Remove Win32.Suslix.A 

Win32.Suslix.A is a backdoor Trojan in the form of .DLL file. Once infected it automatically launches itself whenever Windows starts up resulting in the opening of port 123 on infected machines leaving the infected machine vulnerable to remote attacks by phishers.

The phishers are in the search of the list of running processes on the infected machine also they perform TELNET functions on infected machine. Following are the variants of  this trojan.

• Downloader.Trojan

• BackDoor-CFE

Affected operating systems 

• Windows 95

•  Windows 98

•  Windows 2000

•  Windows Me

•  Windows NT

•  Windows XP

How to remove this Trojan? 

First you have to remove Autostart Entries from the Registry it is must to prevent the spyware from executing at startup. The following steps will help you to remove it.

• Open Registry Editor.

• Click Start.

• Click Run.

• Type REGEDIT.

• Click Enter.

• Double-click the following in the left panel:

HKEY_LOCAL_MACHINE>Software>Microsoft>Windows>CurrentVersion> ShellServiceObjectDelayLoad

• Locate and delete the following entry in the right panel:

@ = "{E61B5E20-DE35-11CF-9C87-1579005127ED}"

• Double-click the following in the left panel:

HKEY_LOCAL_MACHINE >Software>Classes>CLSID>

• Locate and delete the key in the left panel:

{E61B5E20-DE35-11CF-9C87-1579005127ED}

• Close Registry Editor.

The users of machines with Windows ME and Windows XP operating systems must disable System Restore to allow full scanning of infected systems.

The System Restore feature usually backs up files with EXE or COM extensions, which may include infected files. You must disable this feature before running any antivirus program.

How to disables the System Restore feature in Windows ME? 

* Right-click the My Computer icon.

* Click Properties.

* Click the Performance tab.

* Click the File System button.

* Click the Troubleshooting tab.

* Select Disable System Restore.

* Click Apply -> Close -> Close.

* Click Yes when prompted to restart.

* Keep pressing F8 key while the system restarts.

* Choose Safe Mode and then the Enter key.

Now you can restart your machine and scan your PC with suitable antivirus program. Delete Files under the _Restore folder. Re-enable System Restore by clearing check box for System Restore and restart PC in normal mode.

How to disables the System Restore feature in Windows XP? 

* Log on as Administrator.

* Right-click the My Computer icon

* Click Properties.

* Click the System Restore tab.

* Select Turn off System Restore.

* Click Apply -> Yes -> OK.

Now you can use the suitable antivirus program to scan your PC. Delete files under the _Restore folder. Finally Re-enable System Restore.

The System Restore feature usually backs up infected files and malicious spyware programs. Therefore it is always recommended to disable the System Restore feature before doing full virus scan, if you are using Windows Me or Windows XP operating systems.

Subscribe to "COMPTECH" ezine to get the latest news and updates on Windows Vista.

Enter your E-mail Address Enter your First Name (optional) Then Don't worry -- your e-mail address is totally secure. I promise to use it only to send you Mindpc.