How to delete a file in system32

[DMGrier]

If Malware wouldn't it be best to just run malware bytes?

I have never seen a malware infection get by that and I think the first scan is free or something.

 

[Sir George]

If Malware wouldn't it be best to just run malware bytes?

I have never seen a malware infection get by that and I think the first scan is free or something.

Great program! The major difference between the free and paid version is real time monitoring is provided in the paid version.

 

[FliGi7]

Dwarf knows how to reply and I agree with him, check this rdvghelper.exe - What is rdvghelper.exe?

I never stated that "anyone" was incapable of knowing how to reply. I simply posted that caution may be advisable when posting, so that a bad situation doesn't become worst; ie, don't remove a necessary system file because it "may" be infected. I suggested using "MBAM" to verify the file and not to capriciously remove it.

Anyone can make a mistake and that certainly includes me. I wasn't trying to be better than anyone else, just suggesting it is always a good idea to be careful when offering advise.

There's no need to defend yourself here. There's nothing wrong with advising caution on how someone replies to a post, no matter how senior or junior their status is on the forum, particularly in this matter when no one is certain of the integrity of the file. I'm sure Dwarf wasn't trying to state it was definitely malware and for the OP to remove it regardless, but such a terse response could come off that way. It seems pretty straight forward to me. Everyone makes mistakes or says things that don't come off as they intend, no matter what your post count.

The OP obviously needs to first determine the nature of this file before trying to remove anything.

 

[Dwarf]

No problem. All I can say is that I don't have that file on my system, and that a quick web search revealed it to be potentially associated with malware. However, seeing as though Shawn (Brink) has it on his system, then it should be OK, providing, of course, that the file size and hashes match those provided by Shawn.

 

[Britton30]

Points well taken from all. I don't have the file on my x86 system I'm using at the moment either.
Would be intersting to know what program it is asscoiated with.

 

[Sir George]

Points well taken from all. I don't have the file on my x86 system I'm using at the moment either.
Would be intersting to know what program it is asscoiated with.

Perhaps this will help;

http://blogs.technet.com/b/windowsserver/archive/2011/02/15/industry-support-surrounding-remotefx.aspx​

 

[boohbah]

Apologies if i came across as crass or arsey, we have a tight knit community here and like family members we get defensive on the behalf of each other from time to time.

 

[joodoo]

If OP is still interested - and the Forum does't mind - I would suggest a visit to Bleeping Computer. As I haven't found a forum per se dedicated to infection, Bleeping Computer has some serious malware/virus experts.
Myself? I restore from a system/disk image, and would certainly suggest this as a recovery tool to all. I do not run across a lot of malware (anymore) and have fallen out of practice.
Turned into a popular thread, though.

Edit:

Everyone makes mistakes or says things that don't come off as they intend, ...

Man, don't I know it. Wonder how many wars were faught because the message was delivered unsucessfully? How many tears shed?

Edit:
Download an app to check the hash of the file. I use HashTab. It works.
Look to here to verify the SHA1 and MD5. If the alphanumerics don't match, then the file can safely "hypothetically" be removed.

 

[titi2]

Thank YOU all for helping with the issue. The reason I wanted to delete that file because te anti-virus program (Avast) said it was a malicious virus. When I went to Sys32 to delete RDVGHelper, the file couldn't be deleted. So how can I delete that "legit" file being infected. Thank you all so much.

 

[wanchoo]

I don't have this file either. I am just curious how it gets installed perhaps during the OS installation on some computers and not on others.

Could someone please clarify.

Hi, titi2.
What is the exact name of the file and what extension (.exe, .bat, .dll, ect.)?

The name is RDVGHELPER. I believe it is an .exe file but in system32, it doesn't have .exe. Thanks and can you help me delete this file pls.

Just checked on my system, and I don't have this file installed. Checking on the web reveals it to be malware, specifically adware and possibly a worm.

 

[joodoo]

It would appear that it is a 64 bit OS file?:huh: I do not find id on my machine (x86), but looks as though the file is found on 64 bit machines. I'll have to check the Wife's machine (x64) anon. And read more....

http://blogs.technet.com/b/windowsserver/archive/2011/02/15/industry-support-surrounding-remotefx.aspx

 

[cyclic]

It's not on my 64 bit OS, or in the x86 folder.
I do think even the free version of MBAM should sort it out if it is suspect.

 

[Britton30]

Indeed, I have the rdvghelper.exe on my home x64 system as well, and no scans have identified it as malware.

 

[allbrainnosuper]

copy and paste this in notepad
@echo off
del c:\WINDOWS\system32\RDVGHELPER.exe
and save as a "remove rdvghelper.bat"