|
Log in to post
|
Print Thread |
|
|
|
|
|
Off-Topic
|
Joined: May 2003
Posts: 8,021
Veteran
|
Veteran
Joined: May 2003
Posts: 8,021 |
This is what it is/was
7/6/2009 11:24:42 AM SYSTEM 312 Sign of "JS:Pdfka-JV [Expl]" has been found in "http://microsotf.cn/img/pfqd.php" file.
It is an infected PDF file. I use Firefox with Nitro PDF tool. The minute Avast flagged this Nitor opened and asked what to do with this file.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 15,831
PG Music Staff
|
|
PG Music Staff
Joined: May 2000
Posts: 15,831 |
Yes, it looks like a line of code got injected to our web page from somewhere external on the Internet (via a vulnerability in the system that has since been fixed), that was wanting to download a PDF file. (reportedly PDF files can be malicious if you have an older version of your PDF reader) Apparently these things hunt the internet looking for specific vulnerabilities. This has been removed fron the web page, and things should be back to normal now. From a google search, if the PDF was downloaded, and managed to infect, it most likely would be delivering unwanted popup ads and possibly other things. You should do a adware/virus scan to make sure things are OK. There are many good spyware/virus programs, including free scanners (e.g. http://www.kaspersky.com/virusscanner) I apologize for this inconvenience.
Have Fun!
Peter Gannon
PG Music Inc.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 22,179
Veteran
|
|
Veteran
Joined: May 2000
Posts: 22,179 |
Thanks Peter, it's good to hear its handled
I do not work here, but the benefits are still awesome
Make your sound your own!
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Jan 2002
Posts: 10,193
Veteran
|
|
Veteran
Joined: Jan 2002
Posts: 10,193 |
Peter,
It bothers me that you have to apologize for the inconvenience, since you are doing nothing more than running your business. The people who write these things should be found, prosecuted, and then punished for the harm they cause.
While this may have not been anything other than an infected .pdf file, it may have caused loss of business, loss of time for customers, loss of revenue for customers, loss of time for your employees and such.
In a sense, these individuals are no better than the terrorists and pirates populating our world today. And, at some point, they are going to become just as deadly.
Thanks for getting it cleared up, Peter.
Gary
I'm blessed watching God do what He does best. I've had a few rough years, and I'm still not back to where I want to be, but I'm on the way and things are looking far better now than what they were!
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Dec 2003
Posts: 8,987
Veteran
|
|
Veteran
Joined: Dec 2003
Posts: 8,987 |
Quote:
In a sense, these individuals are no better than the terrorists and pirates populating our world today. And, at some point, they are going to become just as deadly.
the millions or possibly billions of dollars in lost man-hours alone probably far exceeds all other forms of 'piracy' already. to bad someone couldn't come up with a plan to root these people out then prosecute them to the fullest extent of the law. microsoft puts a bounty on their heads but i don't know how affective that has been. maybe a portion of software sales should go into a fund dedicated to exposing these 'terrorists.' the money and effort we all spend on av software would be a good start toward the fund.
just 2 cents from a victim of a trojan that put me out of business with band in a box.
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2005
Posts: 222
Apprentice
|
|
Apprentice
Joined: May 2005
Posts: 222 |
Bob,
The file that popped up when I viewed the PG home page was actually named 955.pdf. Instead of viewing it, I downloaded the file. When I opened it in the Open Office reader, it was blank. However, viewing the file in a hex editor listed more details. Probably like Peter said, it is a specially crafted pdf designed to take advantage of a Window's vulnerability.
JBlatz
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Sep 2003
Posts: 8,333
Veteran
|
|
Veteran
Joined: Sep 2003
Posts: 8,333 |
According to Adobe:
Platform: Windows XP or Windows 2003 (Vista users are not affected) with Internet Explorer 7 installed
Affected software versions: Adobe Reader 8.1 and earlier, Adobe Reader 7.0.9 and earlier
Adobe Acrobat Professional, 3D and Standard 8.1 and earlier versions, Adobe Acrobat Professional, Standard, 3D and Elements 7.0.9 and earlier
Anyone with the above are in danger of the pdf file using the mail to capacity in adobe to forward information to a 3rd party. I recall using this feature when designing test papers for the fire department, on completion of the test the answers and the users name, date, and badge number were emailed to the Training Office. I'm a little muddy as to how this works in the instance of the webpage, unless it's loading itself as a TSR type piece of software and sending information from forms to another site.
I will not use IE7, and only use that browser if forced to by Microsoft.
John Conley
Musica est vita
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 22,179
Veteran
|
|
Veteran
Joined: May 2000
Posts: 22,179 |
Strange, I thought I intentionally used the Firefox browser when I went there..
