Network Security Software Bothunter
Bot networks are still a huge threat on the Internet. They are usually established with the use of computer worms that exploit old and new security vulnerabilities, trojans, and other malicious software.
A network security software like Bothunter can be helpful in determining if a computer network has been compromised. It does so by analyzing network connections on the local network to determine if bots are at work.
The software has been designed to discover communication patterns that are typical for malware infected computers. While Bothunter has been designed as a network security software that can analyze the traffic of the network, it can also be used to analyze a single computer or basic home network.
Bothunter is supplied as a Linux or Windows version. The Linux version comes as a installation but also in form of a live CD that can be used from any computer that is capable of booting from CD and compatible with Ubuntu Linux.
Bothunter needs some configuration in the beginning. Most home users will only need to enter the local network IP which they can discover this way:
Click the Windows desktop Start Menu, Control Panel, Network Connections. Find the local area connection that is "Connected". Double click the connected network icon. Click the Support Tab. Your IP address will be listed.
Optional data like the IP address of SMTP servers or DNS servers can be entered if they are used in the computer network. Home users usually leave these information blank. The only other information needed is the network adapter that should be used to scan and analyse the computer network.
Once that is done the network security software will scan the computer network in two minute intervals and display any potential bot infection in the interface.
Update: The Bothunter website is no longer available.For now, it is best to use a program like Malwarebytes Anti-Malware to scan a PC for malicious software.
A different approach to detect bots is easy to use tools like Winternals TCPView Pro.