Backdoor.Small.uc Description

Backdoor.Small.uc is a malicious backdoor infection that may be installed onto a computer via security exploits or through additional malware, in most cases without the user's informed consent . Once active on the system, Backdoor.Win32.Small.uc opens a remote link to an outside attacker, leaving personal and financial data information vulnerable and exposed. This can lead to identity theft.

Aliases: Crypt.ABQH [AVG], W32/Krap.HY!tr [Fortinet], Win-Trojan/Downloader.109568.DQ [AhnLab-V3], Packed/Win32.Krap.gen [Antiy-AVL], Packed.Krap.dljq, Troj/FakeAV-BWR [Sophos], TR/Agent.HY.363 [AntiVir], Trojan.Siggen2.6826 [DrWeb], Trojan:W32/Agent.DPWI [F-Secure], Packed.Win32.Krap.hy [Kaspersky], Win32:FakeAlert-RO [Avast], TROJ_FAKELRT.SMT, Trojan.Gen [Symantec], a variant of Win32/Kryptik.HUN [NOD32] and Trojan.Cycbot.Gen!Pac.

Technical Information

File System Details

Backdoor.Small.uc creates the following file(s):
# File Name Size MD5 Detection Count
1 %TEMP%asrkn_pfu.exe 261,120 ee0739ab72754dd037f61622957211c1 388
2 %TEMP%MSWINSCK.exe 260,096 9961c1355fb91064bfbf58bf1e5d0135 156
3 %APPDATA%\Microsoft\svchost.exe 106,496 00bc7d37bf59f9cdcfb6bb0156c1f0b9 51
4 %APPDATA%\Microsoft\Internet Explorer\ccso.exe 105,984 85999bf41319196ae560f0940c511719 12
5 %USERPROFILE%\My Documents\InstallAVg_77024201.exe 167,936 ce876d05dfd2a21a5fbf94a4f2a0abc1 5
6 1203.exe 94,212 e53a04fd1101da398a82a66468fdef5e 0
7 install[1].exe 271,360 5a6efa8257ac5eb56602a59970b30128 0
8 userload.exe 32,256 eebeca4b42bdc8100c2b7f8450397206 0
9 04qjhqul.exe 73,216 4d1257169b318ad39d124a79a9deb272 0
10 iehost.dll 19,968 882e1cd1f36e2363da8d89029c3a43dc 0
11 systeminit.exe 46,592 59f237962b3f6158302e5804ada92033 0
12 qKLnBCSm.exe 81,931 177b6e52f611e439639adc3626fb16ac 0
13 winqcp32.dll 33,280 8d5eeb7aab9abde469921e22f28db633 0
14 IUpd721.exe 403,968 0d986a72c4f942cbc8143e0c823a4105 0
15 ckds16.dll 33,792 132b6b837e51cfa002be63c6844e4253 0
16 sxmg4.dll 33,792 d6fdc0f17947e9d78e9aea2dbc3c9e81 0
17 11011[1].exe 60,928 4e3879c00f2d25065b61de67fe367d54 0
18 CLADD 28,672 e147186b38424ff337ad33306efe0344 0
19 cftmon.exe 17,408 606ed6691d9403398347469068f97bed 0
20 14381.exe 100,356 1ff0ea5589804b526f6c88f3fb224afa 0
21 winupdate86.exe 19,968 c28a53fd88d43fcc6502daff1f1e8e0f 0
22 winvsnet.exe 276,480 67b5f9ccc33d85fdb260b361fa616bd3 0
23 ao09wnbc.exe 360,960 e696991b72e923a3621d2824e199ad2c 0
24 winlogon32.exe 25,600 ebe3bbd4ce1bf9a76211d5e3552351ab 0
25 smss32.exe 20,992 a6627f223d06dfdce8e9302538167e7c 0
26 fmkgesng.exe 123,904 9ff3338737597c2c53a4eda4427aaecb 0
More files

Site Disclaimer is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.

HTML is not allowed.