Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
What is best way to remove Favoriteman?
- Thread starter oscarb
- Start date
erikhertzel
MIS
oscarb,
Try this from:
FavoriteMan has many variants:
FavoriteMan/Lwz installs lwz.dll. Data file is SysLdr.dll. Controlling server is FavoriteMan/F1 installs F1.dll. Data file is SysLdr.dll. Controlling server is FavoriteMan/FOne
FavoriteMan/FOne is a replacement for the Lwz variant. Filename is FOne.dll, data file is SysLdr.dll. Controlling server is FavoriteMan/Ofrg's program file is called ofrg.dll. It stores its data in a file called favboot.dll. Its controlling server is FavoriteMan/Favorite installs favorite.dll. Data file is FavMan.dll. Controlling server is also FavoriteMan/SpyAssault
FavoriteMan sometimes causes IE to lock up for a variable period of time, occasionally indefinitely, when a new browser process is started. This may be something to do with its trying to contact its servers on startup. Also crashes may occur when very long URLs are used.
How to Remove FavoriteMan?
FavoriteMan/F1 and FavoriteMan/ZZ offer a removal feature: Click Start >Settings > Control Panel > Add/Remove programs, choose 'F1' or 'ZZ' and click 'Remove'.
To manually remove other variants of FavoriteMan:
Unregister FavoriteMan. Open a DOS command prompt window (Click Start > Run, type 'command'(for Windows 98/Me) or 'cmd' (for Windows 2000/XP) and enter the following commands:
cd "%WinDir%\System"
regsvr32 /u favorite.dll
Note: Change the filename 'favorite.dll' to match the variant you have. This can be ofrg.dll, favorite.dll, lwz.dll, F1.dll, ZZ.dll, mpz300.dll, trk.dll, Gr02.dll, Aess.dll, Ss32.dll or emesx.dll; in in the case of the IMZ variant it will have a random eleven-letter filename. (eg. troallystbr.dll). You can usually find the culprit by opening the System folder choosing View->Arrange icons by->Modified, then looking near the bottom of the window.
Restarting the computer.
Delete the program file. The software can be found in the System folder. On Windows 95/98/Me this is the folder called 'System' in the Windows folder; on Windows NT, 2000 and XP it is called 'System32'. Look for one of the filenames listed above.
Delete the data file favboot.dll, FavMan.dll, SysLdr.dll, mbr32.dll, im64.dll or dlh0st.dll in the same folder (it isn't a DLL at all).
Open the registry editor ( Start > Run, type regedit) , locate the key 'HKEY_CURRENT_USER\Software\Microsoft\Windows',find and delete the entries 'Counter', 'Server' and 'Object' in it.
Hope this helps,
Erik
Try this from:
FavoriteMan has many variants:
FavoriteMan/Lwz installs lwz.dll. Data file is SysLdr.dll. Controlling server is FavoriteMan/F1 installs F1.dll. Data file is SysLdr.dll. Controlling server is FavoriteMan/FOne
FavoriteMan/FOne is a replacement for the Lwz variant. Filename is FOne.dll, data file is SysLdr.dll. Controlling server is FavoriteMan/Ofrg's program file is called ofrg.dll. It stores its data in a file called favboot.dll. Its controlling server is FavoriteMan/Favorite installs favorite.dll. Data file is FavMan.dll. Controlling server is also FavoriteMan/SpyAssault
FavoriteMan sometimes causes IE to lock up for a variable period of time, occasionally indefinitely, when a new browser process is started. This may be something to do with its trying to contact its servers on startup. Also crashes may occur when very long URLs are used.
How to Remove FavoriteMan?
FavoriteMan/F1 and FavoriteMan/ZZ offer a removal feature: Click Start >Settings > Control Panel > Add/Remove programs, choose 'F1' or 'ZZ' and click 'Remove'.
To manually remove other variants of FavoriteMan:
Unregister FavoriteMan. Open a DOS command prompt window (Click Start > Run, type 'command'(for Windows 98/Me) or 'cmd' (for Windows 2000/XP) and enter the following commands:
cd "%WinDir%\System"
regsvr32 /u favorite.dll
Note: Change the filename 'favorite.dll' to match the variant you have. This can be ofrg.dll, favorite.dll, lwz.dll, F1.dll, ZZ.dll, mpz300.dll, trk.dll, Gr02.dll, Aess.dll, Ss32.dll or emesx.dll; in in the case of the IMZ variant it will have a random eleven-letter filename. (eg. troallystbr.dll). You can usually find the culprit by opening the System folder choosing View->Arrange icons by->Modified, then looking near the bottom of the window.
Restarting the computer.
Delete the program file. The software can be found in the System folder. On Windows 95/98/Me this is the folder called 'System' in the Windows folder; on Windows NT, 2000 and XP it is called 'System32'. Look for one of the filenames listed above.
Delete the data file favboot.dll, FavMan.dll, SysLdr.dll, mbr32.dll, im64.dll or dlh0st.dll in the same folder (it isn't a DLL at all).
Open the registry editor ( Start > Run, type regedit) , locate the key 'HKEY_CURRENT_USER\Software\Microsoft\Windows',find and delete the entries 'Counter', 'Server' and 'Object' in it.
Hope this helps,
Erik
- Status
Similar threads
- Locked
- Question