What is rsh.exe?

rsh.exe is a legitimate process file popularly known as TCP/IP Remote Shell Command. It belongs to the Windows Operating System, developed by Microsoft Corporation. It is located in C:\Windows\System32 by default. Malware programmers write virus files with malicious scripts and save them as rsh.exe with an intention to spread virus on the internet.

Affected Platforms: Windows OS

How to determine if your computer is infected with rsh.exe malware?

Look out for the these symptoms to check if your PC is infected with rsh.exe malware:

• Unstable internet connection
• rsh.exe occupies extra CPU space
• PC processing speed slows down
• Browser often redirects to irrelevant websites
• Browser is bombarded with hordes of popup ads
• Computer screen freezes repeatedly

Take the following steps to diagnose your PC for possible rsh.exe malware attack:

Step 1: Simultaneously press CTRL+ALT+DEL keys to open Task Manager.

Step 2: If you notice the file located outside C:\Windows\System32, perform an antivirus scan to get rid of the malware.

How to remove rsh.exe malware from system using Comodo Antivirus?

Step 1: Download our award-winning Free Antivirus. 

Step 2: Installation configuration frames will be displayed. Select the configuration you would like to apply.

Step 3: Select Customize Configuration option and arrange installers, configuration, and file location.

Step 4: Restart your PC after the installation gets over.

Step 5: Wait for Comodo Internet Security to update the antivirus.

Step 6: Proceed with the quick scan that automatically begins after the update.

Step 7: If threats are found during the scanning, you will be notified through an alert screen.

Step 8: Comodo Antivirus will remove rsh.exe malware from your computer including all other malwares!