Using the form feature and mailto feature make sense to me. Anytime you fill out a form, it gets mailed to some guy in China; (think username, password type forms boxes)
Some would call that a keylogger, I certainly would, it is a selective keylogger that only mails out keystrokes entered in forms (probably secure forms). Sounds just about like Spybot decribed it. They claim it is logging any form information and sending it to a remote system. Now if they know the system it is getting sent to... seems like it would be an easy shot for the right 'forensic inspector'.
Yeah, I know, they can hijack innocent computers and use those as stoops.. but it would be a start.
I do not work here, but the benefits are still awesome
Make your sound your own!
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: Sep 2003
Posts: 8,333
Veteran
|
|
Veteran
Joined: Sep 2003
Posts: 8,333 |
I have links right to the forum, don't go to the homepage. So do you assume that if you go to order something on-line from PG's store that the info ended up going out to Tim-buck-two?
John Conley
Musica est vita
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 22,179
Veteran
|
|
Veteran
Joined: May 2000
Posts: 22,179 |
I don't assume anything
I believe PGMusic would have by design any orders going through a seperate secure server.
A secure server will be much harder to infiltrate than a basic webpage server.. although accidental infection is surely possible from admin access.
Since the forum seemed to stay safe during the issue, I believe they have the different components on seperate servers or server partitions. I don't know of any trojan that can jump partitions or domains on a server. Otherwise I would be battling about 15 infected sites right now. One of the infected sites I listed above is still infected after two months (recurring issue) and is on a server that also contains a website I administor. This is how I knew about it to begin with; the guy called us to make sure we knew about his issue and to make sure it hadn't affected our sites, since all sites he administered on that server were getting infected.
I told him it was a sign that he was the one with crap on his shoes and everytime he went in to check his sites he was smearing a little around.
We know exactly what to look for and have seen no sign on our sites.
I do not work here, but the benefits are still awesome
Make your sound your own!
|
|
|
|
|
|
|
|
|
|
|
|
|
Off-Topic
|
Joined: May 2000
Posts: 38,502
Veteran
|
|
Veteran
Joined: May 2000
Posts: 38,502 |
What rharv said.
Stay cool, no panic, no rumors please.
--Mac
|
|
|
|
|
|
|
|
|
|
|
|
Ask sales and support questions about Band-in-a-Box using natural language.
ChatPG's knowledge base includes the full Band-in-a-Box User Manual and sales information from the website.
|
|
|
|
|
|
|
|
|
|
|
New RealTracks Released with Band-in-a-Box 2025!
We’ve expanded the Band-in-a-Box® RealTracks library with 202 incredible new RealTracks (in sets 449-467) across Jazz, Blues, Funk, World, Pop, Rock, Country, Americana, and Praise & Worship—featuring your most requested styles!
Jazz, Blues & World (Sets 449–455):
These RealTracks includes “Soul Jazz” with Neil Swainson (bass), Mike Clark (drums), Charles Treadway (organ), Miles Black (piano), and Brent Mason (guitar). Enjoy “Requested ’60s” jazz, classic acoustic blues with Colin Linden, and more of our popular 2-handed piano soloing. Plus, a RealTracks first—Tango with bandoneon, recorded in Argentina!
Rock & Pop (Sets 456–461):
This collection includes Disco, slap bass ‘70s/‘80s pop, modern and ‘80s metal with Andy Wood, and a unique “Songwriter Potpourri” featuring Chinese folk instruments, piano, banjo, and more. You’ll also find a muted electric guitar style (a RealTracks first!) and “Producer Layered Guitar” styles for slick "produced" sound.
Country, Americana & Praise (Sets 462–467):
We’ve added new RealTracks across bro country, Americana, praise & worship, vintage country, and songwriter piano. Highlights include Brent Mason (electric guitar), Eddie Bayers (drums), Doug Jernigan (pedal steel), John Jarvis (piano), Glen Duncan (banjo, mandolin & fiddle), Mike Harrison (electric bass) and more—offering everything from modern sounds to heartfelt Americana styles
Check out all the 202 New RealTracks (in sets 456-467)
And, if you are looking for more, the 2025 49-PAK (for $49) includes an additional 20 RealTracks with exciting new sounds and genre-spanning styles. Enjoy RealTracks firsts like Chinese instruments (guzheng & dizi), the bandoneon in an authentic Argentine tango trio, and the classic “tic-tac” baritone guitar for vintage country.
You’ll also get slick ’80s metal guitar from Andy Wood, modern metal with guitarist Nico Santora, bass player Nick Schendzielos, and drummer Aaron Stechauner, more praise & worship, indie-folk, modern/bro country with Brent Mason, and “Songwriter Americana” with Johnny Hiland.
