How to Remove the relog.exe virus from PC

What is relog.exe?

Originally developed by Microsoft Corporation, relog.exe is a legitimate file process. This process is known as Performance Relogging Utility and it belongs to product Microsoft Windows Operating System. It is located in C:\Windows by default. relog.exe virus is created when malware authors write virus files and name them after relog.exe with an aim to spread virus on the internet.

Affected Platform: Windows OS

How to check if your computer is infected with relog.exe malware?

If your system is affected by relog.exe malware, you will notice one or the several below symptoms:

relog.exe occupies an unusually large CPU memory
Erratic internet connection
Your browser is bombarded with annoying popup ads
Computer screen freezes
PC's processing speed suffers
You are redirected to unknown websites

To pinpoint the virus file location, take the following steps:

Step 1: Press CTRL+ALT+DEL keys at once to open Task Manager.

Step 2: If you notice the file located outside C:\Windows, you should run an antivirus scan to get rid of the malware.

How to remove relog.exe malware from system using Comodo Cleaning Essentials?

You can either choose to remove relog.exe and other malwares using Comodo Antivirus, or Comodo Cleaning Essentials (CCE) – both of which are absolutely free to download! CCE is a set of computer security tools designed to help you identify and remove malwares and unsafe processes from an infected computer.

To remove malwares using CCE, take the following steps:

1. Check the system requirements and download the feature-rich CCE suite for free.

2. After installation, choose the type of scan you want to perform. CCE offers 3 scan options to get rid of malwares from a PC:

Smart Scan: Does a scan on critical areas of your system.
Full Scan: Does a complete scan of your system.
Custom Scan: Does a scan only on selected items.

The process to initiate the above mentioned scans are self-explanatory and thus, easy-to-use.
Additionally, it's recommended that you approve of any updates that the CCE will prompt you about to ensure it does a better job of identifying all the latest threats.

3. Click 'Next' to view the results.
Regardless of the type of scan you choose, the results will sometimes show false positive (flagging files that are actually safe), which has to be ignored. Only select the files you want to get rid of.

