I have a rogue dll file (C:\WINDOWS\system32\fasomxlh.dll) that is invoked when winlogon.exe runs. The dll kicks off a spyware/adware program. The file is quarentined, but I want to remove it. I used TrndMicro’s Hijack This to remove it and used the Delete a File Upon Reboot Misc.Tools function, but it didn’t work. I also tried SysClean, to no avail.
Winlogon.exe is an seential program and anti-spyware apps fail to remove fasomxlh.dll. Though the file is quarentined, I have to respond to quarentine messages repeatedly with its frequent run attemps. Win XP won’t let me rename or delete the dll even fron the Command prompt. Any suggestions?
