Adware

QIP.ru is potentially unwanted third-party russian search engine and news website, powered by Yandex.ru. It infects user's computers along with QIP Surf browser, built on Chromium platform. It installs without user's permission and replaces default browser. QIP.ru is also spread separately in Google Chrome, Mozilla Firefox or Internet Explorer and replaces default search and homepage in this browsers.

MacPerformance is malicious application for MacOS, that belongs to OSX Pirrit adware family. It controls settings of Safari, Google Chrome, Mozilla Firefox to create redirects and display ads and pop-ups. It infiltrates Mac computers invisibly or by fraud and starts to generate advertisements, showing phishing pages, encouraging users to download potentially unwanted applications. Sometimes MacPerformance is offered to be installed in a bundle with good applications, and users, confused by the name of the program, think that this is optimisation software for MacOS, and allow installation.

Searchpage.com and SearchPage Tab is are, respectively, dubiuos search engine and browser add-on, that modifies search engine and homepage settings in Safari, Google Chrome, Mozilla Firefox and other browsers. It is also responsible for display of ads, pop-ups and notifications from Searchpage.com. This hijacker was developed by Iron Mountain Technology Limited, with headquaters situated in Hong Kong, as it is stated on their website. The site has a purely advertising purposes, having no value to the end user. Search requests typed in search box on the main page are redirected to search.yahoo.com.

Notification-browser.com (v1, v2, v3.notification-browser.com etc) is hazardous site, that displays ads, pop-ups and notifications in Safari, Google Chrome, Mozilla Firefox, Internet Explorer or Edge. If you see advertisements from Notification-browser.com while browsing certain sites, it means those sites use bad-quality advertising or they are hacked. This can be fixed by installing ad-blocking software, like AdGuard (see description below). If you see notifications from Notification-browser.com, it means website is allowed to show them in browser settings. In this situation, you need to check your PC for viruses and follow instructions below.

Whateveryf.info is bogus domain, registered and exploited by adware developers. Malefactors are using browser notification feature to bombard user's desktops with tons of purposeless push-notifications, show pop-ups and create endless redirections. It is similar to previously descibed pop-ups websites. Hackers use hundreds of such domains and actively distribute them. This type of adware appeared recently, as a new type of social engeneering attack, using push-notifications to deliver nasty ads via legal channel directly to user's desktops.