User profiles not loading. In trying to rename or delete NTUSER.DAT files to effectively reset a profile, I find that it is locked by SYSTEM. I have tried to unlock it using Unlocker, Killbox, and similar utilities; nothing will unlock the files. The only thing that resolves it is a reboot, and with 20-25 users, that is not practical to do in the middle of the work day. Users not being able to use their established profile effects a range of areas including mapped drives, added printers, Outlook configuration, and many other factors. This machine is NOT the DC.
Some background; A couple days ago, I found a virus on my Terminal Server (the one I'm referring to above) called Smitfraud.c. I've been trying to work through eliminating it following various instructions, but can't use Safe Mode as I too work remotely. Could this virus be related to the user profile issue?
Let me know what other history/information might be relevant to solving this.