Technorati
Digg
Delicious
Reddit
StumbleUpon
Facebook
Yahoo
Twitter
Faves
Newsvine
- Discovered:
- July 28, 2004
- Updated:
- February 13, 2007 12:25:54 PM
- Type:
- Trojan Horse
- Systems Affected:
- Windows 2000, Windows 98, Windows Me, Windows NT, Windows XP
Backdoor.Futh is a backdoor Trojan horse that allows unauthorized remote access. By default, Backdoor.Futh listens on TCP ports 7896 and 7897.
Re-enabling registry access
If registry access has been disabled, do the following:
- Click Start > Run.
- Type:
Notepad
and then click OK.
- Type, or copy and paste, the following text into the text file:
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableRegistryTools"=dword:00000000
[HKEY_CURRENT_USER\Software\Microsoft\WindowsNT\CurrentVersion\Policies\System]
"DisableRegistryTools"=dword:00000000
- Save the file as C:\Repair.reg.
- Click Start > Run.
- Type:
regedit -s C:\repair.reg
and then click OK.
- Follow the steps in Section 4, "To delete the value from the registry."
Antivirus Protection Dates
- Initial Rapid Release version July 29, 2004
- Latest Rapid Release version September 28, 2010 revision 054
- Initial Daily Certified version July 29, 2004
- Latest Daily Certified version September 28, 2010 revision 036
- Initial Weekly Certified release date August 4, 2004
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
- Wild Level: Low
- Number of Infections: 0 - 49
- Number of Sites: 0 - 2
- Geographical Distribution: Low
- Threat Containment: Easy
- Removal: Easy
Damage
- Damage Level: Low
Distribution
- Distribution Level: Low
Writeup By: John Park
