Friday
2019-03-19, 14:13
The following instructions have been created to help you to get rid of "PU.Mindspark.SoccerInferno" manually.
Use this guide at your own risk; software should usually be better suited to remove malware, since it is able to look deeper.
If this guide was helpful to you, please consider donating towards this site (http://www.safer-networking.org/index.php?page=donate).
Threat Details:
Categories:
pups
Description:
PU.Mindspark.SoccerInferno installs a toolbar by Mindspark Interactive Network.
Removal Instructions:
Autorun:
Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd), RunAlyzer (http://www.safer-networking.org/index.php?page=runalyzer) or msconfig.exe to remove the following autorun entries.
Entries named "SoccerInferno Browser Plugin Loader" and pointing to "<$SYSDRIVE>\PROGRA~1\SOCCER~1\bar\1.bin\j2brmon.exe".
Installed Software List:
You can try to uninstall products with the names listed below; for items identified by other properties or to avoid malware getting active again on uninstallation, use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) or RunAlyzer (http://www.safer-networking.org/index.php?page=runalyzer) to locate and get rid of these entries.
Products that have a key or property named "SoccerInfernobar Uninstall".
Files:
Important: There are more files that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Folders:
Please use Windows Explorer or another file manager of your choice to locate and delete these folders.
The directory at "<$PROGRAMFILES>\SoccerInferno\bar\1.bin".
The directory at "<$PROGRAMFILES>\SoccerInferno\bar\Cache".
The directory at "<$PROGRAMFILES>\SoccerInferno\bar\History".
The directory at "<$PROGRAMFILES>\SoccerInferno\bar\IE9Mesg".
The directory at "<$PROGRAMFILES>\SoccerInferno\bar\Message".
The directory at "<$PROGRAMFILES>\SoccerInferno\bar\Settings".
The directory at "<$PROGRAMFILES>\SoccerInferno\bar".
The directory at "<$PROGRAMFILES>\SoccerInferno\Shared\Cache".
The directory at "<$PROGRAMFILES>\SoccerInferno\Shared".
The directory at "<$PROGRAMFILES>\SoccerInferno".
Make sure you set your file manager to display hidden and system files. If PU.Mindspark.SoccerInferno uses rootkit technologies, use our RootAlyzer (http://forums.spybot.info/downloads.php?id=8) or our Total Commander anti-rootkit plugins (http://forums.spybot.info/downloads.php?id=3).
You will have to use a global search for files without a name specified. Be extra careful, because just the name might not be enough to identify folders!
Important: There are more files that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Registry:
You can use regedit.exe (included in Windows) to locate and delete these registry entries.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.DataControl.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.DataControl", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.DynamicBarButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.DynamicBarButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.FeedManager.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.FeedManager", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.HTMLMenu.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.HTMLMenu", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.HTMLPanel.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.HTMLPanel", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.MultipleButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.MultipleButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.PseudoTransparentPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.PseudoTransparentPlugin", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.Radio.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.Radio", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.RadioSettings.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.RadioSettings", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.ScriptButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.ScriptButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.SettingsPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.SettingsPlugin", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.ThirdPartyInstaller.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.ThirdPartyInstaller", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.ToolbarPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.ToolbarPlugin", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.UrlAlertButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.UrlAlertButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.XMLSessionPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.XMLSessionPlugin", plus associated values.
Delete the registry key "@SoccerInferno.com/Plugin" at "HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\".
Delete the registry key "{05ac6dbc-a622-4b15-ba46-71fc28dd8026}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{154A15D6-747D-4B85-B701-FD1DA1D5F5D1}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{18C9E096-5B59-498B-8998-39CCFFBC53A9}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{18c9e096-5b59-498b-8998-39ccffbc53a9}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{285028f8-201e-4f8f-827b-7381fc181c3e}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{285028F8-201E-4F8F-827B-7381FC181C3E}" at "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\".
Delete the registry key "{285028F8-201E-4F8F-827B-7381FC181C3E}" at "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\".
Delete the registry key "{285028f8-201e-4f8f-827b-7381fc181c3e}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\".
Delete the registry key "{2c199f4e-b3c6-4ed6-a28f-2981d1ce23a4}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{34A782C9-857D-49BA-93EB-D1DF97FC3391}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{3908ddfa-cba7-4da3-b84c-c6168108d8c7}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{3CEF359D-F98E-4FC8-AA59-1C313FC83997}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{42000176-3C5C-426E-95D3-1F7C32C67BCA}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{458b4b6e-877e-4fdd-b776-45c4ebb39ec0}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{458b4b6e-877e-4fdd-b776-45c4ebb39ec0}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{4bf1eaa7-f95e-4c50-b99c-5938d1fe0bb9}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{66f9157b-ec8c-45d0-b7d0-0d8c338e67fd}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{67763098-2208-42be-9aef-90178de635a1}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{73b8e1fd-331f-4c17-8613-8a3034d3b0ca}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{73B8E1FD-331F-4C17-8613-8A3034D3B0CA}" at "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\".
