Solved

EvilVNC Beta

Posted on 2006-11-06
5
612 Views
Last Modified: 2013-11-15
I recently received a hit during a scan on my system for EvilVNC.  It appears that there is very little information available on this RAT.  I keep my systems locked down pretty tight and have all security software updating religiously.  Does anyone have any idea how it is distributing itself?  I do use UltraVNC, but I have its scope limited to local network.  Any ideas?

Thanks.
0
Comment
Question by:Hawk5471
  • 2
5 Comments
 
LVL 27

Accepted Solution

by:
David-Howard earned 50 total points
ID: 17885584
This software states that it detects and removes EvilVNC.
http://labs.paretologic.com/spyware.aspx?remove=EvilVNC%20beta
:-)
David
0
 

Author Comment

by:Hawk5471
ID: 17885647
I guess I should have mentioned that Xoftspy was the software I used to find it and remove it.  I'm just trying to find out where it came from and what is the weak link on my system that allowed it to get there in the first place so that I can be sure to fix it!  Thanks for the quick reply.

Al
0
 
LVL 27

Expert Comment

by:David-Howard
ID: 17885967
Oh...That's going to be very hard to track down. As you know it could have gained system entry from just about any site. Chat programs are even under attack now. :-)
David
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
The viewer will learn how to successfully download and install the SARDU utility on Windows 7, without downloading adware.
An overview on how to enroll an hourly employee into the employee database and how to give them access into the clock in terminal.

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now