How to Remove “rasautou.exe”

What is rasautou.exe?

Originally developed by Microsoft Corporation, rasautou.exe is a legitimate file process that belongs to software Microsoft Windows Operating System. This process is known as Remote Access Dialer and it is located in C:\Windows\System32 by default.
rasautou.exe virus is created when malware authors write virus files and name them after rasautou.exe with an aim to spread virus on the internet.

Affected Platform: Windows OS

How to check if your computer is infected with rasautou.exe malware?

If your system is affected by rasautou.exe malware, you will notice one or the several below symptoms:

  • rasautou.exe occupies an unusually large CPU memory
  • Erratic internet connection
  • Your browser is bombarded with annoying popup ads
  • Computer screen freezes
  • PC's processing speed suffers
  • You are redirected to unknown websites

To pinpoint the virus file location, take the following steps:

Step 1: Press CTRL+ALT+DEL keys at once to open Task Manager.

Step 2: If you notice the file located outside C:\Windows\System32, you should run an antivirus scan to get rid of the malware.

How to remove rasautou.exe malware from system using Comodo Cleaning Essentials?

You can either choose to remove rasautou.exe and other malwares using Comodo Antivirus, or Comodo Cleaning Essentials (CCE) – both of which are absolutely free to download! CCE is a set of computer security tools designed to help you identify and remove malwares and unsafe processes from an infected computer.

To remove malwares using CCE, take the following steps:

1. Check the system requirements and download the feature-rich CCE suite for free.

2. After installation, choose the type of scan you want to perform. CCE offers 3 scan options to get rid of malwares from a PC:

  • Smart Scan: Does a scan on critical areas of your system.
  • Full Scan: Does a complete scan of your system.
  • Custom Scan: Does a scan only on selected items.

The process to initiate the above mentioned scans are self-explanatory and thus, easy-to-use. 
Additionally, it's recommended that you approve of any updates that the CCE will prompt you about to ensure it does a better job of identifying all the latest threats.

3. Click 'Next' to view the results.
Regardless of the type of scan you choose, the results will sometimes show false positive (flagging files that are actually safe), which has to be ignored. Only select the files you want to get rid of.

4. Click 'Apply' to apply the selected operations to the threats. The selected operations will be applied.

36

Malware Entries

First Seen: 25 October 2011 at 1:17 am
No. Company File Type SHA1 MD5 Malware
Name
Digitally
Signed
File
Version
Product
Version
Submitted
From
Malware Behavior
1 Microsoft Corporation Executable a8f13b2d87974045
aad2e7d4f25c656e
513d888a
10936ef4461f4faf
bc09e7665fc51934
Virus.Win32.
Virut.CE
No 6.1.7600.1
6385
(win7_rtm.
090713-125
5)
6.1.7600.1
6385
Europe N/A
2 Microsoft Corporation Executable 61e167f197a932d6
284a8f09ff622cdd
9758176b
60ae327875ba2bd9
6901714d362c1774
Virus.Win32.
Virut.CE
No 5.1.2600.0
(xpclient.
010817-114
8)
5.1.2600.0 Nepal N/A
3 Microsoft Corporation Executable 10954f1d521fa971
63e9c4034b004469
9d21a539
d1f0adea12153366
b31365239aafad17
Virus.Win32.
Virut.Ce
No 5.1.2600.0
(xpclient.
010817-114
8)
5.1.2600.0 Russian Federation N/A
4 N/A Executable 79afc87701b97800
ef74d5d1bdad4bba
21350206
9e8f00b1e8955162
c409cfd40145f4ad
Unclassified
Malware
No 1, 0, 0, 1 1, 0, 0, 1 Internal Submission N/A
Display 4 items per page
  • 4 items per page
  • 8 items per page
  • 16 items per page
  • 32 items per page
16

Safe Entries

First Seen: 25 October 2009 at 2:32 am
No. Company File Type SHA1 MD5 Digitally
Signed
File
Version
Product
Version
Submitted
From
1 Microsoft Corporation Executable 5cbe0a821a80923e
9e1551b28d432416
4abf2727
3d2a3ca96286c9c7
732b518ee367d872
No 4.01 4.01 Internal Submission
2 Microsoft Corporation Executable e6ca91722891d15b
fa5734b0328c9aaa
3997289b
bdc18a906df1aa5c
fbb4c90e54118587
No 6.3.9600.1
6384
(winblue_r
tm.130821-
1623)
6.3.9600.1
6384
10.100.19.136/32
3 Microsoft Corporation Executable 586708c405b58c85
80cdf9637212f9d5
c4a416b3
22dab73b4300684d
aef4c8d56ab0a5bb
No 5.2.3790.0
(srv03_rtm
.030324-20
48)
5.2.3790.0 Internal Submission
4 Microsoft Corporation Executable e6ca91722891d15b
fa5734b0328c9aaa
3997289b
bdc18a906df1aa5c
fbb4c90e54118587
No 6.3.9600.1
6384
(winblue_r
tm.130821-
1623)
6.3.9600.1
6384
10.100.19.19/32
Display 4 items per page
  • 4 items per page
  • 8 items per page
  • 16 items per page
  • 32 items per page
 
Exclusive Offer
Get Free Endpoint Protection
Get Advanced
Endpoint
Protection

Award-Winning Security to Protect Your Clients from Cyber Attacks

Comodo Internet Security Pro

Free Antivirus protection from hackers! Get the ultimate Antivirus solution to keep your PC clean and to remove viruses from a slow or infected PC. Improve the PC performance at home or use it on-the-go!

Get Comodo Internet Security Comodo Internet Security