system file comctl32.dll need advice on ADS hidden stream

After a full version TDS3 (lastest update + db) scan, it showed:
#1

#2 : on the same file path and filename:

any help would be much appreciated. Thx.

 

Hello guest,

Let me refer you to this post here for help.

 

Thanks, but no KAV on my box. Gave TDS3 1 try deleting the stream, it came back on. As other posts, it is possible to completely delete it from running TDS in windows safe mode. Is it something with that? Is there anyone having the such thing on his/her winxp box? Besides, it should be to delete that stream or not. Probably this is not a breach problem for its so small size of the stream (<128bytes) and that it came for tracking by windows?
thx for help.

 

File is part of a Windows 'common control libraray. Be wary of removal.

http://www.auditmypc.com/process/comctl32.asp

http://www.liutilities.com/products/wintaskspro/dlllibrary/comctl32/

http://search.microsoft.com/search/results.aspx?st=b&na=88&View=en-us&qu=comctl32.dll

 

Hi there!
I googled for that long name {4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
and see it in many postings, but solutions or what it is exactly are not clear yet.
The easiest way if TDS would not remove it is copy the file to a FAT32 location and back to it's place.
TDS can run in safe mode too if you want.

 

Thought it said MZ exe which sounds as an executable?
This is why .......

 

Understood.

 

Ah! that explains ... more or less ..
But it's small and no exe so considered harmless.

 

Seems not many windows users know really about those kind of stream "technology" of ms!https://www.wilderssecurity.com/images/icons/icon12.gif ;-)
Looking forward to DCS lessions on this to relieve dcs's users from crossing fingers on these things.
;-)

 

http://www.diamondcs.com.au/index.php?page=archive&id=ntfs-streams