4. Click 'Apply' to apply the selected operations to the threats. The selected operations will be applied.

Malware Entries

Safe Entries

First Seen: 25 October 2011 at 1:17 am

No.	Company	File Type	SHA1	MD5	Malware Name	Digitally Signed	File Version	Product Version	Submitted From	Malware Behavior
1	Microsoft Corporation	Executable	b386f505b3926be5 b058133d5a041de1 ff0d607a	8f4f7262f1118d25 8d84937e69c4f554	Virus.Win32. Virut.CE	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	India	N/A
2	Microsoft Corporation	Executable	480467a58f0e6245 d9292fe34306f5df ee4b8df9	e16f097a3e02863c 81ae48a58619107a	Unclassified Malware	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	United States	N/A
3	Microsoft Corporation	Executable	aee25192f3ed7967 bdbed95dc09df296 b8ccb12a	9b66994dcff20eee a18a27943f0d3b16	Virus.Win32. Expiro.isn	No	6.1.7601.1 7514 (win7sp1_r tm.101119- 1850)	6.1.7601.1 7514	Canada	N/A
4	Microsoft Corporation	Executable	59ab0f391f75dcf2 ba39236a57cad7e1 391ffe8a	937c962423dfad1d b6ee3b41b7b6a5bf	Virus.Win32. Virut.CE	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	Turkey	N/A
5	Microsoft Corporation	Executable	3018768aaf6e2a4a fb27b8c2058c837f 723be540	5dae18ea7642ddeb 4a451e7d35aa56fd	Virus.Win32. Expiro.SR	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	197.211.61.174/32	N/A
6	Microsoft Corporation	Executable	f88d6e25a1d52eb3 49e8c8566424c3da 9ed61535	b5597af8f17c07f1 0750c047d13cef3a	Virus.Win32. Virut.CE	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	Poland	N/A
7	Microsoft Corporation	Executable	26e486ab15ec6307 df186e44e0aa32e9 2894d574	4faf7c3f4778cf8d 41876b99f06eb3d8	Virus.Win32. Virut.CE	No	6.1.7601.1 7514 (win7sp1_r tm.101119- 1850)	6.1.7601.1 7514	Egypt	N/A
8	Корпорация Майкрософт	Executable	d0b94f39ace84a4c 29af0772d5e2c235 d5107510	5713d420ecfda5ef c09e075dc78603a4	Virus.Win32. Virut.CE	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	Russian Federation	N/A
9	Microsoft Corporation	Executable	2352cf0e61436bae 5a61f452af8a4af0 a98e1983	6e51552ec1c73e24 8783c6eb1547bc7b	Virus.Win32. Virut.CE	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	Indonesia	N/A
10	Корпорация Майкрософт	Executable	c46085e303589e4b b6f8c0abfac28aa3 6fd80526	af97d2bcba74b0eb c124832f16758b93	Virus.Win32. Sality.gen	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	Ukraine	N/A
11	Microsoft Corporation	Executable	a4d693c01bbcd349 a8e09d7397765927 f5f81e65	99e677c3d80fcb72 c2a4b13591e1e2c3	Virus.Win32. Parite.gen	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	Taiwan	N/A
12	N/A	Executable	5060e0725ad27233 eea7e94b4ab0283d 7bff7319	0f52418b1a8c2b31 d91451d1bf113b89	Win32.Neshta .A	No	N/A	N/A	181.66.169.99/32	N/A
13	Microsoft Corporation	Executable	2bff927f4c4cd0ce e96103c4568f94c5 229fe1ec	dce00ed85e02d977 db6fdb41610096ae	Virus.Win32. Parite.gen	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	Internal Submission	N/A
14	Microsoft Corporation	Executable	25c86859018f0744 2ae1945132903186 494e045a	8161cbda2e30b947 bcdaed28544707a2	Virus.Win32. Virut.CE	No	6.1.7601.1 7514 (win7sp1_r tm.101119- 1850)	6.1.7601.1 7514	154.177.222.226/32	N/A
15	Корпорация Майкрософт	Executable	cefa57f666822347 6357220a117e35b6 b2557547	ace6cb21a7351937 df44b01a6bb41f3a	Virus.Win32. Expiro.R0	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	Ukraine	N/A
