Bot detector by Trend Micro
Trend Micro has developed a bot detector and is providing a free Beta version of it for downloading. RUBotted runs in the background and monitors a computer's network activities.
Contaminants that turn a computer into a zombie and make it part of a bot network have to communicate with a control server and usually send massive amounts of spam E-mail. So RUBotted checks the computer for outgoing IRC calls, incoming HTTP requests and outgoing E-mails, and monitors DNS queries to resolve net names.
When it makes a find, RUBotted opens a small warning window and offers to run Trend Micro's HouseCall, an online virus scanner, to check the computer for malicious attacks. In a short test by heise Security using variants of the Storm worm on a Windows XP computer, things went quite well. Trend Micro says RUBotted is meant to work in conjunction with the antivirus software installed on the computer - even that from other suppliers. The program is designed to run on Windows 2000, XP, Server 2003 and 32-bit Vista.
(mba)