address bar: and download a program on your desktop. Launch it to get rid of malicious processes.

Related files: av.exe

Trojan-BNK.Win32.Keylogger.gen properties:
• Connects itself to the internet
• Stays resident in background

Automatic Trojan-BNK.Win32.Keylogger.gen removal:

It might be that we are affiliated with any of our recommended products. Full disclosure can be found in our Agreement of Use.
By downloading any of provided Anti-spyware software to remove Trojan-BNK.Win32.Keylogger.gen you agree with our Privacy Policy and Agreement of Use.
Do it now!
remover for Trojan-BNK.Win32.Keylogger.gen Happiness
Compatible with Microsoft
SpyHunter is recommended remover to uninstall Trojan-BNK.Win32.Keylogger.gen. You should confirm using free trial that it detects current version of parasite.
more than 40.000.000 downloads!
What to do if you failed to remove the infection?
If you failed to remove Trojan-BNK.Win32.Keylogger.gen using SpyHunter, read here how to submit a support ticket or submit a question to our support team and provide as much details as possible.

Alternate Software

We are testing STOPzilla's efficiency at removing Trojan-BNK.Win32.Keylogger.gen (2014-10-21 03:55:25)
Malwarebytes Anti Malware
We are testing Malwarebytes Anti Malware's efficiency at removing Trojan-BNK.Win32.Keylogger.gen (2014-10-21 03:55:25)
XoftSpySE Anti Spyware
We are testing XoftSpySE Anti Spyware's efficiency at removing Trojan-BNK.Win32.Keylogger.gen (2014-10-21 03:55:25)
Defender Pro Ultimate
We are testing Defender Pro Ultimate's efficiency at removing Trojan-BNK.Win32.Keylogger.gen (2014-10-21 03:55:25)
Virus Removal Phone Support
Help Line to remove Trojan-BNK.Win32.Keylogger.gen

Trojan-BNK.Win32.Keylogger.gen screenshot

Trojan-BNK.Win32.Keylogger.gen snapshot

Trojan-BNK.Win32.Keylogger.gen manual removal

Delete registry values:
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command ?�?(Default)?�? = ?�?av.exe?�? /START ?�?%1? %*
HKEY_CURRENT_USER\Software\Classes\secfile\shell\open\command ?�?(Default)?�? = ?�?av.exe?�? /START ?�?%1? %*
HKEY_CLASSES_ROOT\.exe\shell\open\command ?�?(Default)?�? = ?�?av.exe?�? /START ?�?%1? %*
HKEY_CLASSES_ROOT\secfile\shell\open\command ?�?(Default)?�? = ?�?av.exe?�? /START ?�?%1? %*
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command ?�?(Default)?�? = ?�?av.exe?�? /START ?�?firefox.exe?�?
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command ?�?(Default)?�? = ?�?av.exe?�? /START ?�?firefox.exe?�? -safe-mode
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command ?�?(Default)?�? = ?�?av.exe?�? /START ?�?iexplore.exe?�?
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center ?�?AntiVirusOverride?�? = ?�?1?
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center ?�?FirewallOverride?�? = ?�?1?

Delete files:
Delete directories:
%Documents and Settings%\[UserName]\Application Data\

Geolocation of Trojan-BNK.Win32.Keylogger.gen

This map reveals the prevalence of Trojan-BNK.Win32.Keylogger.gen. Countries and regions that have been affected the most are: United States.

QR code for Trojan-BNK.Win32.Keylogger.gen removal instructions

Trojan-BNK.Win32.Keylogger.gen qrcode QR is short for Quick Response. They can be read quickly by the mobile phones. QR codes can store more data than standard barcodes, including url links, geo coordinates, and text.
The reason we add QR code to the website is that parasites like Trojan-BNK.Win32.Keylogger.gen are really hard to remove on infected computer. you can quicly scan the QR code with your mobile device and have manual removal instructions to uninstall Trojan-BNK.Win32.Keylogger.gen right in your pocket.
Simply use the QR scanner and read removal instructions from mobile device.

Information added: 2014-10-21 01:18
Information updated: 2014-10-21 01:18

Ask us discussions

Modern viruses are really hard to remove. They have random file names, random registry entries, they can immitale legal products and files. Removal instructions sometimes can't Help to remove infection manually. Please take a look at our discussion where users like you share they experience in fighting the parasite:

Additional resources

Attention: If you know know a reputable website reated to security threats, please add a link here: add url

Users comments about Trojan-BNK.Win32.Keylogger.gen:

