|
Log in to post
|
Print Thread |
|
|
|
|
|
Off-Topic
|
Joined: Jul 2000
Posts: 6,493
Veteran
|
OP
Veteran
Joined: Jul 2000
Posts: 6,493 |
Hi, it's OT but I know there are some very smart people here.
I was surfing and got a pop up warning that my computer was infected with zeus. I know that those pop-up warnings are usually false, and can be dangerous, so I closed the browser with Alt+F4
But one cannot be too safe so I called my bank, checked the balance (OK) and turned online banking off. I did the same for other accounts like PayPal.
I did a full scan with my AV software, it didn't find anything, I did another with MalwareBytes, and a third one with an AVG downloaded scanner. All three showed that my system is clean with no trojans or other nasties.
Is this definitive enough to be sure I don't have zBot?
Is there any 100% way to be sure before I turn my online banking back on?
I don't have much money in the bank, but what I do have I'd like to keep.
Thanks,
Notes
Bob "Notes" Norton  Norton Music
https://www.nortonmusic.com
100% MIDI Super-Styles recorded by live, pro, studio musicians for a live groove
& Fake Disks for MIDI and/or RealTracks
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 38,502
Veteran
|
|
Veteran
Joined: May 2000
Posts: 38,502 |
Try websearching on the zbot topic with an eye towards what has proven to be successful from people who have solved the problem. Look for things like Registry entries and then look in your Registry and see if that rogue entry is there. It likely is not, since you did the right thing and did not Click on that webpage warning.
I don't like using the keyboard to shut down the browser like you did when encountering those false flag website "alerts" because some day a bad boy is going to include those keystrokes as being the click needed to install the baddie. There are plenty of those warnings that purport to look like a Windows message box and have two buttons, one marked Cancel or No -- but clicking on ANY button on the onscreen popup results in the same thing as clicking on Yes.
I take the long path, hold down the Power button for 5 secs or so and just force a total Shutdown. Then reboot, of course.
--Mac
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
|
Anonymous
Unregistered
|
|
Anonymous
Unregistered
|
Add Super Antispyware and you have the trifecta. between the 2 you used and SAS, you will get everything.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Sep 2007
Posts: 3,926
Veteran
|
|
Veteran
Joined: Sep 2007
Posts: 3,926 |
Quote:
. . . between the 2 you used and SAS, you will get everything.
With all respect, Eddie, it just ain't so. About two years ago I got a nasty one--I don't recall the name--that wouldn't let me go anywhere online except to the miscreant's bogus site. I tried everything you mentioned and they didn't touch it. It took special software and procedures downloaded on another PC to get rid of it. The recent FBI malware that you may have heard of fell into the same class.
In another malware note, I just checked the Chest in my Avast antivirus program. There are several dozen entries in there. About 90% of them are files in the Java folder . . . hmmmm.
"My primary musical instrument is the personal computer."
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
|
Anonymous
Unregistered
|
|
Anonymous
Unregistered
|
There ARE indeed exceptions that require a specific removal tool. 98% of the time, boot in safe mode, run the tools, reboot...
ZLOB was a nasty one that had a removal tool. Most of those removal tools are online at Norton's site.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Jul 2000
Posts: 27,506
Veteran
|
|
Veteran
Joined: Jul 2000
Posts: 27,506 |
Quote:
About 90% of them are files in the Java folder . . . hmmmm.
Lots of advice out there now to disable then uninstall Java. I did.
Note to readers: this is different from Java Script, which is OK.
BIAB 2026 Win Audiophile. Software: Fender Studio One 8, Swam horns, Acoustica-7, Notion 6, Song Master Pro, Win 11 Home. Hardware: Intel i9, 32 Gb; Presonus Quantom HD8 & Faderport 8, Royer 121, Adam Sub8 & Neumann 120 monitors.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Jul 2000
Posts: 6,493
Veteran
|
|
OP
Veteran
Joined: Jul 2000
Posts: 6,493 |
Thanks to all for your advice. Quote:
<...>
I don't like using the keyboard to shut down the browser like you did when encountering those false flag website "alerts" because some day a bad boy is going to include those keystrokes as being the click needed to install the baddie. <...>
I take the long path, hold down the Power button for 5 secs or so and just force a total Shutdown. Then reboot, of course.
--Mac
Mac, it looks like that day has arrived.
I've been computing since the 1980s, I made my first website in 1996 and have been on-line at least 350 days per year since then, and I just got my very first piece of malware 
I guess it had to happen sooner or later.
I noticed my computer being sluggish when typing. The shift key was slow to react so capitalized words came out like tHis. So I booted in the safe mode, ran my AV and MalwareBytes again and MB found a trojan, but not any of the zBot signatures I found on the net. Deleted it, rebooted and noticed the same thing happening. Safe mode - scan - same thing.
