<div>
Hi! David,<br />
<br />
I did the spyhunter scan and it found nothing.
</div>


Hi! David,

I did the spyhunter scan and it found nothing.

<div>
In the registry, those that you mentioned are not found.
</div>


In the registry, those that you mentioned are not found.

<div>
ok then try sysinternals autoruns and start hunting.
</div>


ok then try sysinternals autoruns and start hunting.

<div>
Hi!<br />
<br />
I tried the auto run, all looks normal.<br />
<br />
Is there anything in particular I should look for or filter?<br />
<br />
I typed DBS.serving and random in the filter but nothing is found<br />
<br />
Spy hunter needs to be paid but it is not finding anything that needs attention
</div>


Hi!

I tried the auto run, all looks normal.

Is there anything in particular I should look for or filter?

I typed DBS.serving and random in the filter but nothing is found

Spy hunter needs to be paid but it is not finding anything that needs attention

<div>
As I said &lt;RANDOM&gt; represents a random name and is not the name of the executable<br />
Download a trial of Hitman Pro <a href="https://www.hitmanpro.com/en-us/hmp.aspx" rel="ugc">https://www.hitmanpro.com/en-us/hmp.aspx</a>&nbsp;and share the results.
</div>


As I said <RANDOM> represents a random name and is not the name of the executable
Download a trial of Hitman Pro https://www.hitmanpro.com/en-us/hmp.aspx [https://www.hitmanpro.com/en-us/hmp.aspx] and share the results.

<div>
I used ESET online scanner also cannot find anything
</div>


I used ESET online scanner also cannot find anything

<div>
Hi! David,<br />
<br />
Is there any software where I can remotely scan the user's PC and input the results here? I do not want to disrupt the user by accessing the PC to do installation and scanning.
</div>


Hi! David,

Is there any software where I can remotely scan the user's PC and input the results here? I do not want to disrupt the user by accessing the PC to do installation and scanning.

<div>
The user is using a compromised computer. All of the tools require administrative access and be run on the affected computer.<br />
When you ran autoruns did you run as an administrator AND did you also check the box to submit files to virustotal?
</div>


The user is using a compromised computer. All of the tools require administrative access and be run on the affected computer.
When you ran autoruns did you run as an administrator AND did you also check the box to submit files to virustotal?

<div>
Are you talking about under the Autorun Scan options, put a tick against Check VirusTotal.com and put a tick for Submit Unknown Images?
</div>


Are you talking about under the Autorun Scan options, put a tick against Check VirusTotal.com and put a tick for Submit Unknown Images?

<div>
<div class="content wysiwyg-content">
Dear Experts,<br />
<br />
I have a client whose 2 PCs got infected.<br />
<br />
When they go to yahoo webpage in Singapore -&gt; Finance -&gt; Currency Converter, there is a pop up at the bottom of the page.<br />
<br />
Do you want to open or save OAD_Comscore_NoID2.js from secure-ds.serving-sys.com?<wbr /><br />
<br />
I went into Control Panel, Internet Add-Ons, Registry.<br />
<br />
Malware scan also did detect it.<br />
<br />
Any idea on how to stop this?
</div>
</div>


Dear Experts,

I have a client whose 2 PCs got infected.

When they go to yahoo webpage in Singapore -> Finance -> Currency Converter, there is a pop up at the bottom of the page.

Do you want to open or save OAD_Comscore_NoID2.js from secure-ds.serving-sys.com?

I went into Control Panel, Internet Add-Ons, Registry.

Malware scan also did detect it.

Any idea on how to stop this?

OAD_Comscore_NoID2.js from secure-ds.serving-sys.com

Spyware is software that aims to gather information about a person or organization without their knowledge and that may send such information to another entity without the consumer's consent, or that asserts control over a computer without the consumer's knowledge; it has also come to include programs that engage in various kinds of electronic fraud. Anti-spyware is software that removes or blocks that software; some common vendors include Malwarebytes, McAfee, Spybot-Search and Destroy, Ad-Aware and BitDefender.

Anti-Spyware

Golang, also called Go, is an open source programming language that is a statically-typed language with syntax loosely derived from C, adding automatic memory management, type safety, some dynamic-typing capabilities, additional built-in types such as variable-length arrays and key-value maps, and a large standard library. Go is a general-purpose systems programming language that aims to be efficient both for development and execution with a focus on fast compilation and increased maintainability of large projects. Go was originally targeted at systems programming tasks such as building server/web applications, high throughput middleware and databases.

Golang

A personal computer is a general-purpose computer whose size, capabilities and price make it useful for individuals, and is intended to be operated directly by an end-user with no intervening computer time-sharing models that allowed systems to be used by many people, usually at the same time. Personal computers may be connected to a local area network (LAN), either by a cable or a wireless connection, and through that to the Internet. A personal computer may be a laptop computer or a desktop computer running an operating system such as Windows, Linux or Macintosh OS.