Title: BookedSpace

Type: Adware

Remove BookedSpace. Removal instructions

Severity scale:

(34 / 100)

BookedSpace is an adware parasite that displays unexpected pop-up advertisements while surfing the Internet. It can silently download and install arbitrary malicious applications, usually other adware pests. BookedSpace is bundled with some advertising-supported software. It automatically runs on every Windows startup.

BookedSpace properties:
• Shows commercial adverts
• Connects itself to the internet
• Hides from the user
• Stays resident in background

Automatic BookedSpace removal:

remover for BookedSpace

SpyHunter is recommended remover to uninstall BookedSpace. You should confirm using free trial that it detects current version of parasite.

Note: Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manul removal instructions below.

If you failed to remove BookedSpace using SpyHunter please report this to us.

We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use.

STOPzilla

download | review

We are testing STOPzilla's efficiency at removing BookedSpace (2005-09-09 14:10:00)

Malwarebytes Anti Malware

download | review

We are testing Malwarebytes Anti Malware's efficiency at removing BookedSpace (2005-09-09 14:10:00)

Spyware Doctor

download | review | tutorial

We are testing Spyware Doctor's efficiency at removing BookedSpace (2005-09-09 14:10:00)

XoftSpySE Anti Spyware

download | review

BookedSpace manual removal:

FORUM:
Discuss BookedSpace in
spyware removal forum

Delete registry values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\[filename].dll
HKEY_CLASSES_ROOT\BookedSpace.Extension.[X]
HKEY_CLASSES_ROOT\Remanent.Helper
HKEY_CLASSES_ROOT\Remanent.Helper.1
HKEY_CLASSES_ROOT\AppID\BookedSpace.DLL
HKEY_CLASSES_ROOT\AppID\Remanent.DLL
HKEY_CLASSES_ROOT\AppID\{0DC5CD7C-F603-4417-AA43-D457BE3A9622}
HKEY_CLASSES_ROOT\AppID\{0DC5CD7C-F653-4417-AA43-D457BE3A9622}
HKEY_CLASSES_ROOT\AppID\{5CD19420-B328-47D5-A55F-1C07638EFDF8}
HKEY_CLASSES_ROOT\AppID\{C3C54527-7B65-4EE9-9FE3-9BC61E9B9880}
HKEY_CLASSES_ROOT\CLSID\{0019C3E2-DD48-4A6D-ABCD-8D32436323D9}
HKEY_CLASSES_ROOT\CLSID\{2B3452C5-1B9A-440F-A203-F6ED0F64C895}
HKEY_CLASSES_ROOT\CLSID\{A85C4A1B-BD36-44E5-A70F-8EC347D9B24F}
HKEY_CLASSES_ROOT\Interface\{05080E6B-A88A-4CFD-8C3D-982557670B6E}
HKEY_CLASSES_ROOT\Interface\{56EBFFE6-9557-46C2-A322-DB1DF5CAF199}
HKEY_CLASSES_ROOT\Interface\{AE640486-0E29-4F7E-BF38-9CBE7140AEFB}
HKEY_CLASSES_ROOT\TypeLib\{0DC5CD7C-F653-4417-AA43-D457BE3A9622}
HKEY_CLASSES_ROOT\TypeLib\{5CD19420-B328-47D5-A55F-1C07638EFDF8}
HKEY_CLASSES_ROOT\TypeLib\{C3C54527-7B65-4EE9-9FE3-9BC61E9B9880}
HKEY_LOCAL_MACHINE\SOFTWARE\Bookedspace
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0019C3E2-DD48-4A6D-ABCD-8D32436323D9}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2B3452C5-1B9A-440F-A203-F6ED0F64C895}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A85C4A1B-BD36-44E5-A70F-8EC347D9B24F}

HELP:
how to remove registry entries

Delete files:
bs[X].dll, bsx5.dll, bxxs5.dll, oo4.dll, rem00001.dll

HELP:
how to remove harmful files

Misc:
[X] is a certain number.

Filenames may vary.

Information added: 2004-03-19 10:00:00
Information updated: 2005-09-09 11:32:45

Additional resources related to BookedSpace:

Attention: If you know or you have a website or page about BookedSpace removal, feel free to add a link to this list: add url

more resources

SpyWare Hater

I try hard to ensure no spyware gets onto my pc but the skum at BookedSpace managed to do it. I did not install any of the software it ships with so I dont know how it got there. But its gone now :)

Reply »

2004 03 29

Ashlie

BookedSpace/Remanent: early variant (around July 2003) with filename rem00001.dll, controlling server 66.225.192.199. BookedSpace/BS2 and BookedSpace/BS3: newer revisions (August 2003) with filename bs2.dll or bs3.dll, controlling server www.bookedspace.com. BookedSpace/Remanent is silently installed by MThree MP3 to WAV converter. BookedSpace/BS2 is silently installed by FreeWire's FreeMP3Player. The origin of BookedSpace/BS3 is currently unknown. BookedSpace can contact its controlling server when a new page is visited, which may direct it to open pop-up ads. When the controlling server is contacted, the URL of the current page is passed along with a user ID for tracking purposes.

Reply »

2004 03 01

Thomas

Isn't there any possibility to stop these incredible S.O.B.'s from their disgusting activities. Is there no way to legally stop them from unwanted software installers and unwanted ads. I truly find this internet-abuse!!!!! What a shame that we don't know, where they're situated and could do something to stop them!!!!

Reply »

2004 04 10

Zac

Not most of them, many of these things come in on files that you click yes too, and they state in the agreement of what it's doing, now the agreements can be utterly confusing when you read them and you might be able to nail them on that (it's a crime to be too smart in this country) but I've also tracked some of these programs back to other country's servers so... maybe not, the only real way that I see atm is to get stuff like Spybot - Search & Destroy, Ad-aware 6.0, or something like that, but don't buy them. Most of the ones you buy are advertised by spyware/adware. But the simple answer to your question is not in most cases.

Reply »

2004 04 24

Guest

Would it be a crime for an American individual, company, or governmental department to maliciously hack into and damage an adware/spyware server located in a foriegn country. I would be for the benifit of the community, of course. BTW does anyone know what kind of software these adware/spyware producers are using, such as the Bookedspace one located at 66.225.192.199?
Maybe there needs to be a website that lists their server locations, software used, and hints on how-to-hack, for anyone who would like to try.
Sincerely,
Anonymous, of course.

Reply »

2004 09 14

johnny mcswain

This is the lowest form of advertisment to sell all the products they charge good money for I'm sure. Any product I see that bookedspace is connect to, And I don't care what the product is even if I wanted that product very bad, I would not by it under any circumstances because of the way bookedspace has to sneak in the cumputer bringing all the thing you try to keep out of your cumputer. Bookedspace does more damage than it could ever justify. The advertisers need to think about what the hell they think is good enough to be paying to advertise with these ass-holes. I rest my casel For now!

Reply »

2005 02 13

Guest

loosen up people, if your running windows 2000 or xp all you gotta do is download and install the big red bullseye from microsoft. aka antispy beta#1. the red bulls eye will tear booked space a new one and send it to the happy hunting ground. never to be seen again. the bulls eye will remove all bho and all forms of spywear. just go to microsoft downloads. com and get it. best of all its free.

Reply »

2005 08 16

Post Comment:

Attention: Use this form only if you have additional information about BookedSpace parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.