So I took my notes from MBytes and my computer to my favorite computer shop. I hadn't been there in 6 years when they did warranty work on my ThinkPad (stuck pixels on the screen). They moved since then. The tech called and said there is malware on the system. It isn't zBot but something else (he rattled off a alphanumeric string). He said it is designed to turn the computer into a doorstop, fortunately I caught it in time and he doesn't think he will have to re-install the OS.
I have all my file data backed up on an external drive (I use SyncToy from MS) so nothing is lost. If any software apps need to be removed, I have the installation disks ---- somewhere.
I do not keep customer information on my computer so none of my customers are harmed (I don't even D/L the C.C. numbers anymore, I let the shop cart company just send the details with the number stripped, and then every few weeks I delete the orders from the shopping cart server).
So the Mac method is obviously the way to go. It's too bad I didn't know about it sooner or figure that one out myself.
I'm also thinking about changing my AV software. I'll go to PCWorld and others to read the comparison reviews (PC World does that about once per year).
So I'm on an old computer that hasn't been on the net in a long time. The AV and Windows took a while to update, and I'm not going to do much with this one (I basically use it as a MIDI sequencer), but I did want to get on and thank you all for your help and give you an update.
So I'll be off line (except for my phone) for another day or two.
Thanks again for the advice.
Notes
Bob "Notes" Norton Norton Music
https://www.nortonmusic.com
100% MIDI Super-Styles recorded by live, pro, studio musicians for a live groove
& Fake Disks for MIDI and/or RealTracks
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Aug 2009
Posts: 3,157
Veteran
|
|
Veteran
Joined: Aug 2009
Posts: 3,157 |
As an extra security precaution I always use a separate Partition for banking, why oh why do banks not insist on something like that such as a linux on a live cd for that extra piece of mind, both to the customer and themselves?
Means restarting the computer again in my case but its worth it for that extra piece of mind, though its not 100% security proof I know.
When you think of the risks involved doing your banking and surfing on same windows partition its really scary, I think if most people realised how insecure banking online really is they wouldn't touch it at all.
I think a live cd for banking would be a good idea, just wondering would one of the linux live cd's aavailabe be any good for this?
Would the bank website load ok and would it be virtually 100% secure?
Musiclover
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 38,502
Veteran
|
|
Veteran
Joined: May 2000
Posts: 38,502 |
Switching platforms, switching OS's, only works as long as the user base is not large enough to become attractive to the baddies.
Once a certain threshold in terms of number of users is passed, expect the baddies to notice that and start working towards compromising that particular system as well.
If banks were to issue linux CDs, etc. -- linux would simply become another target for the baddies.
The cost of freedom is indeed eternal vigilance.
--Mac
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2005
Posts: 222
Apprentice
|
|
Apprentice
Joined: May 2005
Posts: 222 |
Quote:
I think a live cd for banking would be a good idea, just wondering would one of the linux live cd's aavailabe be any good for this?
Yes. Personally I use Puppy Linux for that purpose.
Quote:
Would the bank website load ok
Yes
Quote:
and would it be virtually 100% secure?
Nothing on a networked computer is 100% safe, but Puppy running temporarily in RAM is more secure than running an OS from the hard drive.
JBlatz
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 15,944
PG Music Staff
|
|
PG Music Staff
Joined: May 2000
Posts: 15,944 |
Another option would be to do banking on an iPhone or iPad, they seem secure. Especially if there is a dedicated banking app that you are using. Some banks have guarantees about that.
Have Fun!
Peter Gannon
PG Music Inc.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Sep 2010
Posts: 8,187
Veteran
|
|
Veteran
Joined: Sep 2010
Posts: 8,187 |
It's always a good idea to have a Live CD around. That way, if you machine has issues, you can still can use it for various recovery operations, even if it's been turned into a doorstop.
That's how I was able to research a problem, and even install some AV software when my computer got a nasty virus a while back. And when my kids' computer's hard drive went out, they were still able to use it to get to the internet until we repaired the computer.
-- David Cuny My virtual singer development blogVocal control, you say. Never heard of it. Is that some kind of ProTools thing?BiaB 2025 | Windows 11 | Reaper | Way too many VSTis.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Jul 2000
Posts: 6,493
Veteran
|
|
OP
Veteran
Joined: Jul 2000
Posts: 6,493 |
Computer is back from the shop. One hour labor, money well spent.
Final diagnosis was that MalwareBytes got rid of the virus, and thus the repairman didn't know exactly what it was. He doubts it was zbot, but says that so many viruses use similar components and they mutate so quickly that any guess would only be a guess. The malware corrupted 23 files on my HD, mostly INI and DLL files, which he restored. He said it was a good thing I noticed it so quickly, as it seemed that it was intent on corrupting the entire hard drive.
