NEWS
PARASITES
SOFTWARE
FORUM
DIRECTORY

 
 
 
 
 
 
  

Remove Banigo. Description and removal instructions

 
Title: Banigo
Type: Trojans
Severity scale:Banigo severity is 62  (62 / 100)
 
Banigo is a trojan that steals user sensitive information and transfers gathered data to predetermined webs sites. Once executed, the parasite secretly installs itself to the system. Then it starts monitoring user Internet activity. When the user accesses web sites of WebMoney, e-gold or other financial web services, it starts recording login names and passwords the user enters into web pages. It can also capture screenshots. Furthermore, the trojan steals locally stored passwords and user names. It runs a hidden proxy server and blocks access to well-known security resources and web sites of popular antiviruses. Banigo may also open a command shell, and thus provide the attacker with unauthorized access to the compromised computer. The parasite uses a rootkit to hide its presence in the system. Banigo runs on every Windows startup.

The trojan usually arrives attached to bogus e-mail messages.

FORUM:
Discuss Banigo in
spyware removal forum

Related files: agpbrdg[X].dll, agpbrdg[X].sys

Banigo properties:
• Allows remote user connection
• Takes and sends out screenshots of user activity
• Connects itself to the internet
• Hides from the user
• Stays resident in background

Automatic Banigo removal:

remover for Banigo

Banigo manual removal:

Delete registry values:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\agpbrdg[X]
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LEGACY_AGPBRDG[X]
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\agpbrdg[X]
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\LEGACY_AGPBRDG[X]
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\agpbrdg[X]
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\LEGACY_AGPBRDG[X]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\agpbrdg[X]
HELP:
how to remove registry entries

Delete files:
agpbrdg[X].dll, agpbrdg[X].sys
HELP:
how to remove harmful files

Misc:
[X] is a random digit.

Banigo files can be found in default system directory, which is one of the following: C:\Windows\System, C:\Windows\System32, C:\Winnt\System32.

Other programs to remove Banigo:

• SUPERAntiSpyware - Review - Download
• CounterSpy - Review - Download
• Windows Defender - Review - Download

Information added: 23/09/06
Information updated: 23/09/06

Additional resources related to Banigo:

Attention: If you know or you have a website or page about Banigo removal, feel free to add a link to this list: add url



more resources

Post Comment:

Attention: Use this form only if you have additional information about Banigo parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.



Enter security code:

Latest spyware news:
Similar parasites:
Latest Spyware Threats: VirusProtect Pro | VirusLocker | SpyCrush | ContraVirus | SpyLocked | SpyDawn | AntiVerminser | SpywareQuake | VirusBurst | AntiVermins | AntiVermeans | Zlob | PopCorn.net | MovieLand | TagASaurus | BraveSentry | VirusBurster | SystemDoctor | VirusRescue | MalwareWipe | SpySheriff | CmdService | Smitfraud | SpywareStrike | WinFixer | WinHound | PestTrap | UnSpyPC
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds
© 2001-2008 2-spyware.com All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.