Delete the registry key "{73B8E1FD-331F-4C17-8613-8A3034D3B0CA}" at "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\".
Delete the registry key "{73b8e1fd-331f-4c17-8613-8a3034d3b0ca}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\".
Delete the registry key "{7d3b46f4-49e2-481d-be13-01efee62360d}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{7d3b46f4-49e2-481d-be13-01efee62360d}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{7D99C38B-6982-4A74-BDB5-291D2DE656E1}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{825b681a-694c-463f-8398-5b47dd0903ee}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{825b681a-694c-463f-8398-5b47dd0903ee}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{8bb0336e-419b-4059-9647-db7d98088895}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{8bb0336e-419b-4059-9647-db7d98088895}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{8d459d46-4821-4d18-b911-2eba484e67ae}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{941D4217-34B1-4399-98A9-FF542A139B73}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{9A4B75BC-E9D5-44DE-8B6D-16DD632D34AC}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{9d7ca736-db58-4fc7-9e5d-46855fccb860}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{9d7ca736-db58-4fc7-9e5d-46855fccb860}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{a24f3f59-1021-4e02-856c-99d9b4a03d83}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{a44cb58e-7359-4038-94d0-8b948e24fa31}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{a44cb58e-7359-4038-94d0-8b948e24fa31}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{a583fa22-839d-45aa-a4ec-1f0e7a8d498c}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{a583fa22-839d-45aa-a4ec-1f0e7a8d498c}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{c26df8ad-ed2a-467c-b741-c9e7993968bc}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{C38F0D7C-52A7-47F5-ABA2-26D62B3BD645}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{c38f0d7c-52a7-47f5-aba2-26d62b3bd645}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{C4C4215D-F274-4E37-B9BF-878B618C3218}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{c5a318c1-d1d9-41f0-85fe-41cc9fb25e75}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{C5A318C1-D1D9-41F0-85FE-41CC9FB25E75}" at "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\".
Delete the registry key "{C5A318C1-D1D9-41F0-85FE-41CC9FB25E75}" at "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\".
Delete the registry key "{ce1d890d-fe0c-4f3c-a5e2-54949ff00b7c}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{cf1652fd-3701-423a-bd01-bb714f847bad}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{d134cd2f-89b1-4dac-8922-6d275c3c71ed}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{D5796856-71FD-47D5-A2B8-D03F49A1B155}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{D75CF7CE-914D-4254-B71D-B002493EFF5D}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{D75CF7CE-914D-4254-B71D-B002493EFF5D}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{dc9c97aa-0476-41a0-a66f-bcf12dae1d45}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{E771487C-3B55-4329-9C21-B87D03E3E2AF}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{ea3ff7f0-4839-4f86-bdab-261cd2226f47}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{F17B757A-05C4-48D1-A659-4A5214AD8DF0}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{fb72f1bd-a2f1-47eb-8f13-2c6dcd65516f}" at "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\".
Delete the registry key "{fb72f1bd-a2f1-47eb-8f13-2c6dcd65516f}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\".
Delete the registry key "SoccerInferno" at "HKEY_CURRENT_USER\Software\".
Delete the registry key "SoccerInferno" at "HKEY_LOCAL_MACHINE\SOFTWARE\".
Delete the registry key "SoccerInfernoService" at "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\".
Delete the registry key "SoccerInfernoService" at "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\".
Delete the registry key "SoccerInfernoService" at "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\".
Delete the registry value "{a24f3f59-1021-4e02-856c-99d9b4a03d83}" at "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks\".
Delete the registry value "{c5a318c1-d1d9-41f0-85fe-41cc9fb25e75}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\".
Delete the registry value "j2ffxtbr@SoccerInferno.com" at "HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\".
If PU.Mindspark.SoccerInferno uses rootkit technologies, use our RegAlyzer (http://www.safer-networking.org/index.php?page=regalyzer), RootAlyzer (http://forums.spybot.info/downloads.php?id=8) or our Total Commander anti-rootkit plugins (http://forums.spybot.info/downloads.php?id=3).
There are more registry entries that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Final Words:
If neither Spybot-S&D nor self help did resolve the issue or you would prefer one on one help,
Please read these instructions (http://forums.spybot.info/showthread.php?t=288) before requesting assistance,
Then start your own thread in the Malware Removal Forum (http://forums.spybot.info/forumdisplay.php?f=22) where a volunteer analyst will advise you as soon as available.
Use this guide at your own risk; software should usually be better suited to remove malware, since it is able to look deeper.
If this guide was helpful to you, please consider donating towards this site (http://www.safer-networking.org/index.php?page=donate).
