Virus and Spyware Removal Guides, uninstall instructions

What is hp.myway.com?

GetFormsHere is a rogue application, distributed by the Mindspark Interactive Network. It is supposedly capable of providing various printable forms, however, this app is proliferated by dubious methods and users are often tricked into installing it.

Therefore, it is categorized as a PUA (potentially unwanted application) and a browser hijacker, since it modifies browsers to promote hp.myway.com (a fake search engine). Additionally, GetFormsHere monitors users' browsing activity.

What is hp.myway.com?

Developed by the Mindspark Interactive Network, GetFamilyHistory is a browser hijacker. It is endorsed as a tool for quick access to free resources concerning family history, accompanied by a fake web searcher. GetFamilyHistory is supposedly capable of providing family tree information, last name origin and meanings, as well as other related content.

However, this rogue application modifies browsers and promotes hp.myway.com - a fake search engine. Due to most users installing this app inadvertently, it is classified as a PUA (potentially unwanted application). Furthermore, GetFamilyHistory has data tracking abilities and uses them to spy on browsing activity.

What is StructuredService?

StructuredService is a potentially unwanted application (PUA), categorized as adware. It is advertised as an app capable of enhancing web browsing.

Once StructuredService is installed, it begins displaying various intrusive advertisements. Its classification as a PUA, depends on the fact that most users install this application inadvertently. All PUAs are considered to be a threat to device and user safety; therefore, it is highly recommended to remove StructuredService and all similar apps immediately.

What is Tortoiseshell?

Tortoiseshell is a group of cyber criminals who proliferate malware that steals information about its victims and infected computers.

They proliferate an information stealer with a remote access Trojan (RAT) - software that allows cyber criminals to remotely control infected computers. The Tortoiseshell group seeks to infect computers with two dangerous malicious programs that can cause serious problems. These programs should be removed/uninstalled immediately.

What is FeedBack?

FeedBack is an adware-type potentially unwanted application (PUA). Once installed, it operates by displaying various undesirable advertisements.

Often PUAs of this type track and collect data, relating to users' browsing activity. Unwanted apps are classified as such, due to most users installing them onto their systems unintentionally. It is highly recommended to uninstall FeedBack and other adware immediately upon detection.

What is DCRTR-WDM?

DCRTR-WDM (or simply WDM) is the name of a family of ransomware-type programs. This family includes DCRTR, DCRTR-Crypt, Cryptes, and dozens of other infections. Ransomware is a type of software usually designed to prevent victims from accessing their data by encrypting it with strong encryption algorithms.

Generally, the only people who can provide tools that can decrypt files encrypted with specific ransomware are the cyber criminals who designed it.

To decrypt files, victims are encouraged to pay a ransom. Ransomware often renames encrypted files by changing the extensions, creates a ransom message (typically, within a .txt file), and/or displays a pop-up window with instructions about how to contact and pay cyber criminals.

What is muchinspardorop[.]info?

Muchinspardorop[.]info is a rogue website, similar to cudalbapt.com, pushmehoney.com, checking-your-browser.com and thousands of others. It operates by delivering unreliable content to users and generating redirects to various untrustworthy, even malicious webpages.

It should be mentioned, that few users ever visit this site intentionally; most visitors to muchinspardorop[.]info get redirected to it. Such redirects are caused by either invasive advertisements or by PUAs (potentially unwanted applications). These rogue applications do not need explicit user consent to invade their devices.

Once installed, they generate redirects, deliver intrusive ad campaigns and track browsing data.

What is shade8?

Like most ransomware-type programs, shade8 is designed to encrypt data and force victims to pay for decryption of their files. This malicious software is a part of Hidden Tear ransomware and was discovered by Pepper Potts.

Shade8 creates a ransom message within the "READ_THIS.txt" file, changes the wallpaper, and renames encrypted files by adding the ".shade8" extension to filenames. For example, "1.jpg" becomes "1.jpg.shade8".

What is ResultsValue?

ResultsValue is a potentially unwanted application (PUA) that functions as adware. When installed, it displays unwanted advertisements. PUAs also collect information relating to users' browsing habits. People generally tricked into downloading and installing PUAs. Therefore, we recommend that you uninstall ResultsValue and other adware immediately.

What is Genius App?

Genius App is a browser hijacker and a PUA (potentially unwanted application). As the former, it modifies browser settings and reassigns them to searchgeniusapp.com. Due to most users installing this rogue application inadvertently, it is categorized as the latter. Furthermore, Genius App spies on users' browsing activity, thereby gathering their personal information.