Re: Threat Detected
Before you do anything, record date and time ctlnik.dll was modified on your
computer.
Now try disabling it by renaming it to zzz_ctlnik.dll.
Chances are it will re-appear at next re-boot, put back by something else
you caught within the preceding minute, which you can find by searching C:\
for files modified on the same date, and sorting results into 'Modified'
order. Typically there will be a file (not a .dll) of the same size, and a
small .exe, .bat, .cmd, or script which will install it as ctlnik.dll in
system32.
This installing file will typically be run at startup of Windows by a
registry entry which you can search for.
--
Newell White
"Steve" wrote:
> Do I go into windows explorer and delete the file?
>
>
> Milo (MSPSS) wrote:
> > An option for deleting it is going to safe mode
> >
> > Tap F8 or F5 upon startup and it should bring you a DOS ( black and
> > white window ) with something wriiten on it as Windows Advance Option,
> > now there would be option proceed with safe mode using the arrow keys
> > and then choose the windows you are using then it should bring you to
> > safe mode with only critical microsoft files is running now you can
> > delete the file in this mode of windows.
> >
> >
> > "Steve" <scoutdoors@hotmail.com> wrote in message
> > news:uZS2F%23gCIHA.1212@TK2MSFTNGP05.phx.gbl...
> >> I am running windows XP service pack 2. I have the latest updates. I
> >> am running AVG free edition. I am getting the following.
> >>
> >> Threat Detected
> >> While opening file: C:\WINDOWS\system32\ctlnik.dll
> >> Trogan horse BackDoor.Agent.NRB
> >>
> >>
> >> I click the heal button and it says
> >> Requested action is not available for this object.
> >> Access to the file has been denied.
> >>
> >>
> >> I have also ran adaware and it did nothing.
> >>
> >> Any suggestions as to what this is. Any help would be appreciated.
> >
>