How to Remove “relog.exe”

What is relog.exe?

Originally developed by Microsoft Corporation, relog.exe is a legitimate file process. This process is known as Performance Relogging Utility and it belongs to product Microsoft Windows Operating System. It is located in C:\Windows by default. relog.exe virus is created when malware authors write virus files and name them after relog.exe with an aim to spread virus on the internet.

Affected Platform: Windows OS

How to check if your computer is infected with relog.exe malware?

If your system is affected by relog.exe malware, you will notice one or the several below symptoms:

  • relog.exe occupies an unusually large CPU memory
  • Erratic internet connection
  • Your browser is bombarded with annoying popup ads
  • Computer screen freezes
  • PC's processing speed suffers
  • You are redirected to unknown websites
To pinpoint the virus file location, take the following steps:

Step 1: Press CTRL+ALT+DEL keys at once to open Task Manager.

Step 2: If you notice the file located outside C:\Windows, you should run an antivirus scan to get rid of the malware.

How to remove relog.exe malware from system using Comodo Cleaning Essentials?

You can either choose to remove relog.exe and other malwares using Comodo Antivirus, or Comodo Cleaning Essentials (CCE) – both of which are absolutely free to download! CCE is a set of computer security tools designed to help you identify and remove malwares and unsafe processes from an infected computer.

To remove malwares using CCE, take the following steps:

1. Check the system requirements and download the feature-rich CCE suite for free.

2. After installation, choose the type of scan you want to perform. CCE offers 3 scan options to get rid of malwares from a PC:

  • Smart Scan: Does a scan on critical areas of your system.
  • Full Scan: Does a complete scan of your system.
  • Custom Scan: Does a scan only on selected items.

The process to initiate the above mentioned scans are self-explanatory and thus, easy-to-use. 
Additionally, it's recommended that you approve of any updates that the CCE will prompt you about to ensure it does a better job of identifying all the latest threats.

3. Click 'Next' to view the results.
Regardless of the type of scan you choose, the results will sometimes show false positive (flagging files that are actually safe), which has to be ignored. Only select the files you want to get rid of.

4. Click 'Apply' to apply the selected operations to the threats. The selected operations will be applied.

50

Malware Entries

First Seen: 25 October 2011 at 1:17 am
No. Company File Type SHA1 MD5 Malware
Name
Digitally
Signed
File
Version
Product
Version
Submitted
From
Malware Behavior
1 Microsoft Corporation Executable 480467a58f0e6245
d9292fe34306f5df
ee4b8df9
e16f097a3e02863c
81ae48a58619107a
Unclassified
Malware
No 6.1.7600.1
6385
(win7_rtm.
090713-125
5)
6.1.7600.1
6385
United States N/A
2 Microsoft Corporation Executable aee25192f3ed7967
bdbed95dc09df296
b8ccb12a
9b66994dcff20eee
a18a27943f0d3b16
Virus.Win32.
Expiro.isn
No 6.1.7601.1
7514
(win7sp1_r
tm.101119-
1850)
6.1.7601.1
7514
Canada N/A
3 Microsoft Corporation Executable a2332a08862a8c13
926e235339d3b891
b5d3651c
8dc208df9130e1cf
ff1318d7d8402989
Virus.Win32.
Virut.CE
No 5.1.2600.0
(XPClient.
010817-114
8)
5.1.2600.0 Nepal N/A
4 Microsoft Corporation Executable 3018768aaf6e2a4a
fb27b8c2058c837f
723be540
5dae18ea7642ddeb
4a451e7d35aa56fd
Virus.Win32.
Expiro.SR
No 6.1.7600.1
6385
(win7_rtm.
090713-125
5)
6.1.7600.1
6385
197.211.61.174/32 N/A
Display 4 items per page
  • 4 items per page
  • 8 items per page
  • 16 items per page
  • 32 items per page
9

Safe Entries

First Seen: 21 August 2012 at 6:50 pm
No. Company File Type SHA1 MD5 Digitally
Signed
File
Version
Product
Version
Submitted
From
1 Jonathan Bennett Executable b632ae95336903b2
1a04209369c1f73b
f7021246
5fd3e6af31dd1ef9
cf21cd3304ad5d46
No 2.41 2.41 Internal Submission
2 Microsoft Corporation Executable 53981c0d98b46b86
d3fcc60706faa214
d3ac237f
1a76cea22a86574b
7b02914d39fd7a84
No 10.0.17755
.1
(WinBuild.
160101.080
0)
10.0.17755
.1
Japan
3 Microsoft Corporation Executable 8b434bab16d85f2c
148b057d1178fc9b
1434a36e
3532ad779f8afa7d
be8bd6e1781e7dbb
No 5.2.3790.0
(srv03_rtm
.030324-20
48)
5.2.3790.0 Internal Submission
4 Microsoft Corporation Executable 518e6f217d0d3499
9bd2c3bc8b7756e3
e2620c13
83d680a450065673
93fa940d156357bc
No 10.0.16232
.1000
(WinBuild.
160101.080
0)
10.0.16232
.1000
Germany
Display 4 items per page
  • 4 items per page
  • 8 items per page
  • 16 items per page
  • 32 items per page
 
Exclusive Offer
Get Free Endpoint Protection
Get Advanced
Endpoint
Protection

Award-Winning Security to Protect Your Clients from Cyber Attacks

Comodo Internet Security Pro

Antivirus Protection protection from hackers! Get the ultimate Antivirus solution to keep your PC clean and to remove viruses from a slow or infected PC. Improve the PC performance at home or use it on-the-go!

Get Comodo Internet Security Comodo Internet Security