Detection Names :	Remoteadmin.Win32.winvnc Riskware:W32/Realvnc.A
Aliases :	potentially unwanted program RemAdm-VNCView (McAfee) RemoteAccess:Win32/RealVNC (Microsoft)
Category:	Riskware
Type:	Application
Platform:	W32

A legitimate application that may introduce additional security risks or be used for malicious purposes.

If the user is aware of the security risks involved and wishes to proceed with installing and using this program, there is no reason not to do so.

The user may then elect to exclude (whitelist) the application's folder from subsequent scanning.

Note

For instructions on excluding files from scanning, please see:

Product documentation for various versions of F-Secure products are available on the Documentation section of the website.

Application:W32/WinVNC is a remote administration utility program for use in observing or administering a remote machine.

Though legal, usage of this program may be considered unlawful in certain jurisdictions, if it is used to manipulate a computer without the knowledge and/or authorization of the machine's primary user.

Installation

Like backdoor programs, WinVNC comprises of two components: a server and a client. To control a remote computer, the server component must be installed on the targeted machine. This may or may not be done with the authorization of the computer's primary user.

Once the server component is installed on the targeted machine, an authorized administrator (or attacker) can use the client component to communicate with it, and in turn observe and control the computer.

Note: an icon may be displayed on the computer to indicate the presence of the server component; the icon may however be disabled.