Plus, enjoy user-requested styles like Soul Jazz RealDrums, fast Celtic Strathspey guitar, and Chill Hop piano & drums!
The 2025 49-PAK is loaded with other great new add-ons as well. Learn more about the 2025 49-PAK!
Bonus PAKs for Band-in-a-Box 2025 for Mac!
With your version 2025 for Mac Pro, MegaPAK, UltraPAK, UltraPAK+, Audiophile Edition or PlusPAK purchase, we'll include a Bonus PAK full of great new Add-ons FREE! Or upgrade to the 2025 49-PAK for only $49 to receive even more NEW Add-ons including 20 additional RealTracks!
These PAKs are loaded with additional add-ons to supercharge your Band-in-a-Box®!
This Free Bonus PAK includes:
- The 2025 RealCombos Booster PAK:
-For Pro customers, this includes 33 new RealTracks and 65+ new RealStyles.
-For MegaPAK customers, this includes 29 new RealTracks and 45+ new RealStyles.
-For UltraPAK customers, this includes 20 new RealStyles.
- Look Ma! More MIDI 13: Country & Americana
- Instrumental Studies Set 22: 2-Hand Piano Soloing - Rhythm Changes
- MIDI SuperTracks Set 44: Jazz Piano
- Artist Performance Set 17: Songs with Vocals 7
- Playable RealTracks Set 4
- RealDrums Stems Set 7: Jazz with Mike Clark
- SynthMaster Sounds and Styles (with audio demos)
- 128 GM MIDI Patch Audio Demos.
Looking for more great add-ons, then upgrade to the 2025 49-PAK for just $49 and you'll get:
- 20 Bonus Unreleased RealTracks and RealDrums with 20 RealStyles,
- FLAC Files (lossless audio files) for the 20 Bonus Unreleased RealTracks and RealDrums
- Look Ma! More MIDI 14: SynthMaster,
- Instrumental Studies Set 23: More '80s Hard Rock Soloing,
- MIDI SuperTracks Set 45: More SynthMaster
- Artist Performance Set 18: Songs with Vocals 8
- RealDrums Stems Set 8: Pop, Funk & More with Jerry Roe
Learn more about the Bonus PAKs for Band-in-a-Box® 2025 for Mac®!
New! Xtra Styles PAK 20 for Band-in-a-Box 2025 and Higher for Mac!
Xtra Styles PAK 20 for Mac & Windows Band-in-a-Box version 2025 (and higher) is here with 200 brand new RealStyles!
We're excited to bring you our latest and greatest in the all new Xtra Styles PAK 20 for Band-in-a-Box! This fresh installment is packed with 200 all-new styles spanning the rock & pop, jazz, and country genres you've come to expect, as well as the exciting inclusion of electronic styles!
In this PAK you’ll discover: Minimalist Modern Funk, New Wave Synth Pop, Hard Bop Latin Groove, Gospel Country Shuffle, Cinematic Synthwave, '60s Motown, Funky Lo-Fi Bossa, Heavy 1980s Metal, Soft Muted 12-8 Folk, J-Pop Jazz Fusion, and many more!
All the Xtra Styles PAKs 1 - 20 are on special for only $29 each (reg $49), or get all 209 PAKs for $199 (reg $399)! Order now!
Learn more and listen to demos of the Xtra Styles PAK 20.
Video: Xtra Styles PAK 20 Overview & Styles Demos: Watch now!
Note: The Xtra Styles require the UltraPAK, UltraPAK+, or Audiophile Edition of Band-in-a-Box®. (Xtra Styles PAK 20 requires the 2025 or higher UltraPAK, UltraPAK+, or Audiophile Edition. They will not work with the Pro or MegaPAK version because they need the RealTracks from the UltraPAK, UltraPAK+, or Audiophile Edition.
New! XPro Styles PAK 9 for Band-in-a-Box 2025 and higher for Mac!
We've just released XPro Styles PAK 9 for Mac & Windows Band-in-a-Box version 2025 (and higher) with 100 brand new RealStyles, plus 29 RealTracks/RealDrums!
We've been hard at it to bring you the latest and greatest in this 9th installment of our popular XPro Styles PAK series! Included are 75 styles spanning the rock & pop, jazz, and country genres (25 styles each) that fans have come to expect, as well as 25 styles in this volume's wildcard genre: funk & R&B!
If you're itching to get a sneak peek at what's included in XPro Styles PAK 9, here is a small helping of what you can look forward to: Funky R&B Horns, Upbeat Celtic Rock, Jazz Fusion Salsa, Gentle Indie Folk, Cool '60s Soul, Funky '70s R&B, Smooth Jazz Hip Hop, Acoustic Rockabilly Swing, Funky Reggae Dub, Dreamy Retro Latin Jazz, Retro Soul-Rock Fusion, and much more!
