Friday
2018-01-03, 13:15
The following instructions have been created to help you to get rid of "PU.Mindspark.VideoScavenger" manually.
Use this guide at your own risk; software should usually be better suited to remove malware, since it is able to look deeper.
If this guide was helpful to you, please consider donating towards this site (http://www.safer-networking.org/index.php?page=donate).
Threat Details:
Categories:
pups
Description:
PU.Mindspark.VideoScavenger installs a toolbar by Mindspark Interactive Network.
Removal Instructions:
Autorun:
Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd), RunAlyzer (http://www.safer-networking.org/index.php?page=runalyzer) or msconfig.exe to remove the following autorun entries.
Entries named "VideoScavenger Search Scope Monitor" and pointing to "?<$PROGRAMFILES>\VideoScavenger_??\bar\?.bin\??srchmn.exe*".
Important: There are more autorun entries that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Installed Software List:
You can try to uninstall products with the names listed below; for items identified by other properties or to avoid malware getting active again on uninstallation, use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) or RunAlyzer (http://www.safer-networking.org/index.php?page=runalyzer) to locate and get rid of these entries.
Products that have a key or property named "VideoScavenger_1ebar Uninstall".
Files:
Important: There are more files that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Folders:
Important: There are more files that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Registry:
You can use regedit.exe (included in Windows) to locate and delete these registry entries.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.DynamicBarButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.DynamicBarButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.FeedManager.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.FeedManager", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.HTMLMenu.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.HTMLMenu", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.HTMLPanel.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.HTMLPanel", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.MultipleButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.MultipleButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.PseudoTransparentPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.PseudoTransparentPlugin", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.Radio.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.Radio", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.RadioSettings.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.RadioSettings", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.ScriptButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.ScriptButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.SettingsPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.SettingsPlugin", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.SkinLauncher.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.SkinLauncher", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.SkinLauncherSettings.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.SkinLauncherSettings", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.ThirdPartyInstaller.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.ThirdPartyInstaller", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.UrlAlertButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.UrlAlertButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.XMLSessionPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.XMLSessionPlugin", plus associated values.
Delete the registry key "@VideoScavenger_1e.com/Plugin" at "HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\".
Delete the registry key "{0574BCFE-3611-4AD5-9114-2218C8F1A423}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{0AFB9872-419A-466E-A8DC-10504076DEB3}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{0B5629F3-8E8C-4406-B1AB-25F86AFFB2D9}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{0CF8E2B6-EF06-4153-B56D-174D01508780}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{10f92d9b-690c-423c-a118-9c75637207ac}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{149a544b-9203-49f5-b177-4f62b4b219b4}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{194de045-cc5e-4840-b031-1ca9db98919d}" at "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\".
Delete the registry key "{194de045-cc5e-4840-b031-1ca9db98919d}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\".
Delete the registry key "{212f8bcf-00eb-4aa4-832e-b9389caa8b03}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{23119123-0854-469D-807A-171568457991}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{23CA83AE-6D59-4B12-AD20-12C9B4814840}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{23f4cec5-8255-4ea2-876f-f07b2f7cf395}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{28ECA842-8B53-456E-8DDC-772E86E9B396}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{2D8FDA07-6836-475F-8ABB-E6B26B63F864}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{2F3F4ADB-1C1C-4D5E-9FBC-C3AA53596CCC}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{2f3f4adb-1c1c-4d5e-9fbc-c3aa53596ccc}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{311c61de-a01b-414e-a7c1-68eae31aae8a}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{31EB29B9-27C0-4442-90E7-4C6F731EEFF3}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{33B63E5E-73E3-4ECC-859F-8A185B4DE045}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{33EAE4D4-8B3B-4AAF-80FB-387C05CCDFC8}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{35c636a4-4435-4723-b751-5b62d04ba15b}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{3ECAC16A-A8C3-48C8-85BE-C6002305780C}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{43724E5E-6101-4508-B5D9-A61B481CDE28}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{52695F97-1A52-40A0-AFCD-99D149A1D0B8}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{548E3328-D7EC-4FEE-AD39-3B4EC4A54D7B}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{57dc49cc-5a9f-446c-bcf8-65c52b7060a6}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{57dc49cc-5a9f-446c-bcf8-65c52b7060a6}" at "HKEY_CURRENT_USER\Software\Classes\CLSID\".