I would like to thank MIKE, (above) your safe mode trick worked... you saved me a bunch of money..... nice to know that there are people out there willing to help without gaining anything... thanks again!
Mine was hwi.exe. I deleted all the registry keys and restarted...worked for me. Thanks a million.
Linda P.
okay so I have this stupid virus that everyones talking about and unable to do anything on home computer. the pop-ups dont seem to allow me to do anything. Okay so, if I reboot computer in safe mode with networking, how do I do that? My computer goes to usual windows screen. then I should download an automatic removal tool and full full system scan. So where do I begin.
This thing wont even allow me to restore to an earlier point. It blocks me! :( SO frustrating. Help!
I have tried everything everyone has recommended and the virus is still there and now I keep getting message "trying to locate ip address" I cannot get online and I apparently have no connection. I have tried to do system restore, everything. I thought I deleted all the above bad register keys but nothing and now I cannot even get into register. Help please! I am ready to buy a new lap top.
I cannot begin to thank you enough MIKE!!! Computer is clean now! You saved me soooo much money. Thank you, thank you!
MIKE your a genius, it was so simple. I had someone work on it for 4 hours with all kinds of useless software. I went on and fixed the problem in 5 minutes.
Thanks Mike :)
Mike, can not thank you enough for this fix. Hope you have a great year!
So I just got this trojan keylogger tonight 1.7.12, both my Firefox and chrome browser just shut down on its own, and that annoying popup that everybody talked about above is here, the 2012 version. Was pretty frustrated at first cuz system restore would not open up through the all programs-accessories-system tools menu,, also tried Mikes method above but to no avail. Finally I just restarted and ran windows normally, then I went into Control panels > Backup and restore > recover system settings or your computer > open system restore, then this would lead you to the system restore points, I then restored to a week ago and now everything works fine. Btw, I am running windows 7.
This has been driving me mad and I tried so many suggestions! I eventually found a sure which advised you CAN access the internet if you right click Google Chrome and run as administrator (not sure if it workday for IE). So I got online and after a bit of trouble with pop ups managed to download Malwarebytes. Of course it would not let me install so had to go to the Downloads folder and right click on what Id just downloaded, then run as administrator and eventually got Malwarebytes installed and scanned and files deleted! So sorted! When I restarted computer in normal mode I ran Malwarebytes again and it found 2 more threats so worth running again. Good luck to everyone and thanks for those who posted suggestions :)
I got this virus last night at the stoke of midnight. Way to start off the New Year, right? I couldnt access the internet, my anti-virus, or Spybot. Booted into safe mode, ran my anti-virus and Spybot Search removed malware. Still got the popups and unable to access the internet. Followed Mikes advice and rebooted in safe mode. Ran System Restore and backed up two days .. PRESTO!! My computer is up and running again!! Thank you, thank you, thank you!!!! Mike, you saved me from having to go out in a snowstorm to get my laptop serviced!! Happy New Year everyone!!!!!!
If you have Win7, using System Restore is by far the easiest solution to this annoying virus. Just got the virus this afternoon after surfing on - Got on my Mac, found this great forum and finally decided to try the System Restore to a point 2 days ago.

First run, got an error - wouldnt restore; Id just installed a new monitor from Christmas, so it didnt recognize the hardware change.

Started System Restore again, but unplugged the monitor immediately. Let restore finish, came back in 10 minutes and plugged it back in, restore worked. Had to set up monitor again, but no more virus.
deepsea diver 67
Mike, easy when you know how. Thanks, it worked a treat.
Rob Rome
All the methods described above will not remove the fake virus from the registry. The virus will write to a different location. Malware bytes or any other anti-virus program will not remove root kits. Deleting the keys from the registry will temporarliy remedy the problem but will not get rid of it. The fastest sure fire way to remove this virus and any other defects in your registry is to download Combofix from from another computer, save it to a flashdrive. Turn on the infected computer, hit f8 to boot in safe mode with networking. When the desktop shows up, find the flashdrive you inserted into your USB port. Double click Combofix and let it do its thing. A window should pop-up wanting to download a file from Microsoft, click yes to allow it and sit back and relax while the harmful files are removed and repaired. The process should take 10 minutes but with more severe infections it could take longer. After Combofix takes out all the rootkits, and your computer reboots, then scan with an antivirus of your choice.
I supposedly have multiple viruses on my pc, disconnected the net, restarted and ran my avast, caught 2 viruses and deleted them, then wouldnt work anymore so I ran malwarebytes and got rid of 3 more, now I cant use malware bytes, but I can get online, not sure whats next, probably gonna go buy the new norton internet security so that I can load a fresh program from an untainted source to try and ferret this little weasel out.
Thanks for posting the info on this site. I ran across this for the first time today and had to end task on cio, and all the related files were cio.exe. Had to do a search through the regedit and remove all references to cio.exe and remove it from my user files. Thanks for pointing me in the right direction!
didnt know what this was on my computer, im on my hubbies right now and happy i found this site. i am going to work on it later. i do not want to have to restore my whole computer, but if that what it takes i will. im going to try all the help everyone posted. thank you soo much for the time to figure this out for everyone.
I got the 2012 version somehow, tried loading in safe mode and it still poped up (found this site on my phone). Had to do a restore to an earlier date in the boot log F10. hope this helps others
I simply restored my laptop back to Dec. 1st, and so far so good! Nothing is popping up. I am in the process of running a complete scan of my system though. Sure aggravates me when people have nothing more to do than mess other peoples stuff up out of meanness and spite! They need to get a life!!!
More comments...

Post Comment

Attention: Use this form only if you have additional information about Trojan-BNK.Win32.Keylogger.gen parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.

Home page Name


(All fields are required)
Like us on Facebook
Ask us
What's your antispyware?
I failed to remove Trojan-BNK.Win32.Keylogger.gen using SpyHunter.


add text box
rss feed
help other
Spreading the knowledge: It is very hard to fight against computer parasites on the Internet alone. If you have a website, we would be more than happy if you would like to cooperate and help us spread the information about latest threats. Remember, knowledge is the most powerful weapon. Help your visitors protect their computers!