Special Pricing! Until July 31, 2024, all the XPro Styles PAKs 1 - 9 are on sale for only $29 ea (Reg. $49 ea), or get them all in the XPro Styles PAK Bundle for only $149 (reg. $299)! Order now!
Learn more and listen to demos of XPro Styles PAKs.
Video: XPro Styles PAK 9 Overview & Styles Demos: Watch now!
XPro Styles PAKs require Band-in-a-Box® 2025 or higher and are compatible with ANY package, including the Pro, MegaPAK, UltraPAK, UltraPAK+, and Audiophile Edition.
New! Xtra Styles PAK 20 for Band-in-a-Box 2025 and Higher for Windows!
Xtra Styles PAK 20 for Windows & Mac Band-in-a-Box version 2025 (and higher) is here with 200 brand new RealStyles!
We're excited to bring you our latest and greatest in the all new Xtra Styles PAK 20 for Band-in-a-Box! This fresh installment is packed with 200 all-new styles spanning the rock & pop, jazz, and country genres you've come to expect, as well as the exciting inclusion of electronic styles!
In this PAK you’ll discover: Minimalist Modern Funk, New Wave Synth Pop, Hard Bop Latin Groove, Gospel Country Shuffle, Cinematic Synthwave, '60s Motown, Funky Lo-Fi Bossa, Heavy 1980s Metal, Soft Muted 12-8 Folk, J-Pop Jazz Fusion, and many more!
All the Xtra Styles PAKs 1 - 20 are on special for only $29 each (reg $49), or get all 209 PAKs for $199 (reg $399)! Order now!
Learn more and listen to demos of the Xtra Styles PAK 20.
Video: Xtra Styles PAK 20 Overview & Styles Demos: Watch now!
Note: The Xtra Styles require the UltraPAK, UltraPAK+, or Audiophile Edition of Band-in-a-Box®. (Xtra Styles PAK 20 requires the 2025 or higher UltraPAK, UltraPAK+, or Audiophile Edition. They will not work with the Pro or MegaPAK version because they need the RealTracks from the UltraPAK, UltraPAK+, or Audiophile Edition.
New! XPro Styles PAK 9 for Band-in-a-Box 2025 and higher for Windows!
We've just released XPro Styles PAK 9 for Windows & Mac Band-in-a-Box version 2025 (and higher) with 100 brand new RealStyles, plus 29 RealTracks/RealDrums!
We've been hard at it to bring you the latest and greatest in this 9th installment of our popular XPro Styles PAK series! Included are 75 styles spanning the rock & pop, jazz, and country genres (25 styles each) that fans have come to expect, as well as 25 styles in this volume's wildcard genre: funk & R&B!
If you're itching to get a sneak peek at what's included in XPro Styles PAK 9, here is a small helping of what you can look forward to: Funky R&B Horns, Upbeat Celtic Rock, Jazz Fusion Salsa, Gentle Indie Folk, Cool '60s Soul, Funky '70s R&B, Smooth Jazz Hip Hop, Acoustic Rockabilly Swing, Funky Reggae Dub, Dreamy Retro Latin Jazz, Retro Soul-Rock Fusion, and much more!
Special Pricing! Until July 31, 2024, all the XPro Styles PAKs 1 - 9 are on sale for only $29 ea (Reg. $49 ea), or get them all in the XPro Styles PAK Bundle for only $149 (reg. $299)! Order now!
Learn more and listen to demos of XPro Styles PAKs.
Video: XPro Styles PAK 9 Overview & Styles Demos: Watch now!
XPro Styles PAKs require Band-in-a-Box® 2025 or higher and are compatible with ANY package, including the Pro, MegaPAK, UltraPAK, UltraPAK+, and Audiophile Edition.
Video: Band-in-a-Box® 2025 for Mac®: VST3 Plugin Support
Band-in-a-Box® 2025 for Mac® now includes support for VST3 plugins, alongside VST and AU. Use them with MIDI or audio tracks for even more creative possibilities in your music production.
Band-in-a-Box® 2025 for Macs®: VST3 Plugin Support
Video: Band-in-a-Box® 2025 for Mac®: Using VST3 Plugins
Join the conversation on our forum.
|
|
|
|
|
|
|
|
|
|
|
|
Forums58
Topics84,410
Posts778,871
Members39,649
| |
Most Online25,754
Jan 24th, 2025
|
|
|
|
|
|
|
|
|
|
|
|
There are no members with birthdays on this day. |
|
|
|
|
|
|
|
|
Dansk
Deutsch - Windows
Español
Français - Windows
Italiano - Windows
Nederlands
Polski
Português
Svenskt
русский
Japanese
Simplified Chinese
Traditional Chinese
Korean