NEWS
PARASITES
SOFTWARE
FORUM
DIRECTORY

 
 
 
 
 
 
  

Remove BookedSpace. Description and removal instructions

 
Title: BookedSpace
Type: Adware
Severity scale:BookedSpace severity is 34  (34 / 100)
 
BookedSpace is an adware parasite that displays unexpected pop-up advertisements while surfing the Internet. It can silently download and install arbitrary malicious applications, usually other adware pests. BookedSpace is bundled with some advertising-supported software. It automatically runs on every Windows startup.

FORUM:
Discuss BookedSpace in
spyware removal forum

BookedSpace properties:
• Shows commercial adverts
• Connects itself to the internet
• Hides from the user
• Stays resident in background

Automatic BookedSpace removal:

remover for BookedSpace

BookedSpace manual removal:

Delete registry values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\[filename].dll
HKEY_CLASSES_ROOT\BookedSpace.Extension.[X]
HKEY_CLASSES_ROOT\Remanent.Helper
HKEY_CLASSES_ROOT\Remanent.Helper.1
HKEY_CLASSES_ROOT\AppID\BookedSpace.DLL
HKEY_CLASSES_ROOT\AppID\Remanent.DLL
HKEY_CLASSES_ROOT\AppID\{0DC5CD7C-F603-4417-AA43-D457BE3A9622}
HKEY_CLASSES_ROOT\AppID\{0DC5CD7C-F653-4417-AA43-D457BE3A9622}
HKEY_CLASSES_ROOT\AppID\{5CD19420-B328-47D5-A55F-1C07638EFDF8}
HKEY_CLASSES_ROOT\AppID\{C3C54527-7B65-4EE9-9FE3-9BC61E9B9880}
HKEY_CLASSES_ROOT\CLSID\{0019C3E2-DD48-4A6D-ABCD-8D32436323D9}
HKEY_CLASSES_ROOT\CLSID\{2B3452C5-1B9A-440F-A203-F6ED0F64C895}
HKEY_CLASSES_ROOT\CLSID\{A85C4A1B-BD36-44E5-A70F-8EC347D9B24F}
HKEY_CLASSES_ROOT\Interface\{05080E6B-A88A-4CFD-8C3D-982557670B6E}
HKEY_CLASSES_ROOT\Interface\{56EBFFE6-9557-46C2-A322-DB1DF5CAF199}
HKEY_CLASSES_ROOT\Interface\{AE640486-0E29-4F7E-BF38-9CBE7140AEFB}
HKEY_CLASSES_ROOT\TypeLib\{0DC5CD7C-F653-4417-AA43-D457BE3A9622}
HKEY_CLASSES_ROOT\TypeLib\{5CD19420-B328-47D5-A55F-1C07638EFDF8}
HKEY_CLASSES_ROOT\TypeLib\{C3C54527-7B65-4EE9-9FE3-9BC61E9B9880}
HKEY_LOCAL_MACHINE\SOFTWARE\Bookedspace
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0019C3E2-DD48-4A6D-ABCD-8D32436323D9}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2B3452C5-1B9A-440F-A203-F6ED0F64C895}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A85C4A1B-BD36-44E5-A70F-8EC347D9B24F}
HELP:
how to remove registry entries

Delete files:
bs[X].dll, bsx5.dll, bxxs5.dll, oo4.dll, rem00001.dll
HELP:
how to remove harmful files

Misc:
[X] is a certain number.

Filenames may vary.

Other programs to remove BookedSpace:

• Malwarebytes Anti Malware - Review - Download
• Malwarebytes Anti Malware - Review - Download
• Windows Defender - Review - Download

Information added: 19/03/04
Information updated: 09/09/05

Additional resources related to BookedSpace:

Attention: If you know or you have a website or page about BookedSpace removal, feel free to add a link to this list: add url



more resources

Post Comment:

Attention: Use this form only if you have additional information about BookedSpace parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.