Delete the registry key "{59446FD8-5B6F-4B16-94BA-E7DCC1804A9B}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{612EB90E-13E5-42B5-8C0A-E30C055DEE21}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{69B14A10-BF3C-49CD-A262-739B83973186}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{6BB55738-B6A7-4114-840D-A2F98B87C33C}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{748FA372-339E-4075-B913-86D0740A1DE9}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{7E651229-9439-4AB7-BE20-7041E6456335}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{807210b2-c03e-4203-a5e0-cb1b3496426b}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{83D2434F-B0F2-4E42-AC6F-FE126786130D}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{88B45DCB-9FBC-4BAF-A4A6-C150E98A9F32}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{8B03E21E-AE2A-4C72-A965-F4538BC7C680}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{908641C3-E57E-4024-8ECF-9A4CA021C179}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{94c801cd-46bf-4b4d-834b-8f0a69bdff24}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{968a2d60-fab7-4bea-bec0-24545c88cc31}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{9C343FA3-1DDB-4209-9B39-5ACD2FA7A841}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{9ca70986-06bc-49f5-9097-b17cf968af09}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{9F5E1EC6-0C22-4932-B2C4-9C40116F41A4}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{9FBC470B-098B-4953-9082-481D0D3566DC}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{a3c735a6-c9fc-48c4-b1df-37eab7c5cf41}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{a3c735a6-c9fc-48c4-b1df-37eab7c5cf41}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{a45fb14e-bfa8-48a7-ada6-73e30f50f657}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{A4C7B974-DCBE-4FD1-9E37-997182655A35}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{A52A113A-C61D-49A7-8C53-DEBFCAC59B4F}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{acf7da4c-eeb2-484a-a3a1-303d4054d50c}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{ad0c6fea-e1cd-454a-af7f-6c1d44a176c3}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{B16BA030-AA48-436E-A6E0-47D9AD365D32}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{B6F125AF-6973-4077-8498-0BDEDDD8E5D4}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{B8E823D0-E574-444E-93BD-DDEBFC9831BF}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{bdae34e3-0a1a-45c8-a13b-d25f209e60ab}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{BE40C362-3DDB-40C0-8C2A-267385081DB3}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{c6549209-1ff1-4a5c-a815-981f64f34b19}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{c6549209-1ff1-4a5c-a815-981f64f34b19}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\".
Delete the registry key "{C830E688-5B4A-4B4B-9293-E14996161FC8}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{cca1a3ba-194e-4e75-aff1-41cff3c4e5fe}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{d047fe10-dfe2-45cf-9fbf-966b9e64920f}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{d047fe10-dfe2-45cf-9fbf-966b9e64920f}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\".
Delete the registry key "{DA84BB1A-5D7B-45CD-AE39-A82C382BFA73}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{dc27caca-cb20-4b93-b5d7-87224164438f}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{E595391D-3622-4222-AA39-9CF5B49512A9}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{e595391d-3622-4222-aa39-9cf5b49512a9}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{ef18fe12-f90d-4205-8a09-5426c14395eb}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{F348A713-F310-470B-B6FD-7FAF04D14151}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{f43c37b5-73ad-465d-9774-168be6c56a9a}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{F53C4FFC-1A47-4ECA-B372-014EC02F7301}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{F8AC68F4-81F0-4FE6-BA17-512BAE2DDD88}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{fede4586-5ada-4476-9fe0-f01dcaf20a56}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "VideoScavenger_1e" at "HKEY_CURRENT_USER\Software\".
Delete the registry key "VideoScavenger_1e" at "HKEY_LOCAL_MACHINE\SOFTWARE\".
Delete the registry key "VideoScavenger_1eService" at "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\".
Delete the registry key "VideoScavenger_1eService" at "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\".
Delete the registry key "VideoScavenger_1eService" at "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\".
Delete the registry value "{57dc49cc-5a9f-446c-bcf8-65c52b7060a6}" at "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks\".
Delete the registry value "{acf7da4c-eeb2-484a-a3a1-303d4054d50c}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\".
Delete the registry value "1effxtbr@VideoScavenger_1e.com" at "HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\".
If PU.Mindspark.VideoScavenger uses rootkit technologies, use our RegAlyzer (http://www.safer-networking.org/index.php?page=regalyzer), RootAlyzer (http://forums.spybot.info/downloads.php?id=8) or our Total Commander anti-rootkit plugins (http://forums.spybot.info/downloads.php?id=3).
There are more registry entries that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Final Words:
If neither Spybot-S&D nor self help did resolve the issue or you would prefer one on one help,
Please read these instructions (http://forums.spybot.info/showthread.php?t=288) before requesting assistance,
Then start your own thread in the Malware Removal Forum (http://forums.spybot.info/forumdisplay.php?f=22) where a volunteer analyst will advise you as soon as available.
There are more files or system entries belonging to this product that <$SPYBOTSD> can remove, but that cannot be easily described in text. Please use <$SPYBOTSD> to make sure <$PRODUCTNAME> gets completely removed.
