How to Remove “convlog.exe”

What is convlog.exe?


Originally developed by Microsoft Corporation, convlog.exe is a legitimate file process and also called as  IIS Log File Conversion Utility that is associated with software Internet Information Services.  It is located in C:\Program Files by default.

convlog.exe virus is created when malware authors write virus files and name them after convlog.exe with an aim to spread virus on the internet.

Affected Platform: Windows OS


How to check if your computer is infected with convlog.exe malware?


If your system is affected by convlog.exe malware, you will notice one or the several below symptoms:

  • convlog.exe occupies an unusually large CPU memory
  • Erratic internet connection
  • Your browser is bombarded with annoying popup ads
  • Computer screen freezes
  • PC's processing speed suffers
  • You are redirected to unknown websites

To pinpoint the virus file location, take the following steps:

Step 1: Press CTRL+ALT+DEL keys at once to open Task Manager.

Step 2: If you notice the file located outside C:\Program Files you should run an antivirus scan to get rid of the malware.

How to remove convlog.exe malware from system using Comodo Cleaning Essentials?

You can either choose to remove convlog.exe and other malwares using Comodo Antivirus, or Comodo Cleaning Essentials (CCE) – both of which are absolutely free to download! CCE is a set of computer security tools designed to help you identify and remove malwares and unsafe processes from an infected computer.

To remove malwares using CCE, take the following steps:

1. Check the system requirements and download the feature-rich CCE suite for free.

2. After installation, choose the type of scan you want to perform. CCE offers 3 scan options to get rid of malwares from a PC:

  • ​Smart Scan: Does a scan on critical areas of your system.
  • Full Scan: Does a complete scan of your system.
  • Custom Scan: Does a scan only on selected items.

The process to initiate the above mentioned scans are self-explanatory and thus, easy-to-use. 
Additionally, it's recommended that you approve of any updates that the CCE will prompt you about to ensure it does a better job of identifying all the latest threats.

3. Click 'Next' to view the results.
Regardless of the type of scan you choose, the results will sometimes show false positive (flagging files that are actually safe), which has to be ignored. Only select the files you want to get rid of.

4. Click 'Apply' to apply the selected operations to the threats. The selected operations will be applied.

10

Malware Entries

First Seen: 05 May 2012 at 3:02 pm
No. Company File Type SHA1 MD5 Malware
Name
Digitally
Signed
File
Version
Product
Version
Submitted
From
Malware Behavior
1 Корпорация Майкрософт (Microsoft Corp.) Executable a8bd397e61fab2ee
933ac59f4c6b56c9
030a0b98
21740604b7cbc469
74dba1505767935e
Virus.Win32.
Expiro.win
No 6.0.2600.0
(xpclient.
010817-114
8)
6.0.2600.0 Russian Federation N/A
2 Microsoft Corporation Executable 85c4591a631539ea
fe47be6dd244ef5d
e7e1996c
d9c9a764d73f0fd6
dd98057ac5955544
Virus.Win32.
Sality.gen
No 6.0.2600.0
(xpclient.
010817-114
8)
6.0.2600.0 Vietnam N/A
3 Microsoft Corporation Executable 4bfdbdb27fe2c352
764a179f85eaacd2
91f2de51
9864e3581c71a2c3
9d0965603a2e9e9b
P2PWorm.Win3
2.Polip.A
No 6.0.2600.0
(xpclient.
010817-114
8)
6.0.2600.0 Vietnam N/A
4 Microsoft Corporation Executable 710d7ab0bb76827d
274abdfd305283cf
d31760d0
00f1e166aba3d0a9
6d59e1e1d7a298b0
Virus.Win32.
Virut.Ce
No 6.0.2600.0
(xpclient.
010817-114
8)
6.0.2600.0 Estonia N/A
Display 4 items per page
  • 4 items per page
  • 8 items per page
  • 16 items per page
  • 32 items per page
28

Safe Entries

First Seen: 27 June 2008 at 4:31 pm
No. Company File Type SHA1 MD5 Digitally
Signed
File
Version
Product
Version
Submitted
From
1 Microsoft Corporation Executable 127b0d89a9179bdd
ea692e4a35cc8e67
4f514012
70e714aea2e71c74
c8d7b11171616694
No 4.00 4.00 198.20.167.84/32
2 Microsoft Corporation Executable 9dcaeb631ff7f953
7cf10ed3bb51505b
ff98322b
aa81551ecec7a4ad
73bd9fc782a86975
No 6.0.2600.0
(xpclient.
010817-114
8)
6.0.2600.0 Internal Submission
3 Microsoft Corporation Executable c1a0afdbf353e5ef
fcab5fd1e1be89ee
52de3d8a
973e427022d3807d
577cc6bb2e1eda8b
No 6.0.3790.3
959
(srv03_sp2
_rtm.07021
6-1710)
6.0.3790.3
959
10.224.1.115/32
4 Microsoft Corporation Executable 999770ed7383804a
dcbadea09617c15f
cb6e4a76
b69d6d7544b8fafb
c1cace62ff3f3f2b
No 4.0 4.0 Internal Submission
Display 4 items per page
  • 4 items per page
  • 8 items per page
  • 16 items per page
  • 32 items per page
 
Exclusive Offer
Get Free Endpoint Protection
Get Advanced
Endpoint
Protection

Award-Winning Security to Protect Your Clients from Cyber Attacks

Comodo Internet Security Pro

Antivirus Protection protection from hackers! Get the ultimate Antivirus solution to keep your PC clean and to remove viruses from a slow or infected PC. Improve the PC performance at home or use it on-the-go!

Get Comodo Internet Security Comodo Internet Security