Troj/Bancos-BDX is a Trojan for the Windows platform.

When Troj/Bancos-BDX is installed the following files may be created:

System\ntos.exe.
System\wsnpoem\video.dll
System\wsnpoem\audio.dll


The following registry entry is created to run ntos.exe on startup:

HKCU\Software\Microsoft\Windows\CurrentVersion\Run userinit
System\ntos.exe

The following registry entry is changed to run ntos.exe on startup:

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon Userinit
System\userinit.exe, System\ntos.exe

More information can be found at this Sophos page.