Threat Details:
Categories:
pups
Description:
PU.Mindspark.SoccerInferno installs a toolbar by Mindspark Interactive Network.
Removal Instructions:
Autorun:
Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd), RunAlyzer (http://www.safer-networking.org/index.php?page=runalyzer) or msconfig.exe to remove the following autorun entries.
Entries named "SoccerInferno Browser Plugin Loader" and pointing to "<$SYSDRIVE>\PROGRA~1\SOCCER~1\bar\1.bin\j2brmon.exe".
Installed Software List:
You can try to uninstall products with the names listed below; for items identified by other properties or to avoid malware getting active again on uninstallation, use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) or RunAlyzer (http://www.safer-networking.org/index.php?page=runalyzer) to locate and get rid of these entries.
Products that have a key or property named "SoccerInfernobar Uninstall".
Files:
Important: There are more files that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Folders:
Please use Windows Explorer or another file manager of your choice to locate and delete these folders.
The directory at "<$PROGRAMFILES>\SoccerInferno\bar\1.bin".
The directory at "<$PROGRAMFILES>\SoccerInferno\bar\Cache".
The directory at "<$PROGRAMFILES>\SoccerInferno\bar\History".
The directory at "<$PROGRAMFILES>\SoccerInferno\bar\IE9Mesg".
The directory at "<$PROGRAMFILES>\SoccerInferno\bar\Message".
The directory at "<$PROGRAMFILES>\SoccerInferno\bar\Settings".
The directory at "<$PROGRAMFILES>\SoccerInferno\bar".
The directory at "<$PROGRAMFILES>\SoccerInferno\Shared\Cache".
The directory at "<$PROGRAMFILES>\SoccerInferno\Shared".
The directory at "<$PROGRAMFILES>\SoccerInferno".
Make sure you set your file manager to display hidden and system files. If PU.Mindspark.SoccerInferno uses rootkit technologies, use our RootAlyzer (http://forums.spybot.info/downloads.php?id=8) or our Total Commander anti-rootkit plugins (http://forums.spybot.info/downloads.php?id=3).
You will have to use a global search for files without a name specified. Be extra careful, because just the name might not be enough to identify folders!
Important: There are more files that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Registry:
You can use regedit.exe (included in Windows) to locate and delete these registry entries.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.DataControl.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.DataControl", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.DynamicBarButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.DynamicBarButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.FeedManager.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.FeedManager", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.HTMLMenu.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.HTMLMenu", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.HTMLPanel.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.HTMLPanel", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.MultipleButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.MultipleButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.PseudoTransparentPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.PseudoTransparentPlugin", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.Radio.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.Radio", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.RadioSettings.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.RadioSettings", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.ScriptButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.ScriptButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.SettingsPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.SettingsPlugin", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.ThirdPartyInstaller.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.ThirdPartyInstaller", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.ToolbarPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.ToolbarPlugin", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.UrlAlertButton.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.UrlAlertButton", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.XMLSessionPlugin.1", plus associated values.
A key in HKEY_CLASSES_ROOT\ named "SoccerInferno.XMLSessionPlugin", plus associated values.
Delete the registry key "@SoccerInferno.com/Plugin" at "HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\".
Delete the registry key "{05ac6dbc-a622-4b15-ba46-71fc28dd8026}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{154A15D6-747D-4B85-B701-FD1DA1D5F5D1}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{18C9E096-5B59-498B-8998-39CCFFBC53A9}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{18c9e096-5b59-498b-8998-39ccffbc53a9}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{285028f8-201e-4f8f-827b-7381fc181c3e}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{285028F8-201E-4F8F-827B-7381FC181C3E}" at "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\".
Delete the registry key "{285028F8-201E-4F8F-827B-7381FC181C3E}" at "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\".
Delete the registry key "{285028f8-201e-4f8f-827b-7381fc181c3e}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\".
Delete the registry key "{2c199f4e-b3c6-4ed6-a28f-2981d1ce23a4}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{34A782C9-857D-49BA-93EB-D1DF97FC3391}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{3908ddfa-cba7-4da3-b84c-c6168108d8c7}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{3CEF359D-F98E-4FC8-AA59-1C313FC83997}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{42000176-3C5C-426E-95D3-1F7C32C67BCA}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{458b4b6e-877e-4fdd-b776-45c4ebb39ec0}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{458b4b6e-877e-4fdd-b776-45c4ebb39ec0}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{4bf1eaa7-f95e-4c50-b99c-5938d1fe0bb9}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{66f9157b-ec8c-45d0-b7d0-0d8c338e67fd}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{67763098-2208-42be-9aef-90178de635a1}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{73b8e1fd-331f-4c17-8613-8a3034d3b0ca}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{73B8E1FD-331F-4C17-8613-8A3034D3B0CA}" at "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\".