Use this guide at your own risk; software should usually be better suited to remove malware, since it is able to look deeper.
If this guide was helpful to you, please consider donating towards this site (http://www.safer-networking.org/index.php?page=donate).
Threat Details:
Categories:
pups
Description:
PU.Mindspark.VideoScavenger installs a toolbar by Mindspark Interactive Network.
Removal Instructions:
Autorun:
Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd), RunAlyzer (http://www.safer-networking.org/index.php?page=runalyzer) or msconfig.exe to remove the following autorun entries.
Entries named "VideoScavenger Search Scope Monitor" and pointing to "?<$PROGRAMFILES>\VideoScavenger_??\bar\?.bin\??srchmn.exe*".
Important: There are more autorun entries that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Installed Software List:
You can try to uninstall products with the names listed below; for items identified by other properties or to avoid malware getting active again on uninstallation, use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) or RunAlyzer (http://www.safer-networking.org/index.php?page=runalyzer) to locate and get rid of these entries.
Products that have a key or property named "VideoScavenger_1ebar Uninstall".
Files:
Important: There are more files that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Folders:
Important: There are more files that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Registry:
You can use regedit.exe (included in Windows) to locate and delete these registry entries.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.DynamicBarButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.DynamicBarButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.FeedManager.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.FeedManager", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.HTMLMenu.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.HTMLMenu", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.HTMLPanel.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.HTMLPanel", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.MultipleButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.MultipleButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.PseudoTransparentPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.PseudoTransparentPlugin", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.Radio.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.Radio", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.RadioSettings.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.RadioSettings", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.ScriptButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.ScriptButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.SettingsPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.SettingsPlugin", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.SkinLauncher.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.SkinLauncher", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.SkinLauncherSettings.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.SkinLauncherSettings", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.ThirdPartyInstaller.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.ThirdPartyInstaller", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.UrlAlertButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.UrlAlertButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.XMLSessionPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "VideoScavenger_1e.XMLSessionPlugin", plus associated values.
Delete the registry key "@VideoScavenger_1e.com/Plugin" at "HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\".
Delete the registry key "{0574BCFE-3611-4AD5-9114-2218C8F1A423}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{0AFB9872-419A-466E-A8DC-10504076DEB3}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{0B5629F3-8E8C-4406-B1AB-25F86AFFB2D9}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{0CF8E2B6-EF06-4153-B56D-174D01508780}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{10f92d9b-690c-423c-a118-9c75637207ac}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{149a544b-9203-49f5-b177-4f62b4b219b4}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{194de045-cc5e-4840-b031-1ca9db98919d}" at "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\".
Delete the registry key "{194de045-cc5e-4840-b031-1ca9db98919d}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\".
Delete the registry key "{212f8bcf-00eb-4aa4-832e-b9389caa8b03}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{23119123-0854-469D-807A-171568457991}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{23CA83AE-6D59-4B12-AD20-12C9B4814840}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{23f4cec5-8255-4ea2-876f-f07b2f7cf395}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{28ECA842-8B53-456E-8DDC-772E86E9B396}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{2D8FDA07-6836-475F-8ABB-E6B26B63F864}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{2F3F4ADB-1C1C-4D5E-9FBC-C3AA53596CCC}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{2f3f4adb-1c1c-4d5e-9fbc-c3aa53596ccc}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{311c61de-a01b-414e-a7c1-68eae31aae8a}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{31EB29B9-27C0-4442-90E7-4C6F731EEFF3}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{33B63E5E-73E3-4ECC-859F-8A185B4DE045}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{33EAE4D4-8B3B-4AAF-80FB-387C05CCDFC8}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{35c636a4-4435-4723-b751-5b62d04ba15b}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{3ECAC16A-A8C3-48C8-85BE-C6002305780C}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{43724E5E-6101-4508-B5D9-A61B481CDE28}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{52695F97-1A52-40A0-AFCD-99D149A1D0B8}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{548E3328-D7EC-4FEE-AD39-3B4EC4A54D7B}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{57dc49cc-5a9f-446c-bcf8-65c52b7060a6}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{57dc49cc-5a9f-446c-bcf8-65c52b7060a6}" at "HKEY_CURRENT_USER\Software\Classes\CLSID\".
