Win32.Knokk Trojan

Title: Win32.Knokk

Also Known as: Win32.Knokk, Win32Knokk, Knokk

Severity scale: 76 (76 / 100)

Win32.Knokk is known to be a dangerous backdoor Trojan program. It is comprised of 65033 bytes, is written in C + + and is packed using UPX. Once it has infiltrated, it will copy itself into this directory: % System% \ explore.exe. The program will wait for directions from its author. The author who is actually a hacker will send the program instructions on e-mail addresses of sites that he wants him to connect to.

Download Win32.Knokk Remover

AKA:
Backdoor.Win32.Knokk.bo
Win32.Knokk.az
Win32.Knokk.cw
Win32.Knokk.bm
Win32.Knokk.66560
Win32.Knokk.j
Win32.Knokk.br
Win32.Knokk.bq
Trojan.Win32.Agent.cvif
Trojan: Generic.dx! Ijs
Mal / Generic-A
Heuristic.WinPE-Statistical
W32/Downldr2.GJAY
Trojan.DownLoad.41045
Win32/Knock.AA trojan
Trojan.Generic.2714691
BKDR_KNOCK.A

Category:
Backdoor Trojan

Recommended Action:
Remove at once.

For manual removal, you must follow these steps:
Delete the original file (its location depends on how the program originally penetrated your machine).

Change the key value Registry:
[HKLM \ software \ microsoft \ windows nt \ currentversion \ winlogon] “Shell” = “Explorer.exe”% System% \ explore.exe “” -> “Explorer.exe”

Delete this file
% System% \ explore.exe
For a stronger and more secure removal, you can use SpyZooka. SpyZooka eliminates the need for hours of monotonous searching and removal. SpyZooka does all the hard work for you. With all features automated, all you need to do is click to run the scan and then SpyZooka will do the rest.

Download Win32.Knokk Remover

One Response to “Win32.Knokk Trojan”

Noah Carter says:

October 28, 2010 at 4:08 pm

Thanks for the article. I got this Win32.Knokk and I was able to delete the file using Spyzooka without the risk of infecting all my pc.

Yes Scan My PcFor FREE!

Recent News

VirusShield Removal

For easy automatic removal of Virus Shield we recommend Downloading SpyZooka which is confirmed to remove this spyware threat. Download Virus Shield Remover VirusShield Manual Removal Directions VirusShield AKA Virus Shield Category: Rogue Antispyware To manually remove Virus Shield you must follow these directions. 1. Create a backup of your PC 2 Remove the following [...]
SpyZooka Introduces APC Protect Software Removal

SpyZooka helps protect computers against APC Protect. APC Protect is a rogue security application. The name is intended to inspire confidence however the program itself is a scam. The set-up is intended to mimic legitimate computer protection programs. SpyZooka now offers a free computer scan and downloadable software to remove APC Protect. Once APC Protect [...]
SpyZooka Blasts PcsProtector

Summary: PcsProtector is the latest malware to be destroyed by SpyZooka. PcsProtector can be acquired by a computer when video codecs are installed from suspicious websites to watch online movies. This rogue antispyware program uses Trojans to infiltrate PCs with disastrous results. SpyZooka’s new software removes PcsProtector and keeps computers safe during future usage. Pcs [...]
SpyZooka Warns Computer Owners of Total PC Defender Scam

SUMMARY: SpyZooka warns of rogue software that tricks computer owners into thinking their computer has security problems. Total PC Defender mimics actual spyware and is a fake program that won’t remove viruses from computers. Sequim, WA – If you have a computer that suddenly shows windows filled with warnings of security problems and the urgent [...]

Yes Scan My PcFor FREE!