Black Pegasus

Discussion in 'malware problems & news' started by fallen_angel08, May 5, 2008.

Thread Status:
Not open for further replies.
  1. fallen_angel08

    fallen_angel08 Registered Member

    Joined:
    Apr 29, 2008
    Posts:
    6
    Hello! I want to ask if how can I heal a virus named BLACK PEGASUS? TNX..
     
  2. HyperFlow

    HyperFlow Registered Member

    Joined:
    Mar 21, 2008
    Posts:
    115
    use bit defenders online scan turn off sys restore before doing the scan
     
  3. fallen_angel08

    fallen_angel08 Registered Member

    Joined:
    Apr 29, 2008
    Posts:
    6
    thanks a lot!!
     
  4. fallen_angel08

    fallen_angel08 Registered Member

    Joined:
    Apr 29, 2008
    Posts:
    6
    the virus still comes back after i scan it with a bit defender. is there another way of deleting the virus? tnx..
     
  5. Tarq57

    Tarq57 Registered Member

    Joined:
    Oct 7, 2006
    Posts:
    966
    Location:
    Wellington NZ
    PCWorld forums info
    Looks a bit nasty. This info is almost certainly out of date, if the content is correct concerning file names morphing. Contains manual removal instructions, and since the thing seems to disable a lot of AV's, it may be the only way to go.
    I'd certainly have a go with DrWebs Cureit (You may want to try renaming the .exe if it won't run) and good luck.
     
  6. Cretemonster

    Cretemonster Registered Member

    Joined:
    Mar 31, 2005
    Posts:
    79
    Nasty Autorun infection,if you have used external hdds or thumb and flash drives,this most likely contain the infection too.

    Best course of action at this point for your case would be to google ComboFix and head over to thetechsupport forum for some help with analysis and removal.

    I would imaging you will need lots of help since these love ImageFileExecution and usually load up with explorer as well as multi other launch points.

    Dont drive yourself mad trying to fix it by yourself,they are just no fun at all.
     
Loading...
Thread Status:
Not open for further replies.