Sality is a family of polymorphic malware that has been around since 2003. It can infect all the executable files on your PC, connect to the internet through P2P mechanism to download more malware, setup malicious proxy servers on your computer, send spam to your contacts and so on. It uses advanced techniques to avoid detection. Fortunately some instances of Sality malware can be cleaned while other infected files which have been damaged beyond repair can be removed. Here is how you can remove the Sality malware from your PC:
1. Using AVG Sality Remover Tool
- Download avg_remover_slt.exe and save it to your desktop.
- Disconnect your LAN / Ethernet cable from your computer.
- Double-click on the downloaded file to run it. It may ask you for administrator permissions, you have to click Yes if it does.
- You would see a window titled Virus Remover for Win32/Sality. The application would automatically start the scanning of many of the important services, processes and files. If any infection is detected, it will further scan your hard disk. A listbox would auto-scroll to show you which files, processes or services have been scanned. A summary of how many objects have been scanned, how many were infected and how many were cleaned is also shown.
- During the scan it will try to heal the infected files. If an active virus is found loaded in the system memory, the tool will ask the user to reboot the computer. Healing will be performed during operating system boot-up sequence, so any active virus cannot interfere with the healing process.
2. Using Kaspersky SalityKiller Tool
- Download SalityKiller.exe and save it to your desktop.
- Double-click on the downloaded file to run it. It may ask you for administrator permissions, you have to click Yes if it does.
- You would see CLI (command line interface) window that would automatically start to scan threads, processes, hooks and all the files on all the connected disk drives.
- During the scan it will seek and terminate malicious threads, unhook hooked undocumented API functions, disinfect the infected files (if any are found) and delete the infected files which are beyond repair. It will also restore some entries in the Windows registry to disable the settings created by the Sality malware. It also fixes the system.ini file, disabling loading of Sality modules at logon.
If your computer is infected with one malware, there is a possibility there are other malicious programs lurking on your hard disk. So after you have cleaned Sality malware, you should download and install a full antivirus product like avast! antivirus or AVG free antivirus to protect your PC. You may also want to scan your complete system with ESET Online Scanner to detect and remove the viruses that might be hiding in your PC.
hello sir,
after the tool asked me to reboot the computer a scan starts over (the Healing).
During a scan (it scans for 4-6min) the operating system goes to sleep mode why?
please help me I shut down the pc an still the same probleme