Delete the registry key "{73B8E1FD-331F-4C17-8613-8A3034D3B0CA}" at "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\".
Delete the registry key "{73b8e1fd-331f-4c17-8613-8a3034d3b0ca}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\".
Delete the registry key "{7d3b46f4-49e2-481d-be13-01efee62360d}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{7d3b46f4-49e2-481d-be13-01efee62360d}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{7D99C38B-6982-4A74-BDB5-291D2DE656E1}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{825b681a-694c-463f-8398-5b47dd0903ee}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{825b681a-694c-463f-8398-5b47dd0903ee}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{8bb0336e-419b-4059-9647-db7d98088895}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{8bb0336e-419b-4059-9647-db7d98088895}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{8d459d46-4821-4d18-b911-2eba484e67ae}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{941D4217-34B1-4399-98A9-FF542A139B73}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{9A4B75BC-E9D5-44DE-8B6D-16DD632D34AC}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{9d7ca736-db58-4fc7-9e5d-46855fccb860}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{9d7ca736-db58-4fc7-9e5d-46855fccb860}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{a24f3f59-1021-4e02-856c-99d9b4a03d83}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{a44cb58e-7359-4038-94d0-8b948e24fa31}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{a44cb58e-7359-4038-94d0-8b948e24fa31}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{a583fa22-839d-45aa-a4ec-1f0e7a8d498c}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{a583fa22-839d-45aa-a4ec-1f0e7a8d498c}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{c26df8ad-ed2a-467c-b741-c9e7993968bc}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{C38F0D7C-52A7-47F5-ABA2-26D62B3BD645}" at "HKEY_CLASSES_ROOT\Interface\".
Delete the registry key "{c38f0d7c-52a7-47f5-aba2-26d62b3bd645}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{C4C4215D-F274-4E37-B9BF-878B618C3218}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{c5a318c1-d1d9-41f0-85fe-41cc9fb25e75}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{C5A318C1-D1D9-41F0-85FE-41CC9FB25E75}" at "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\".
Delete the registry key "{C5A318C1-D1D9-41F0-85FE-41CC9FB25E75}" at "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\".
Delete the registry key "{ce1d890d-fe0c-4f3c-a5e2-54949ff00b7c}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{cf1652fd-3701-423a-bd01-bb714f847bad}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{d134cd2f-89b1-4dac-8922-6d275c3c71ed}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{D5796856-71FD-47D5-A2B8-D03F49A1B155}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{D75CF7CE-914D-4254-B71D-B002493EFF5D}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{D75CF7CE-914D-4254-B71D-B002493EFF5D}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\".
Delete the registry key "{dc9c97aa-0476-41a0-a66f-bcf12dae1d45}" at "HKEY_CLASSES_ROOT\CLSID\".
Delete the registry key "{E771487C-3B55-4329-9C21-B87D03E3E2AF}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{ea3ff7f0-4839-4f86-bdab-261cd2226f47}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\".
Delete the registry key "{F17B757A-05C4-48D1-A659-4A5214AD8DF0}" at "HKEY_CLASSES_ROOT\TypeLib\".
Delete the registry key "{fb72f1bd-a2f1-47eb-8f13-2c6dcd65516f}" at "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\".
Delete the registry key "{fb72f1bd-a2f1-47eb-8f13-2c6dcd65516f}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\".
Delete the registry key "SoccerInferno" at "HKEY_CURRENT_USER\Software\".
Delete the registry key "SoccerInferno" at "HKEY_LOCAL_MACHINE\SOFTWARE\".
Delete the registry key "SoccerInfernoService" at "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\".
Delete the registry key "SoccerInfernoService" at "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\".
Delete the registry key "SoccerInfernoService" at "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\".
Delete the registry value "{a24f3f59-1021-4e02-856c-99d9b4a03d83}" at "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks\".
Delete the registry value "{c5a318c1-d1d9-41f0-85fe-41cc9fb25e75}" at "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\".
Delete the registry value "j2ffxtbr@SoccerInferno.com" at "HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\".
If PU.Mindspark.SoccerInferno uses rootkit technologies, use our RegAlyzer (http://www.safer-networking.org/index.php?page=regalyzer), RootAlyzer (http://forums.spybot.info/downloads.php?id=8) or our Total Commander anti-rootkit plugins (http://forums.spybot.info/downloads.php?id=3).
There are more registry entries that cannot be safely described in simple words. Please use Spybot-S&D (http://www.safer-networking.org/index.php?page=spybotsd) to remove them.
Final Words:
If neither Spybot-S&D nor self help did resolve the issue or you would prefer one on one help,
Please read these instructions (http://forums.spybot.info/showthread.php?t=288) before requesting assistance,
Then start your own thread in the Malware Removal Forum (http://forums.spybot.info/forumdisplay.php?f=22) where a volunteer analyst will advise you as soon as available.