16	Microsoft Corporation	Executable	b360523681eb5cb3 4012d4042c923a6a 73632dc1	2d29f9ccce736fc9 eacd99cba7e11226	Virus.Win32. Virut.Ce	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	Italy	N/A
17	Microsoft Corporation	Executable	4df78f09166e4c01 f14abd32af8db57a 23c2dcee	5ee5b9a3db5a394a 9f07cbf1dc935b1f	Virus.Win32. Virut.CE	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	Turkey	N/A
18	Microsoft Corporation	Executable	5136ace75fc2af24 aef4cc6db687ebe7 359f0a75	4d2c044b2a868b55 821ce93ada517a6d	Virus.Win32. Sality.gen	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	31.9.135.244/32	N/A
19	Microsoft Corporation	Executable	94c0019fe7b131ed 4439c5fdd4057f26 f377620a	28fd765b5ba0fa5f c9716bda4a2ead90	Virus.Win32. Virut.CE	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	Egypt	N/A
20	Microsoft Corporation	Executable	9ab6a79dcadd5217 f686d21ec257a8f7 622c1fff	7351cca4f8c1916c 8c6cee7f11314db5	Virus.Win32. Virut.CE	No	6.1.7601.1 7514 (win7sp1_r tm.101119- 1850)	6.1.7601.1 7514	37.237.112.33/32	N/A
21	Microsoft Corporation	Executable	e20137fb4c23b80e 6352c745e640bb17 6426c527	673a78c1faa5777b d95905cebec9f95f	Virus.Win32. Virut.CE	No	6.1.7601.1 8869 (win7sp1_g dr.150525- 0603)	6.1.7601.1 8869	Morocco	N/A
22	N/A	Executable	8e6c2022e888ad85 72f3547226167e40 ab41c33a	055100aaccfb29a8 8c3d8c614e009836	Virus.Win32. Virut.CE	No	N/A	N/A	197.39.113.130/32	N/A
23	Microsoft Corporation	Executable	b65596f9c3552bdb 0b3cc4b1bb6a4f18 7e00036d	3724aafdcda89619 5966b8621309d451	Virus.Win32. Virut.CE	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	102.41.88.6/32	N/A
24	Microsoft Corporation	Executable	4381a310300c75f4 1c6af5067ea4ccb3 2549ee58	330c50f25c0b0ca9 1b431fc82b42e15d	Virus.Win32. Virut.CE	No	6.1.7601.2 3403 (win7sp1_l dr.160325- 0600)	6.1.7601.2 3403	Pakistan	N/A
25	Microsoft Corporation	Executable	8bfba987d7b1ea8c a6a82e0726787eed a408e5fa	843d441ecdbe73d7 a3ec0a65a9bf7d9f	Virus.Win32. Parite.gen	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	Turkey	N/A
26	Корпорация Майкрософт	Executable	b6cf63cf4f71579d 46ed270a005f8bf1 9502080c	b9aaf29b9f0c1515 fb8d218003c9915c	Virus.Win32. Virut.CE	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	5.227.231.168/32	N/A
27	Microsoft Corporation	Executable	08e8c214decd66d1 c9f0c72a457cba5f 421b43ac	f90cb2c69aeaf35d c9c469914e2780e3	Virus.Win32. Virut.CE	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	154.160.21.150/32	N/A
28	Microsoft Corporation	Executable	30ba8665237cb53b 2c6bfc31097b74ca b131e6b3	899ad70590e016d1 ec5f9ce07314eabc	Virus.Win32. Virut.CE	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	Vietnam	N/A
29	Microsoft Corporation	Executable	110f180305612153 66afe8ada967ab85 ec471749	ea2bdd68bf724b2a 5f11ac89f0513c6e	Virus.Win32. Virut.CE	No	6.1.7601.1 7514 (win7sp1_r tm.101119- 1850)	6.1.7601.1 7514	197.211.63.173/32	N/A
30	N/A	Executable	6804a8ad8d0c254c 36a7e3c4f0b91c25 cb28dbe2	5ccc0c6adf34e365 c87bb186d8c06e7e	Virus.Win32. Virut.CE	No	N/A	N/A	Egypt	N/A
31	Microsoft Corporation	Executable	c1a79d7be663c954 c963544df8bb6030 26f4d538	4acbcfcef1e350f7 cc0aaa476452f32e	Virus.Win32. Virut.CE	No	6.1.7600.1 6385 (win7_rtm. 090713-125 5)	6.1.7600.1 6385	197.210.47.180/32	N/A
32	Microsoft Corporation	Executable	2883ed9a66232802 51a90c342416689f b13b8f34	ecd1ebe8ffb4f0c5 1cfea2437a11ecc3	Virus.Win32. Virut.CE	No	6.1.7601.1 7514 (win7sp1_r tm.101119- 1850)	6.1.7601.1 7514	Lao People's Democratic Republic	N/A