Enter security code:


Comments from visitors:

1. mr. g by Guest. 2005-08-16 03:08:06
loosen up people, if your running windows 2000 or xp all you gotta do is download and install the big red bullseye from microsoft. aka antispy beta#1. the red bulls eye will tear booked space a new one and send it to the happy hunting ground. never to be seen again. the bulls eye will remove all bho and all forms of spywear. just go to microsoft downloads. com and get it. best of all its free.

2. re: comment about BookedSpace by johnny mcswain. 2005-02-13 04:02:50
This is the lowest form of advertisment to sell all the products they charge good money for I'm sure. Any product I see that bookedspace is connect to, And I don't care what the product is even if I wanted that product very bad, I would not by it under any circumstances because of the way bookedspace has to sneak in the cumputer bringing all the thing you try to keep out of your cumputer. Bookedspace does more damage than it could ever justify. The advertisers need to think about what the hell they think is good enough to be paying to advertise with these ass-holes. I rest my casel For now!

3. Would it be a crime? by Guest. 2004-09-14 13:09:45
Would it be a crime for an American individual, company, or governmental department to maliciously hack into and damage an adware/spyware server located in a foriegn country. I would be for the benifit of the community, of course. BTW does anyone know what kind of software these adware/spyware producers are using, such as the Bookedspace one located at 66.225.192.199?
Maybe there needs to be a website that lists their server locations, software used, and hints on how-to-hack, for anyone who would like to try.
Sincerely,
Anonymous, of course.

4. by Zac. 2004-04-24 09:04:14
Not most of them, many of these things come in on files that you click yes too, and they state in the agreement of what it's doing, now the agreements can be utterly confusing when you read them and you might be able to nail them on that (it's a crime to be too smart in this country) but I've also tracked some of these programs back to other country's servers so... maybe not, the only real way that I see atm is to get stuff like Spybot - Search & Destroy, Ad-aware 6.0, or something like that, but don't buy them. Most of the ones you buy are advertised by spyware/adware. But the simple answer to your question is not in most cases.

5. by Thomas. 2004-04-10 11:04:16
Isn't there any possibility to stop these incredible S.O.B.'s from their disgusting activities. Is there no way to legally stop them from unwanted software installers and unwanted ads. I truly find this internet-abuse!!!!! What a shame that we don't know, where they're situated and could do something to stop them!!!!

6. by Ashlie. 2004-03-01 19:46:03
BookedSpace/Remanent: early variant (around July 2003) with filename rem00001.dll, controlling server 66.225.192.199. BookedSpace/BS2 and BookedSpace/BS3: newer revisions (August 2003) with filename bs2.dll or bs3.dll, controlling server www.bookedspace.com. BookedSpace/Remanent is silently installed by MThree MP3 to WAV converter. BookedSpace/BS2 is silently installed by FreeWire's FreeMP3Player. The origin of BookedSpace/BS3 is currently unknown. BookedSpace can contact its controlling server when a new page is visited, which may direct it to open pop-up ads. When the controlling server is contacted, the URL of the current page is passed along with a user ID for tracking purposes.

7. by SpyWare Hater. 2004-03-29 22:03:15
I try hard to ensure no spyware gets onto my pc but the skum at BookedSpace managed to do it. I did not install any of the software it ships with so I dont know how it got there. But its gone now :)
Related news:
Similar parasites:
Related articles:
Related discussions:
Latest Spyware Threats: VirusProtect Pro | VirusLocker | SpyCrush | ContraVirus | SpyLocked | SpyDawn | AntiVerminser | SpywareQuake | VirusBurst | AntiVermins | AntiVermeans | Zlob | PopCorn.net | MovieLand | TagASaurus | BraveSentry | VirusBurster | SystemDoctor | VirusRescue | MalwareWipe | SpySheriff | CmdService | Smitfraud | SpywareStrike | WinFixer | WinHound | PestTrap | UnSpyPC
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds
© 2001-2008 2-spyware.com All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.