Die
Trojan-Defense-Suite TDS3 ist von Diamondcs.
Ebenfalls der
WormGuard3 .
Ein Complete Anti-Worm-System.
Für beide Programme steht eine 30Tage Testversion zur Verfügung.
Desweiteren gibt es
Patches :
Windows Scripting Host Anti-Polymorphism Patch :
What is the general purpose of this patch?
To prevent Windows Scripts (such as VBScript and Javascript) from being able to read/write themselves, making Windows Script polymorphism nearly impossible through conventional means.
WNetEnumCachedPasswords Lock Patch
Microsoft Windows installs with a file called MPR.DLL (MPR standing for Multiple Provider Route). While the functions of this DLL are generally very useful, there is one exported function that is not required and is of particular concern to the security-conscious. Existing only in Windows95/98/ME versions of mpr.dll (it was removed from Windows NT/2K for good reason), the name of this exported function is WNetEnumCachedPasswords. It is officially undocumented, but enough unofficial documentation has been created so that trojan authors can easily call this DLL from their own trojan - indeed, many popular trojans such as Sub7 have taken advantage of this API for a long time, and even the safe passdump.exe demo program that accompanies this patch uses this unofficial documentation to call the function.
A google.com search at March 12 2002 for "WNetEnumCachedPaswords" found 316 results.
What is the general purpose of this patch?
This patch effectively (and safely) prevents programs from calling the function. Very few programs actually call it (you can search your hard drive to find out which programs call it using Explorer). The patch works with a 2-prong approach, both optional -- the first: it patches the first 3 bytes of the code at the entrypoint location of the exported WNetEnumCachedPasswords function. The second: it renames the exported function name.
For Free sind ebenfalls downloadbar :
IRClean is a 100% free, standalone, compact (30kb total download), and easy-to-use yet very powerful anti-worm system designed to specifically combat worms that target or use IRC chat networks to propagate. It has been released into the public domain for free to help stem the growing tide of IRC-propagating worms.
TaskMan+ is a free tiny utility that launches Windows Task Manager in a special way as to boost the security privileges of Task Manager, which in turn gives it a real unconditional license to terminate ANY process. Requires Administrator privileges
Add more power to your command prompt with our free console tools! Freeware tools include CRC32/MD5/SHA-160 secure hashes, Password Reveal, Uptime, ICMP TraceRoute, ICMP Ping, IP list, Send Mail, HTTP Get, Resolve, XWhois and more!
Ich wollte auf keinen Fall zum Testen animieren :angel
@all : Links sind nun korrigiert - Sorry :angel