Delete the registry key "{59446FD8-5B6F-4B16-94BA-E7DCC1804A9B}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{612EB90E-13E5-42B5-8C0A-E30C055DEE21}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{69B14A10-BF3C-49CD-A262-739B83973186}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{6BB55738-B6A7-4114-840D-A2F98B87C33C}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{748FA372-339E-4075-B913-86D0740A1DE9}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{7E651229-9439-4AB7-BE20-7041E6456335}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{807210b2-c03e-4203-a5e0-cb1b3496426b}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{83D2434F-B0F2-4E42-AC6F-FE126786130D}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{88B45DCB-9FBC-4BAF-A4A6-C150E98A9F32}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{8B03E21E-AE2A-4C72-A965-F4538BC7C680}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{908641C3-E57E-4024-8ECF-9A4CA021C179}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{94c801cd-46bf-4b4d-834b-8f0a69bdff24}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{968a2d60-fab7-4bea-bec0-24545c88cc31}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{9C343FA3-1DDB-4209-9B39-5ACD2FA7A841}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{9ca70986-06bc-49f5-9097-b17cf968af09}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{9F5E1EC6-0C22-4932-B2C4-9C40116F41A4}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{9FBC470B-098B-4953-9082-481D0D3566DC}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{a3c735a6-c9fc-48c4-b1df-37eab7c5cf41}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{a3c735a6-c9fc-48c4-b1df-37eab7c5cf41}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{a45fb14e-bfa8-48a7-ada6-73e30f50f657}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{A4C7B974-DCBE-4FD1-9E37-997182655A35}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{A52A113A-C61D-49A7-8C53-DEBFCAC59B4F}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{acf7da4c-eeb2-484a-a3a1-303d4054d50c}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{ad0c6fea-e1cd-454a-af7f-6c1d44a176c3}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{B16BA030-AA48-436E-A6E0-47D9AD365D32}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{B6F125AF-6973-4077-8498-0BDEDDD8E5D4}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{B8E823D0-E574-444E-93BD-DDEBFC9831BF}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{bdae34e3-0a1a-45c8-a13b-d25f209e60ab}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{BE40C362-3DDB-40C0-8C2A-267385081DB3}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{c6549209-1ff1-4a5c-a815-981f64f34b19}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{c6549209-1ff1-4a5c-a815-981f64f34b19}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\".
Delete the registry key "{C830E688-5B4A-4B4B-9293-E14996161FC8}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{cca1a3ba-194e-4e75-aff1-41cff3c4e5fe}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{d047fe10-dfe2-45cf-9fbf-966b9e64920f}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{d047fe10-dfe2-45cf-9fbf-966b9e64920f}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\".
Delete the registry key "{DA84BB1A-5D7B-45CD-AE39-A82C382BFA73}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{dc27caca-cb20-4b93-b5d7-87224164438f}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{E595391D-3622-4222-AA39-9CF5B49512A9}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{e595391d-3622-4222-aa39-9cf5b49512a9}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{ef18fe12-f90d-4205-8a09-5426c14395eb}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{F348A713-F310-470B-B6FD-7FAF04D14151}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{f43c37b5-73ad-465d-9774-168be6c56a9a}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{F53C4FFC-1A47-4ECA-B372-014EC02F7301}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{F8AC68F4-81F0-4FE6-BA17-512BAE2DDD88}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{fede4586-5ada-4476-9fe0-f01dcaf20a56}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "VideoScavenger_1e" at "HKEY_CURRENT_USER\Software\".
Delete the registry key "VideoScavenger_1e" at "HKEY_LOCAL_MACHINE\SOFTWARE\".
Delete the registry key "VideoScavenger_1eService" at "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\".
Delete the registry key "VideoScavenger_1eService" at "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\".
Delete the registry key "VideoScavenger_1eService" at "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\".
Delete the registry value "{57dc49cc-5a9f-446c-bcf8-65c52b7060a6}" at "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks\".
Delete the registry value "{acf7da4c-eeb2-484a-a3a1-303d4054d50c}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\".
Delete the registry value "1effxtbr@VideoScavenger_1e.com" at "HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\".
If PU.Mindspark.VideoScavenger uses rootkit technologies, use our RegAlyzer (http://www.safer-networking.org/index.php?page=regalyzer), RootAlyzer (http://forums.spybot.info/downloads.php?id=8) or our Total Commander anti-rootkit plugins (http://forums.spybot.info/downloads.php?id=3).
There are more registry entries that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Final Words:
If neither Spybot-S&D nor self help did resolve the issue or you would prefer one on one help,
Please read these instructions (http://forums.spybot.info/showthread.php?t=288) before requesting assistance,
Then start your own thread in the Malware Removal Forum (http://forums.spybot.info/forumdisplay.php?f=22) where a volunteer analyst will advise you as soon as available.
There are more files or system entries belonging to this product that <$SPYBOTSD> can remove, but that cannot be easily described in text. Please use <$SPYBOTSD> to make sure <$PRODUCTNAME> gets completely removed.