Should I block it?

98%
Yes, 98% block recommendation.
Possible reasons:
Multiple malware detections
Performance resource utilization

VersionsAdditional versions

1.3.334.331 (Build 334.331) 25.00%
1.3.334.331 (Build 334.331) 25.00%
1.3.333.310 (Build 333.310) 25.00%
1.3.333.307 (Build 333.307) 25.00%

Relationships

PE structurePE file structure
Show functions
Import table
advapi32.dll
RegCloseKey, RegSetValueExA, RegEnumKeyA, DeleteService, SetFileSecurityA, GetSidSubAuthorityCount, GetTokenInformation, SetTokenInformation, RegSetKeySecurity, SetSecurityInfo, CreateProcessAsUserA, DuplicateTokenEx, RegCreateKeyA, AdjustTokenPrivileges, LookupPrivilegeValueA, OpenProcessToken, SetNamedSecurityInfoA, FreeSid, AllocateAndInitializeSid, SetNamedSecurityInfoW, GetAclInformation, AddAce, MakeAbsoluteSD, GetSecurityDescriptorControl, GetSecurityDescriptorLength, MakeSelfRelativeSD, GetSecurityDescriptorSacl, GetSecurityDescriptorDacl, GetSecurityDescriptorGroup, GetSidLengthRequired, InitializeSid, GetSidSubAuthority, CopySid, GetLengthSid, IsValidSid, RegDeleteValueA, RegNotifyChangeKeyValue, RegEnumKeyExA, SetSecurityDescriptorDacl, RegOpenKeyExA, InitializeSecurityDescriptor, RegEnumValueA, GetUserNameA, RegCreateKeyExA, RegQueryValueExA, RegDeleteKeyA, RegOpenKeyA, AddAccessAllowedAce, InitializeAcl, SetSecurityDescriptorOwner, SetSecurityDescriptorGroup, GetSecurityDescriptorOwner
comctl32.dll
ImageList_LoadImageA
comdlg32.dll
GetSaveFileNameA, FindTextA
dnsapi.dll
DnsRecordListFree, DnsQuery_A
gdi32.dll
GetObjectA, CreateSolidBrush, GetDIBits, BitBlt, CreateCompatibleBitmap, SetTextColor, SetBkMode, SelectObject, CreateDIBSection, CreateCompatibleDC, DeleteDC, GetStockObject, DeleteObject, GetDeviceCaps, CreateFontA
iphlpapi.dll
GetIpForwardTable, GetAdaptersInfo, GetNetworkParams, GetAdaptersAddresses
kernel32.dll
DllMain
ole32.dll
CoUninitialize, CoCreateInstance, OleRun, CoCreateGuid, StringFromGUID2, CreateStreamOnHGlobal, CoInitialize, CoGetMarshalSizeMax, CoInitializeEx, GetHGlobalFromStream, CoSetProxyBlanket, CLSIDFromProgID, CoTaskMemAlloc, CoGetClassObject, OleLockRunning, CLSIDFromString, OleInitialize, CoTaskMemFree, OleUninitialize, CoMarshalInterface
oleacc.dll
AccessibleObjectFromPoint
rpcrt4.dll
UuidCreate, UuidCompare
setupapi.dll
SetupDiCreateDeviceInfoList, SetupDiOpenDeviceInfoA, SetupDiGetDeviceRegistryPropertyA, SetupDiDestroyDeviceInfoList, SetupDiGetClassDevsA, SetupDiEnumDeviceInfo, SetupDiGetDeviceInstanceIdA, SetupDiEnumDeviceInterfaces, SetupDiGetDeviceInterfaceDetailA
shell32.dll
SHGetFolderPathA, SHGetSpecialFolderPathA, SHGetSpecialFolderPathW, ShellExecuteA, Shell_NotifyIconA
shlwapi.dll
SHCopyKeyA
user32.dll
UpdateLayeredWindow, KillTimer, SetTimer, GetClientRect, GetDesktopWindow, ReleaseDC, GetDC, InsertMenuItemA, CreatePopupMenu, LoadImageA, TrackPopupMenu, GetCursorPos, DestroyMenu, DestroyIcon, FindWindowA, IsWindow, GetWindowRect, SetWindowTextA, PeekMessageA, UpdateWindow, MsgWaitForMultipleObjects, DestroyWindow, SendMessageA, SetWindowLongA, GetWindowLongA, CreateWindowExA, TranslateMessage, RegisterClassExA, LoadCursorA, LoadIconA, PostMessageA, IsDialogMessageA, SetDlgItemTextA, LoadAcceleratorsA, ShowWindow, RegisterWindowMessageA, CallWindowProcA, DefWindowProcA, GetMenu, DrawTextA, SetForegroundWindow, SetFocus, SetActiveWindow, MoveWindow, PostQuitMessage, GetWindowThreadProcessId, PostThreadMessageA, DispatchMessageA, GetMessageA, MessageBoxA, wsprintfA, UnhookWindowsHookEx, InvalidateRect, MsgWaitForMultipleObjectsEx, IsWindowVisible, EnumWindows, ClientToScreen, SetWindowsHookExA, SetWindowPos, FlashWindowEx, DestroyAcceleratorTable, ScreenToClient, GetFocus, GetClassInfoExA, UnregisterDeviceNotification, RegisterDeviceNotificationA, CreateDialogParamA, RemoveMenu, GetSubMenu, LoadMenuA, EnableWindow, ExitWindowsEx, SetClassLongA, GetSystemMetrics, GetDlgItem, SetCapture, CallNextHookEx, GetParent, ReleaseCapture, IsChild, GetWindowTextLengthA, RedrawWindow, GetWindowTextA, GetSysColor, CreateAcceleratorTableA, GetWindow, SystemParametersInfoA, InvalidateRgn, GetClassNameA, CharNextA, EndPaint, EndDialog, CheckMenuItem, UnregisterClassA, RegisterClassA, IsWindowEnabled, SetDlgItemInt, EnumChildWindows, LoadStringA, FillRect, TranslateAcceleratorA, BeginPaint
version.dll
GetFileVersionInfoA, GetFileVersionInfoSizeA, VerQueryValueA
wininet.dll
HttpSendRequestA, InternetQueryOptionA, HttpQueryInfoA, InternetSetOptionA, DeleteUrlCacheEntry, HttpOpenRequestA, RetrieveUrlCacheEntryStreamA, ReadUrlCacheEntryStream, UnlockUrlCacheEntryStream, InternetConnectA, InternetCloseHandle, InternetOpenUrlA, InternetOpenA, InternetGetConnectedState, InternetReadFile
winmm.dll
joyGetNumDevs, waveOutGetNumDevs, auxGetNumDevs, mixerGetNumDevs, midiOutGetNumDevs, midiInGetNumDevs, waveInGetNumDevs
winspool.drv
EnumPrintersA
ws2_32.dll
WSAWaitForMultipleEvents, WSACloseEvent, WSAEnumNetworkEvents, WSACreateEvent, WSAEventSelect