I asked him about the Alt+F4 and he said that it was possible. So from now on, I will do as Mac suggested (thanks Mac) and take the long way around.
I've been computing since the mid 1980s and have been first on AOL and then the web for as long as it has been available here (remember those slow 14.4k modems). I also have had a website since 1996 and since then have been on the Internet every day (except for an annual vacation). This was the first piece of malware that got through.
I'm thinking about changing my AV software. I know that any brand can let things through, but some are better at blocking sites that aren't on the blacklist yet using heuristic analysis. I have the current edition of PC World, and it includes it's annual rating AV software, but as an advertisement based publication, I suspect the ratings could be biased, perhaps unintentionally.
So the question here is, does anyone know of a good, reliable, non-biased site that compares various Anti-Virus/Anti-Malware apps?
If I switch, I'll want to switch to whatever is currently best, knowing that next year it might not be best again.
I've read stories about Linux and Mac OS hacking, so I don't think that is a fail-safe solution, so I'll stay with Windows, but I want to stay as safe as possible.
I've also read that I should create another non-administrator account on my computer, and do all my surfing there except for critical issues like banking which will be done from my administrator account. Is this good advice or just one of those false things that fly around the 'net?
I also read that if I copy and paste my passwords into the fields instead of typing them that it keeps them safe from keyloggers. Makes sense on the surface, but does it really?
Thanks to all the help and advice you all have provided.
Bob "Notes" Norton Norton Music
https://www.nortonmusic.com
100% MIDI Super-Styles recorded by live, pro, studio musicians for a live groove
& Fake Disks for MIDI and/or RealTracks
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 38,502
Veteran
|
|
Veteran
Joined: May 2000
Posts: 38,502 |
Computer viruses don't mutate all on their own.
That requires dastardly human intervention.
--Mac
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Jul 2000
Posts: 6,493
Veteran
|
|
OP
Veteran
Joined: Jul 2000
Posts: 6,493 |
Computer malware is created by dastardly humans in the first place It's good to be safe again. And thanks again for your advice. Notes
Bob "Notes" Norton Norton Music
https://www.nortonmusic.com
100% MIDI Super-Styles recorded by live, pro, studio musicians for a live groove
& Fake Disks for MIDI and/or RealTracks
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Jul 2007
Posts: 330
Journeyman
|
|
Journeyman
Joined: Jul 2007
Posts: 330 |
A few questions to answer here, first a good and well known independent security software testing organisation here= http://www.av-test.org/en/tests/home-user/windows-7/novdec-2012/There is at least one other, but you may have to use Google to find it, I have lost their address. Secondly, next time any one gets lumbered with one of the many lousy malware out there, there are several computer help forums where specialist help can be found in removing this junk if you get afflicted by it. Here are a few I know of where specialist help can be obtained. First is the top training group where specialists get their training in the first place. http://www.malwareremoval.com/forum/http://www.bleepingcomputer.com/forums/I am part of staff on this next one= http://www.freepchelp.co.uk/forum.phpHope that can be of help not just for you Notes, but anyone else having malware problems. Nev.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Jul 2000
Posts: 6,493
Veteran
|
|
OP
Veteran
Joined: Jul 2000
Posts: 6,493 |
Thanks a lot. Yes this can be a help to me and hopefully others.
For close to 30 years I have been able to avoid all malware, so I haven't had a need to investigate any of this. It's good to have generous people on the forum to help me learn some new things.
I don't know whether I should be proud for all the years of safety or embarrassed that one finally got me.
Fortunately no harm was done that couldn't be fixed. I will be changing my AV suite soon.
Thanks again,
Notes
Bob "Notes" Norton Norton Music
https://www.nortonmusic.com
100% MIDI Super-Styles recorded by live, pro, studio musicians for a live groove
& Fake Disks for MIDI and/or RealTracks
|
|
|
|
|
|
|
|
|
|
|
|
Ask sales and support questions about Band-in-a-Box using natural language.
ChatPG's knowledge base includes the full Band-in-a-Box User Manual and sales information from the website.
|
|
|
|
|
|
|
|
|
|
|
Band-in-a-Box® 2025 for Mac® users: Build 904 now available!
If you're already using Band-in-a-Box® 2025 for Mac®, make sure to grab the latest update! Build 904 is now available for download and includes the newest additions and enhancements from our team.
Band-in-a-Box® 2026 for Windows® users: Build 1237 is now available!
Already a Band-in-a-Box 2026 for Windows user? Stay up to date and download the build 1237 to get all the latest additions and enhancements.
PowerTracks Pro 2026 for Windows is Here!
PowerTracks 2026 is here—bringing powerful new enhancements designed to make your production workflow faster, smoother, and more intuitive than ever.
