Days ago, I got another malicious customized installer, Video Performer, from Giraffe Tech Software LLC, according to its Signatures.
I first upload that dangerous ad-based online installer to VirusTotal, and get the following details:
- SHA256: 4eaae4b974558711dd540c742d01124d514364915ca9fffbe62ed1e6da0e36bf
- Detection ratio: 13 / 55
- MD5: 3de7dcda40429704708e40940bba41ee
During its aggressive install process, I got the following foistware even semi-malware installed…
“Install (Conduit) Search Protect to reset my home page and default search to Trovi Search for Internet Explorer, Firefox, and Chrome. …”
Trovi is an enhanced online search experience used by millions of people worldwide. Fast, simple, and easy to use, Trovi offers the best search results from across the web. Trovi’s strategic partnerships with Google, Yahoo!, and Bing mean you can find what you are looking for quickly and easily. Thanks to our collaboration with leading software providers, you can choose to install Trovi during setup and benefit from better online searches on all major browsers.
“Get more out of Browsing – PortalMore (a clone of AtuZi, PlurPush, etc)”
“PC Performer Provides… Bonus Feature: Test your Internet Speed with SpeedAnalysis Internet Speed Test”
“We recommend ‘MyPCBackup (aka, MyPC Backup)’ to backup your computer, Backup your life…”