KNYXI.EXE is Worm Palevo

The file KNYXI.EXE is a computer worm.
The worm KNYXI.EXE is a self-replicating malicious program,
which uses a computer network to send copies of itself to other computers.
You must fix the KNYXI.EXE problem as soon as possible!
Delete the file KNYXI.EXE from all infected computers in your network.
Set up your network firewall against KNYXI.EXE intervention.

Malware Analysis of KNYXI.EXE
Full path on a computer: %UserProfile%\knyxi.exe

Detected by RegRun Warrior:

KNYXI.EXE
Default location: %UserProfile%\knyxi.exe

Removal Results: Success
Number of reboot: 1

KNYXI.EXE is known as:

Worm.Palevo, Trojan.Rimecud, TrojWare.Kryptik

KNYXI.EXE hash:

  • MD5: b539100c2e4875a0dec51b9dbf5e9ce1
How to quickly detect KNYXI.EXE presence?

Registry:
  • HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Taskman = “%UserProfile%\knyxi.exe”
Files:
  • %UserProfile%\knyxi.exe

Fix it immediately!

Free Download

UnHackMe removes malware invisible for your antivirus!

Leave a Reply