The enhanced Mixer now shows Track Type and Instrument icons for instant track recognition, while a new grid option simplifies editing views. Non-floating windows adopt a modern title bar style, replacing the legacy blue bar.
The Master Volume is now applied at the end of the audio chain for consistent levels and full-signal master effects.
Tablature now includes a “Save bends when saving XML” option for improved compatibility with PG Music tools. Plus, you can instantly match all track heights with a simple Ctrl-release after resizing, and Add2 chords from MGU/SGU files are now fully supported... and more!
Get started today—first-time packages start at just $49.
Already using PowerTracks Pro Audio? Upgrade for as little as $29 and enjoy the latest improvements!
Order now!
Band-in-a-Box 2026 for Windows Special Offers End Tomorrow (January 15th, 2026) at 11:59 PM PST!
Time really is running out! Save up to 50% on Band-in-a-Box® 2026 for Windows® upgrades and receive a FREE Bonus PAK—only when you order by 11:59 PM PST on Thursday, January 15, 2026!
We've added many major new features and new content in a redesigned Band-in-a-Box® 2026 for Windows®!
Version 2026 introduces a modernized GUI redesign across the program, with updated toolbars, refreshed windows, smoother workflows, and a new Dark Mode option. There’s also a new side toolbar for quicker access to commonly used windows, and the new Multi-View feature lets you arrange multiple windows as layered panels without overlap, making it easier to customize your workspace.
Another exciting new addition is the new AI-Notes feature, which can transcribe polyphonic audio into MIDI. You can view the results in notation or play them back as MIDI, and choose whether to process an entire track or focus on specific parts like drums, bass, guitars/piano, or vocals. There's over 100 new features in Band-in-a-Box® 2026 for Windows®.
There's an amazing collection of new content too, including 202 RealTracks, new RealStyles, MIDI SuperTracks, Instrumental Studies, “Songs with Vocals” Artist Performance Sets, Playable RealTracks Set 5, two RealDrums Stems sets, XPro Styles PAK 10, Xtra Styles PAK 21, and much more!
Upgrade your Band-in-a-Box for Windows to save up to 50% on most Band-in-a-Box® 2026 upgrade packages!
Plus, when you order your Band-in-a-Box® 2026 upgrade during our special, you'll receive a Free Bonus PAK of exciting new add-ons.
If you need any help deciding which package is the best option for you, just let us know. We are here to help!
Band-in-a-Box® 2026 for Windows® Special Offers Extended Until January 15, 2026!
Good news! You still have time to upgrade to the latest version of Band-in-a-Box® for Windows® and save. Our Band-in-a-Box® 2026 for Windows® special now runs through January 15, 2025!
We've packed Band-in-a-Box® 2026 with major new features, enhancements, and an incredible lineup of new content! The program now sports a sleek, modern GUI redesign across the entire interface, including updated toolbars, refreshed windows, smoother workflows, a new dark mode option, and more. The brand-new side toolbar provides quicker access to key windows, while the new Multi-View feature lets you arrange multiple windows as layered panels without overlap, creating a flexible, clutter-free workspace. We have an amazing new “AI-Notes” feature. This transcribes polyphonic audio into MIDI so you can view it in notation or play it back as MIDI. You can process an entire track (all pitched instruments and drums) or focus on individual parts like drums, bass, guitars/piano, or vocals. There's an amazing collection of new content too, including 202 RealTracks, new RealStyles, MIDI SuperTracks, Instrumental Studies, “Songs with Vocals” Artist Performance Sets, Playable RealTracks Set 5, two RealDrums Stems sets, XPro Styles PAK 10, Xtra Styles PAK 21, and much more!
There are over 100 new features in Band-in-a-Box® 2026 for Windows®.
When you order purchase Band-in-a-Box® 2026 before 11:59 PM PST on January 15th, you'll also receive a Free Bonus PAK packed with exciting new add-ons.
Upgrade to Band-in-a-Box® 2026 for Windows® today! Check out the Band-in-a-Box® packages page for all the purchase options available.
Happy New Year!
Thank you for being part of the Band-in-a-Box® community.
Wishing you and yours a very happy 2026—Happy New Year from all of us at PG Music!
Season's Greetings!
Wishing everyone a happy, healthy holiday season—thanks for being part of our community!
The office will be closed for Christmas Day, but we will be back on Boxing Day (Dec 26th) at 6:00am PST.
Team PG
|
|
|
|
|
|
|
|
|
|
|
|
Forums57
Topics86,057
Posts799,523
Members40,024
| |
Most Online44,367
Mar 4th, 2026
|
|
|
|
|
|
|
|
|
Dansk
Deutsch - Windows
Español
Français - Windows
Italiano - Windows
Nederlands
Polski
Português
Svenskt
русский
Japanese
Simplified Chinese
Traditional Chinese
Korean