Video Performer, or Downware?!

Days ago, I got another malicious customized installer, Video Performer, from Giraffe Tech Software LLC, according to its Signatures.

I first upload that dangerous ad-based online installer to VirusTotal, and get the following details:

  • SHA256: 4eaae4b974558711dd540c742d01124d514364915ca9fffbe62ed1e6da0e36bf
  • Detection ratio: 13 / 55
  • MD5: 3de7dcda40429704708e40940bba41ee

During its aggressive install process, I got the following foistware even semi-malware installed…


“Install (Conduit) Search Protect to reset my home page and default search to Trovi Search for Internet Explorer, Firefox, and Chrome. …”

Trovi is an enhanced online search experience used by millions of people worldwide. Fast, simple, and easy to use, Trovi offers the best search results from across the web. Trovi’s strategic partnerships with Google, Yahoo!, and Bing mean you can find what you are looking for quickly and easily. Thanks to our collaboration with leading software providers, you can choose to install Trovi during setup and benefit from better online searches on all major browsers.


“Get more out of Browsing – PortalMore (a clone of AtuZi, PlurPush, etc)”


“PC Performer Provides… Bonus Feature: Test your Internet Speed with SpeedAnalysis Internet Speed Test”


“We recommend ‘MyPCBackup (aka, MyPC Backup)’ to backup your computer, Backup your life…”


About PUP Hunter

I am experienced in helping avoid foistware attack, and fixing bloatware/ greyware issues, the very proactive way.
This entry was posted in Uncategorized and tagged . Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s