How do I delete a file that denies permission?

I'm trying to delete these files because in Kaspersky it says that it is a virus (Heur.Trojan.Generic) and it says permission is denied. I deleted them with Delete Doctor and when I restarted my computer the files showed up again as if they were placed there once again. (I do know that they were deleted definitely, but they re-appeared...)

I dont know how to delete them now because Delete Doctor says I cant delete the files, and how do I know that they won't reappear when I restart my system? Kaspersky tried to delete the files and it didn't work. I really don't even know if they definitely are trojans.

If you want to scan them yourself, to maybe let me know more about it, and if it really is a virus then please do.

PS: These files were in my System 32 folder ...

 

Try unlocker, not sure if it will work but here is the link:
http://www.softpedia.com/get/System/System-Miscellaneous/Unlocker.shtml

 

I scanned it on http://virusscan.jotti.org/

this is what I got ...

 

avast, avg, and antivir didn't think it was a virus???? oh jeez, and those are the scanners I use. Man I hate the thought of some malware running around on my computer and me having no idea that it's there. And that's the worst part, you'd never know unless you installed all of those antivirus programs... which would cause windows to go into spasms.

Another reason why I should take a second look at linux I guess...

 

try using avast it ahs a pre boot scan it will scan your pc before windows starts so if it is a virus avast can just delete it because its not being used yet avast works great its all i use and my pc runs amazing if avast dosnt find it and avg didnt find it i wouldn't worry about it to much those are 2 good programs

edit: sorry i never finished reading themans post avast didnt find it sorry didnt see avast on that list

 

Try using HiJackThis. Hasn't failed me yet, though it's kinda hard to find these days.

 

Please do not post files that have viruses on them.

 

But how do you think it is regenerating if I deleted it already? It regenerated after I restarted my computer...

 

Most likely, there is a hidden copy somewhere. If that is indeed a rootkit, then you're probably going to be forced into a complete reformat and reinstall to make sure it is gone.

Also, try booting into safe mode (applies to Vista and XP) and deleting it with your AV then.

 

You need to delete some registry.

I suggest you Boot to Safe mode, Then use Spybot, Adaware and AV to run a scan. Then run a good registry cleaner(CCleaner might not be good enough). If you have Registry Mechanic or Registry Fix then run it. The Registry or Hidden File is probably what is recreating the Virus file.

If the above doesn't work ...... Do a System Restore and Delete all previous restores. Once you confirm a clean system, manually create a restore point.


Also look at this thread http://forum.notebookreview.com/showthread.php?t=150546

 

It's still running (attached to some system thing usually)... and it checks whenever you shut down if the file's still there. I use a combination of ProcessExplorer (to freeze the running trojan) and PocketKillbox's replace with dummy function.

 

I'm really not sure though what the virus is because I don't seem to have any problems with my computer, but now that I know I have a trojan, I'm not logging into Ebay or Paypal =]

Cool thanks Ill try that...

What do you mean ''dummy function?''

 

There's a checkbox in Killbox that says "Replace with dummy". It sticks a blank file in the place of the trojan.

 

I wonder how that works. Isn't the file in use by windows, and therefore, cannot be written to/replaced etc.? What kind of backdoor/round about shenanigans (that word is awesome) do they do to get windows to replace the file while in use?

 

It's replace with dummy on reboot. Presumably the file gets replace pretty early on before it gets the chance to be used.