rlvknlg.exe

Relevant-Knowledge by TMRG (Signed)

Remove rlvknlg.exe
Version:   1.3.333.307 (Build 333.307)
MD5:   9bb4f16f4263887ac0380e60ede92410
SHA1:   5c3de910526ab68ae4a0198e546ede43c0e0ed8d
SHA256:   85ba5aaace8186795dee52e69c3d785364b7b7672ecf4f6154f43ce16f1aef31
Warning 18 antivirus scanners has detected malware.

What is rlvknlg.exe?

Relevant-Knowledge maintains a group of users who have monitoring software (with brands including PermissionResearch, OpinionSquare and VoiceFive Networks) installed on their PCs in exchange for joining the Relevant-Knowledge research panels, users are presented with various benefits, including computer security software, Internet data storage, virus scanning and chances to win cash or prizes.

About rlvknlg.exe (from TMRG)

RelevantKnowledge is part of an online market research community with over 2 million members worldwide. RelevantKnowledge relies on its members to gain valuable insight into Internet trends and behavi

DetailsDetails

File name:rlvknlg.exe
Publisher:TMRG, Inc.
Product name:Relevant-Knowledge
Typical file path:C:\Program Files\relevantknowledge\rlvknlg.exe
File version:1.3.333.307 (Build 333.307)
Size:2.83 MB (2,972,688 bytes)
Certificate
Issued to:TMRG
Authority (CA):Thawte
Expiration date:Wednesday, December 1, 2556
Digital DNA
File packed:No
.NET CLR:No
More details

BehaviorsBehaviors

Windows firewall allowed programs
Exceptions allow programs to access to the Internet through an outbound connections
  • Firewall exception for 'C:\Program Files\RelevantKnowledge\rlvknlg.exe'
Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'RelevantKnowledge' → C:\Program Files\relevantknowledge\rlvknlg.exe -boot

MalwareMalware detections

Based on 40+ industry antivirus scanners, 18 of them detected the following malware.
Antivirus engineEngine versionDetection
Avira AntiVir 7.11.47.62 ADWARE/Adware.Gen
avast! 6.0.1289.0 Win32:Relevant-Z [PUP]
AVG 2014.0.3629 RelevantKnowledge
BitDefender 7.2 Adware.Relevant.BT
Comodo Internet Security 13951 UnclassifiedMalware
Dr.Web 7.0.4.09250 Trojan.Siggen4.1458
Emsisoft Anti-Malware 3.0.0.567 Riskware.Win32.RelevantKnowledge.AMN (A)
ESET NOD32 7.7615 a variant of Win32/Adware.RK.AE
F-Prot v6.4.6.5.141 W32/Relevant.A.gen!Eldorado
F-Secure 9.0.17090.0 Adware.Relevant.BT
G Data 13.4.22 Adware.Relevant.BT
K7 AntiVirus 9.153.7762 Riskware
eScan by MicroWorld 12.0.250.0 Adware.Relevant.BT
Norman 6.08.06 W32/RelevantKnowledge.YR
nProtect 2012-10-22.01 Adware.Relevant.BT
Sophos 4.81.0 Generic Proxy-OSS Application
SUPERAntiSpyware 5.6.0.1008 Spyware.RelevantKnowledge
VIPRE Antivirus 13652 Adware.Win32.RelevantKnowledge.a (v)

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Microsoft Windows XP 75.00%
Windows 7 Ultimate 25.00%

Distribution by countryDistribution by country

United States installs about 33.33% of Relevant-Knowledge.
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE