Party POKER deep cookie removal help please

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by Hootyowl, Sep 11, 2006.

  1. Hootyowl

    Hootyowl Private E-2

    Hi Geek Guys,
    I am a 59 year old disabled Veteran and the net and GEEKS site is marvelous.
    I need help PLEASE.

    I have Party Poker on my computer(I uninstalled it using add/remove programs).Seems these guys have a "hidden deep cookie" in the registry. I want to remove it totally, and install another poker site(Empire) for my wife to use on this computer.(we have only this computer). It has XP home. E machines T3882, 2.9 GHZ 762 MB Ram 60 gig HD.
    Party POKER places " deep cookies" somewhere in the Registry(and prevents fraudulent use I assume).

    She wants to register on Empire Poker(another Party Poker company). I tried removing the program(uninstall and used CC Cleaner) but when we tried to register on Empire it said we already have an account.

    I am a confused guy as to how to remove Party poker and the "deep cookies"

    If I use the Sytem Reovery Cds will that clean the computer totally? Or is there an easier way without deleting everything?
    Thanks

    Below are some threads I have found that confuse me.CLEAN a computer
    in registry key deep cookies

    http://forumserver.twoplustwo.com/s...=m&olderval=&oldertype=&bodyprev=#Post3710986

    It's a registry entry that puts them there. Click Start>Run...>type "regedit">hit enter. From there, go to Edit>Find and enter the name of the site. You can use this to locate entries left behind by the software. In this particular case, the entry in question is in HKEY_LOCAL_MACHINE>Software>Microsoft>Internet Explorer>Extensions. Each folder at this location represents a different entry on the Tools menu in IE. You can easily figure out what folder is what by looking at the contents. You can safely delete the folder associated with any particular site. To be safe, you should always back up your registry before making any changes. HTH!
    ======================================
    searched google and came upon this

    http://groups.google.com/group/rec.gambl...61816f2e497edba

    "You have to remove a registry key before installing Empire.

    Click 'Start', 'Run' and type 'regedit'. When the window pops up, there will
    be a left-hand column with a list of folders. Click on the + sign next to
    the folder titled 'HKEY_LOCAL_MACHINE'. That will show the list of folders
    in that folder. Then click the + sign on the 'SOFTWARE' folder. Then click
    the + on Calculator. This will show one sub-folder, 'mode'. Click on mode
    and in the right hand window, there will be a file labeled UCID. Delete that
    file and you will be able to sign up to Empire without getting blocked.


    Good Luck,
    Moondogg"
     
    Hootyowl, Sep 11, 2006
    #1
  2. DavidGP

    DavidGP MajorGeeks Forum Administrator - Grand Pooh-Bah Staff Member

    Hi, your best options to rule out any malware is to run the below guide and attach the logs requested, then one of our malware guys will give them a look and post some more tailored removal instructions if they find anything untowards.

    Please follow our standard cleaning procedures which are necessary for us to provide you support. Also there are steps included for installing, running, and posting HijackThis logs as attachments.
    • Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support
    • Make sure you check version numbers and get all updates.
    • Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.
    • After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis and attach a log:
    Downloading, Installing, and Running HijackThis

    Make sure you also rename HijackThis.exe as suggested in the procedures. Use analyse.exe for the new name. This is very important due to some new infections going around.


    • When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too:

      • [*]runkeys.txt - the log from GetRunKey.bat
        [*]newfiles.txt - the log from ShowNew.bat
      • CounterSpy - ONLY IF you were not able to run Windows Defender
      • Bitdefender - from step 6
      • Panda Scan - from step 6
      • HijackThis

    NOTE: You can only attach 3 files in a single message so it will require that you use two messages to attach all of these logs!
     
    DavidGP, Sep 11, 2006
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds