Sality U is a complex virus with keylogger and backdoor functionality. Once executed, the parasite installs itself to the system, checks the current time and runs a payload if hours are equal to minutes or if date is a predetermined one. Infects local executable files, deletes files associated with installed security related software including various antiviruses and firewalls. Then it runs a keylogging module, which collects system and network information, records user login names and passwords, steals sensitive information stored in specific files and finally sends all this data to a predefined e-mail address. This virus also open a back door providing the remote attacker with unauthorized access to the compromised computer. The intruder can control the system and steal other user sensitive information.

Delete Sality U files :

• Click your Windows Start menu, and then click “Search.”
• A speech bubble will pop up asking you, “What do you want to search for?” Click “All files and folders.”
• Type a Sality.U file in the search box, and select “Local Hard Drives.”
• Click “Search.” Once the file is found, delete it.

Stop Sality.U processes :

• Click the Start menu, select Run.
• Type taskmgr.exe into the the Run command box, and click “OK.” You can also launch the Task Manager by pressing keys CTRL + Shift + ESC.
• Click Processes tab, and find Sality.U processes.
• Once you’ve found the Sality.U processes, right-click them and select “End Process” to kill Sality.U.

Remove Sality U registry keys :
Your registry is such a key piece of your Windows system, you should always backup your registry before you edit it. Editing your registry can be intimidating if you’re not a computer expert, and when you change or a delete a critical registry key or value, there’s a chance you may need to reinstall your entire system. Make sure your backup your registry before editing it.

• Select your Windows menu “Start,” and click “Run.” An “Open” field will appear. Type “regedit” and click “OK” to open up your Registry Editor.
• Registry Editor will open as a window with two panes. The left side Registry Editor’s window lets you select various registry keys, and the right side displays the registry values of the registry key you select.
• To find a registry key, such as any Sality.U registry keys, select “Edit,” then select “Find,” and in the search bar type any of Sality.U’s registry keys.
• As soon as Sality.U registry key appears, you can delete the Sality.U registry key by right-clicking it and selecting “Modify,” then clicking “Delete.”

Viruses are badware that can copy themselves and infect your PC without your knowledge. Like physical viruses, a virus like Sality.U might mutate, or replace its own code by automatically — which make viruses like Sality.U very dangerous, difficult to find, and hard to delete.