diff --git a/README.md b/README.md
index 81d2d76..6748395 100644
--- a/README.md
+++ b/README.md
@@ -1,6 +1,6 @@
 # Hampi Utilities
 
-VERSION 20191218
+VERSION 20200310
 
 This is a collection of utilities for the Hampi image.  These scripts will only work on the Hampi image.   
 Some scripts are specific to the [Nexus DR-X](http://wb7fhc.com/nexus-dr-x.html) board.
@@ -35,6 +35,8 @@ Some scripts are specific to the [Nexus DR-X](http://wb7fhc.com/nexus-dr-x.html)
 
 [fsq_search.sh](#fsq-search-script)
 
+[vnc-server-activity.sh](vnc-server-activity-script)
+
 
 ## Installation
 
@@ -201,4 +203,17 @@ For usage information, run this command in the Terminal:
 
 	fsq_search.sh -h
 	
+## VNC Server Activity script
+
+This script extracts Connection events for VNC server activity occuring in the past 24 hours and emails results via [patmail.sh](#patmail-script) and pat.
+
+- Prerequisites
+	- pat and [patmail.sh](#patmail-script) must be installed.  
+	- pat must be configured. 
+
+Before running the script, you must specify the recipient's email address(es) by editing the script.  The destination email addresses are assigned to the `MAILTO` variable.
+
+You can execute this script automatically via cron.  The following example will run it once per day and report on the previous 24-hour's VNC connections.  This example will run at 3 minutes after midnight every day:
+
+	3 0 * * *   /usr/local/bin/vnc-server-activity.sh 2>&1 >/dev/null
 
diff --git a/vnc-server-activity.sh b/vnc-server-activity.sh
new file mode 100644
index 0000000..9aa17c7
--- /dev/null
+++ b/vnc-server-activity.sh
@@ -0,0 +1,53 @@
+#!/bin/bash
+
+# Extracts Connection events for VNC server activity occuring in the past 24 hours
+# and emails results via patmail.sh and pat
+
+VERSION="1.0.3"
+
+# Pat and patmail.sh must be installed.  If they are not, exit.
+command -v pat >/dev/null 2>&1 || exit 1
+command -v patmail.sh >/dev/null 2>&1 || exit 1
+
+declare -i AGE=24 # Specify Age in hours.  Events older than AGE will not be included.
+FILES="/var/log/user.log*"
+# Mail VNC Server login activity for last 24 hours.
+# MAILTO can contain multiple destination email addresses.  Separate addresses with a
+# comma.
+MAILTO="w7ecg.wecg@gmail.com"
+FILTERED="$(mktemp)"
+OUTFILE="$(mktemp)"
+grep -h Connections $FILES 2>/dev/null 1>$FILTERED
+NOW="$(date +'%s')"
+if [ -s $FILTERED ]
+then 
+	while IFS= read -r LINE
+	do
+		D="${LINE%% $HOSTNAME*}" # Extract date from log message
+		E="$(date --date="$D" +'%s')" # Convert date to epoch
+      if [ $E -gt $NOW ]
+		then # Now in new year.  (Log messages don't include year, so it's a problem going from December to January.)
+		   # Account for leap years
+		   date -d $(date +%Y)-02-29 >/dev/null 2>&1 && SEC_IN_YEAR=$((60 * 60 * 24 * 366)) || SEC_IN_YEAR=$((60 * 60 * 24 * 365))
+		   # Make it December again ;)
+			E=$(( $E - $SEC_IN_YEAR ))
+		fi
+		let DIFF=$NOW-$E
+		if [ $DIFF -le $(($AGE * 3600)) ] # Print events <= AGE hours old
+		then # Print selected fields only
+      	echo "$LINE" | tr -s ' ' | cut -d' ' -f1,2,3,7- >> $OUTFILE
+		fi
+	done < $FILTERED
+fi
+[ -s $OUTFILE ] || echo "No VNC Server activity." > $OUTFILE
+#{
+#   echo To: $MAILTO
+#   echo From: $MAILFROM
+#   echo Subject: $HOSTNAME VNC Server activity for 24 hours preceding `date`
+#   echo 
+#   cat $OUTFILE
+#} | /usr/sbin/ssmtp $MAILTO
+
+cat $OUTFILE | sort | uniq | /usr/local/bin/patmail.sh $MAILTO "$HOSTNAME VNC Server activity for 24 hours preceding `date`" telnet
+rm $OUTFILE
+rm $FILTERED