Darkman wrote:
I let my norton expire for a few days, and noiced in my event viewer
anumber of connections to VNC from various other countries. however I
didn't notice the icon turning black as it would in a conneciton mode.
so I was wondering if I am being connected to, via some trojan. I did a
scan today after updating norton and found one trojan and one or two
other website deposited remote access files....
anyone ever see conneciton instances in their event logs?
----- Original Message ----- From: "Dave Dyer" <[EMAIL PROTECTED]>
To: <[email protected]>
Sent: Monday, June 05, 2006 3:37 PM
Subject: Re: vnc security flaw?
Last night, while inactive and unattended, my machine picked
up a trojan of the "firefly" family of remote control trojans.
http://www.sophos.com/virusinfo/analyses/trojfireflyb.html
Since the trojan's init file contained my vnc server password, I
suspect that
vnc was somehow related to the event. I was running 4.1.1 free edition.
Both of you need to keep up on your software -- a new version was
recently released to solve severe security flaw in the v4.x line. The
trojans you got obviously exploited this flaw.
_______________________________________________
VNC-List mailing list
[email protected]
To remove yourself from the list visit:
http://www.realvnc.com/mailman/listinfo/vnc-list