Prev 1 2 3...8 Next

Display 4 items per page

4 items per page
8 items per page
16 items per page
32 items per page

Safe Entries

First Seen: 19 September 2012 at 12:11 am

No.	Company	File Type	SHA1	MD5	Digitally Signed	File Version	Product Version	Submitted From
1	Microsoft Corporation	Executable	258700507da38592 fa56edac0f4beba4 d44985da	74f395f81dde8228 189be891f8670e31	No	10.0.21387 .1 (WinBuild. 160101.080 0)	10.0.21387 .1	United States
2	N/A	Non-executable	361b7ebf3dd44ed0 7799ee73b9eef7e4 0d4acbd8	02bc5b20adb11c7a 68be8e774d032022	No	N/A	N/A	United States
3	N/A	Non-executable	42f6d6d208c6db5e a1086a2ec60f09e1 93a18b39	ad49c7ca5364e28d 24306c7328bc9d84	No	N/A	N/A	United States
4	Microsoft Corporation	Executable	bb418a8c485d4303 9c8ffcaaadf71005 5b6f8d55	f445286ecb5a74aa f2c103d05879f1c1	No	10.0.19041 .1741 (WinBuild. 160101.080 0)	10.0.19041 .1741	United States
5	N/A	Non-executable	8302f3d66077a0ff 7f0e7b4b43a45f43 6f061b3f	ddc2b05e5faced71 50b1cc1c60d8f484	No	N/A	N/A	United States
6	Microsoft Corporation	Executable	53981c0d98b46b86 d3fcc60706faa214 d3ac237f	1a76cea22a86574b 7b02914d39fd7a84	No	10.0.17755 .1 (WinBuild. 160101.080 0)	10.0.17755 .1	Japan
7	Microsoft Corporation	Executable	86f8cc31c4996c7d 1dacb060870e4873 3429ce68	b5bd958dcd88565c c17e9330032f99ce	No	10.0.19041 .546 (WinBuild. 160101.080 0)	10.0.19041 .546	United States
8	Microsoft Corporation	Executable	ae3174e63da777c3 7778f0fccc1cf55e 7c5860b7	96148f55784bf231 189ecd4e4da2a52d	No	10.0.19041 .3636 (WinBuild. 160101.080 0)	10.0.19041 .3636	United States
9	Microsoft Corporation	Executable	df6a9e2ef04f2c4c d46319d475fedf87 148c6ede	1178e44a76af0c15 d307b292a734f0e3	No	10.0.19041 .546 (WinBuild. 160101.080 0)	10.0.19041 .546	United States
10	N/A	Executable	216044f13d2e79cd 22d8a0df50c09b6d eff1d22d	1d720ee05981e2a9 575bc8e57a6c254b	No	N/A	N/A	Mexico
11	Microsoft Corporation	Executable	ff3c8faeaa2707dd dc5bb86fea0dd225 67655a71	f18e33650763255e 492dbe96491c1ef6	No	5.1.2600.0 (XPClient. 010817-114 8)	5.1.2600.0	10.224.1.117/32
12	Microsoft Corporation	Executable	65803d2e491aac99 a1ceb517d35ce54c 10c2001c	6c22d58e6205966e 1e51f2f124224459	No	10.0.19041 .3636 (WinBuild. 160101.080 0)	10.0.19041 .3636	United States
13	Microsoft Corporation	Executable	a7e3fef221bff555 a5df618365e091be c06d2102	94db4eab35b7ce78 838a8f2a54661547	No	10.0.19041 .1 (WinBuild. 160101.080 0)	10.0.19041 .1	United States
14	N/A	Non-executable	361b7ebf3dd44ed0 7799ee73b9eef7e4 0d4acbd8	02bc5b20adb11c7a 68be8e774d032022	No	N/A	N/A	Internal Submission
15	N/A	Non-executable	8302f3d66077a0ff 7f0e7b4b43a45f43 6f061b3f	ddc2b05e5faced71 50b1cc1c60d8f484	No	N/A	N/A	Internal Submission
16	Microsoft Corporation	Executable	b89e5c0d2d7edba6 8f405a5059d3458a 2d61f0f8	da20d543a130003b 427aeb18ae2fe094	No	10.0.19041 .1741 (WinBuild. 160101.080 0)	10.0.19041 .1741	United States

Prev 1 2 3 4 Next

Display 4 items per page

4 items per page
8 items per page
16 items per page
32 items per page

Malware Search Engine

How to Remove “relog.exe”

What is relog.exe?

How to check if your computer is infected with relog.exe malware?