Threat Detected

[Steve]

I am running windows XP service pack 2. I have the latest updates. I
am running AVG free edition. I am getting the following.

Threat Detected
While opening file: C:\WINDOWS\system32\ctlnik.dll
Trogan horse BackDoor.Agent.NRB


I click the heal button and it says
Requested action is not available for this object.
Access to the file has been denied.


I have also ran adaware and it did nothing.

Any suggestions as to what this is. Any help would be appreciated.

 

[Alias]

I am running windows XP service pack 2. I have the latest updates. I
am running AVG free edition. I am getting the following.

Threat Detected
While opening file: C:\WINDOWS\system32\ctlnik.dll
Trogan horse BackDoor.Agent.NRB


I click the heal button and it says
Requested action is not available for this object.
Access to the file has been denied.


I have also ran adaware and it did nothing.

Any suggestions as to what this is. Any help would be appreciated.

First, empty out System Restore by disabling it temporarily and
rebooting. Then reboot into Safe Mode and run AVG there. If it can clean
it up in Safe Mode, go back to Normal Mode and re-enable System Restore.

 

[antioch]

I am running windows XP service pack 2. I have the latest updates. I am
running AVG free edition. I am getting the following.

Threat Detected
While opening file: C:\WINDOWS\system32\ctlnik.dll
Trogan horse BackDoor.Agent.NRB

I have also ran adaware and it did nothing.

Any suggestions as to what this is. Any help would be appreciated.

You may get additional help in the windows.security.virus newsgroup.
Just a thought.

news://msnews.microsoft.com/microsoft.public.security.virus

Rgds
Antioch

 

[Elmo]

I am running windows XP service pack 2. I have the latest updates. I
am running AVG free edition. I am getting the following.

Threat Detected
While opening file: C:\WINDOWS\system32\ctlnik.dll
Trojan horse BackDoor.Agent.NRB


I click the heal button and it says
Requested action is not available for this object.
Access to the file has been denied.


I have also run adaware and it did nothing.

Any suggestions as to what this is. Any help would be appreciated.

Also try these:

- Try to delete the file in Safe Mode.

- Avast! has a boot scan that will check for malware before Windows
loads. That way the malware hasn't taken control yet.

- Avast! has a virus cleaner, like many other a/v manufacturers. Then
you won't need to install Avast! if you prefer AVG. I recently found it
at the following link. I haven't tried it yet:

http://avast.com/eng/down_cleaner.html

 

[PA Bear]

Run a /thorough/ check for hijackware, including posting your hijackthis log
to an appropriate forum.

Checking for/Help with Hijackware
http://aumha.org/a/parasite.htm
http://aumha.org/a/quickfix.htm
http://aumha.net/viewtopic.php?t=5878
http://wiki.castlecops.com/Malware_Removal_and_Prevention:_Introduction
http://mvps.org/winhelp2002/unwanted.htm
http://inetexplorer.mvps.org/data/prevention.htm
http://inetexplorer.mvps.org/tshoot.html
http://www.mvps.org/sramesh2k/Malware_Defence.htm
http://defendingyourmachine2.blogspot.com/
http://www.elephantboycomputers.com/page2.html#Removing_Malware

When all else fails, HijackThis v2.0.2
(http://aumha.org/downloads/hijackthis.exe) is the preferred tool to use.
It will help you to both identify and remove any hijackware/spyware with
assistance from an expert. **Post your log to
http://forums.spybot.info/forumdisplay.php?f=22,
http://castlecops.com/forum67.html,
http://forums.subratam.org/index.php?showforum=7,
http://aumha.net/viewforum.php?f=30, or other appropriate forums for expert
analysis, not here.**

If the procedures look too complex - and there is no shame in admitting this
isn't your cup of tea - take the machine to a local, reputable and
independent (i.e., not BigBoxStoreUSA) computer repair shop.