How to Remove “rasdiag.exe”

What is rasdiag.exe?

Originally developed by Microsoft Corporation, rasdiag.exe is a legitimate file process. This process is known as Remote Access Diagnostics and it belongs to Windows Operating System. It is located in C:\Windows\System32 by default.
rasdiag.exe virus is created when malware authors write virus files and name them after rasdiag.exe with an aim to spread virus on the internet.

Affected Platform: Windows OS

How to check if your computer is infected with rasdiag.exe malware?

If your system is affected by rasdiag.exe malware, you will notice one or several of the symptoms below:

  • rasdiag.exe occupies an unusually large CPU memory
  • Erratic internet connection
  • Your browser is bombarded with annoying popup ads
  • Computer screen freezes
  • PC's processing speed suffers
  • You are redirected to unknown websites

To pinpoint the virus file location, take the following steps:

Step 1: Press CTRL+ALT+DEL keys at once to open Task Manager.

Step 2: If you notice the file located outside C:\Windows\System32, you should run an antivirus scan to get rid of the malware.

How to remove rasdiag.exe malware from system using Comodo Cleaning Essentials?

You can either choose to remove rasdiag.exe and other malwares using Comodo Antivirus, or Comodo Cleaning Essentials (CCE) – both of which are absolutely free to download! CCE is a set of computer security tools designed to help you identify and remove malwares and unsafe processes from an infected computer.

To remove malwares using CCE, take the following steps:

1. Check the system requirements and download the feature-rich CCE suite for free.

2. After installation, choose the type of scan you want to perform. CCE offers 3 scan options to get rid of malwares from a PC:

  • Smart Scan: Does a scan on critical areas of your system.
  • Full Scan: Does a complete scan of your system.
  • Custom Scan: Does a scan only on selected items.

The process to initiate the above mentioned scans are self-explanatory and thus, easy-to-use. 
Additionally, it's recommended that you approve of any updates that the CCE will prompt you about to ensure it does a better job of identifying all the latest threats.

3. Click 'Next' to view the results.
Regardless of the type of scan you choose, the results will sometimes show false positive (flagging files that are actually safe), which has to be ignored. Only select the files you want to get rid of.

4. Click 'Apply' to apply the selected operations to the threats. The selected operations will be applied.

2

Malware Entries

First Seen: 28 March 2010 at 9:58 pm
No. Company File Type SHA1 MD5 Malware
Name
Digitally
Signed
File
Version
Product
Version
Submitted
From
Malware Behavior
1 Microsoft Corporation Executable 2613e403a0d798e9
49b03e1d1d5180cf
a516ecf7
15e2b153c98aa132
d9ca7b5d35573829
Virus.Win32.
Sality.gen
No 5.1.2600.0
(XPClient.
010817-114
8)
5.1.2600.0 Ukraine N/A
2 Microsoft Corporation Executable af2aa60cc3c0a7d9
a5d8b80884a0535d
69f468fa
4de60831762f2969
8786b366c8e50f09
Heur.Suspici
ous
No 5.1.2600.0
(XPClient.
010817-114
8)
5.1.2600.0 Romania N/A
Display 4 items per page
  • 4 items per page
  • 8 items per page
  • 16 items per page
  • 32 items per page
25

Safe Entries

First Seen: 21 July 2008 at 9:26 pm
No. Company File Type SHA1 MD5 Digitally
Signed
File
Version
Product
Version
Submitted
From
1 Microsoft Corporation Executable 275001f374f8938c
4726dc2a12aea48d
205699da
6567bf12db500065
2bca0fdb165cb8b9
No 5.1.2600.0
(XPClient.
010817-114
8)
5.1.2600.0 United States
2 Microsoft Corporation Executable 8c0f38cf2b89f851
6dadc71899b8fac2
950bcc47
891c14d6769f932a
ef68ca9da0f7caf7
No 5.1.2600.0
(XPClient.
010817-114
8)
5.1.2600.0 United States
3 Microsoft Corporation Executable 8c0f38cf2b89f851
6dadc71899b8fac2
950bcc47
891c14d6769f932a
ef68ca9da0f7caf7
No 5.1.2600.0
(XPClient.
010817-114
8)
5.1.2600.0 United Kingdom
4 Microsoft Corporation Executable 275001f374f8938c
4726dc2a12aea48d
205699da
6567bf12db500065
2bca0fdb165cb8b9
No 5.1.2600.0
(XPClient.
010817-114
8)
5.1.2600.0 10.224.1.115/32
Display 4 items per page
  • 4 items per page
  • 8 items per page
  • 16 items per page
  • 32 items per page
 
Exclusive Offer
Get Free Endpoint Protection
Get Advanced
Endpoint
Protection

Award-Winning Security to Protect Your Clients from Cyber Attacks

Comodo Internet Security Pro

Free Antivirus protection from hackers! Get the ultimate Antivirus solution to keep your PC clean and to remove viruses from a slow or infected PC. Improve the PC performance at home or use it on-the-go!

Get Comodo Internet Security Comodo Internet Security