Secure your PC from Internet browsing risks

Dell Kace Secure Browser is a firefox based browser from Dell. It runs in a sandbox on your system and prevents any malicious changes to your Windows operating system. When using the Secure Browser any changes or malicious files inadvertently downloaded from the Internet are contained within the secure browser, keeping the underlying OS and computer secure from hostile changes. Any changes resulting from browser activity may be quickly and easily reset to effectively “undo” such changes and return it to its initially installed state. This makes it much easier to clean a system and bring the user back to full productivity.

Learn more about it, and download at http://www.kace.com/products/freetools/secure-browser/

Download now, its free.

Remove Downadup/Conficker/Kido Worm from your PC

Conficker worm is the most widespread worm in today's date. It has been making news since last few weeks.
This worm is one of the most deadly worm which attacks your network and modify your system settings. It gets launched automatically at system startup and stays in memory in stealth mode to prevent its detection. It spreads itself through pen drives, network holes and it also features a method of cracking administrator password.
Almost all the antivirus vendors have released separate tools to remove the worm. These standalone programs do not require any installation. Just download, unzip/extract if required and then run on the infected PC.

There are lot of tools available on web which can remove various versions of Conficker aka Downadup aka Kido worm.

Some Conficker Removal or Deletion tools are as follows:
1. Avert Stinger Standalone tool from McAfee
2. F-Secure Worm:W32/Downadup.AL Removal Tool from F-Secure
3. Symantec W32.Downadup Removal Tool from Symantec
4. Conficker Single PC Removal Tool from Bitdefender
5. Conficker Network Removal Tool from Bitdefender

You can download any of the above tools to remove conficker or downadup or kiddo virus from your computer safely. Leave a comment if none to the above tools works for you.

Blackmail ransomware returns with 1024-bit encryption key

Virus analysts at Kaspersky Lab intercepted a new variant of Gpcode, a malicious virus that encrypts important files on an infected desktop and demands payment for a key to recover the data.

The biggest change in this variant of the ransomeware is the use of RSA encryption algorithm with a 1024-bit key, making it impossible to crack without without the author’s key. Here’s the explanation:

We recently started getting reports from infected victims, analysed a sample, and added detection for Gpcode.ak to our antivirus databases yesterday, on June 4th. However, although we detect the virus itself, we can’t currently decrypt files encrypted by Gpcode.ak – the RSA encryption implemented in the malware uses a very strong, 1024 bit key.

The RSA encryption algorithm uses two keys: a public key and a private key. Messages can be encrypted using the public key, but can only be decrypted using the private key. And this is how Gpcode works: it encrypts files on victim machines using the public key which is coded into its body. Once encrypted, files can only be decrypted by someone who has the private key – in this case, the author or the owner of the malicious program.

After Gpcode encrypts files on the victim machine, it adds ._CRYPT to the extension of the encrypted files and places a text file named !_READ_ME_!.txt in the same folder. In the text file the criminal tells the victims that the file has been encrypted and offers to sell them a “decryptor”:

«Your files are encrypted with RSA-1024 algorithm.

To recovery your files you need to buy our decryptor.

To buy decrypting tool contact us at: ********@yahoo.com»

There are three Yahoo e-mail addresses associated with the new version of the ransomware.

Sneaky Blackmailing Virus That Encrypts Data

"Kaspersky Lab found a new variant of Gpcode which encrypts files with various extensions using an RSA encryption algorithm with a 1024-bit key. After Gpcode.ak encrypts files on the victim machine, it changes the extension of these files to ._CRYPT and places a text file named !_READ_ME_!.txt in the same folder. In the text file the criminal tells the victims that the file has been encrypted and offers to sell them a decryptor. Is this a look into the future where the majority of malware will function based on extortion?"