This content has been marked as final. Show 3 replies
In our EPO reports, I can see 10 systems that have had the conime.exe removed by McAfee. All these systems are running Windows Vista. What does this file do to Vista, is is a necessary file?
If so, what is the best way to restore this file back using EPO?
the file itself provides console IME (input method editor) support for asian language in vista.
processes of the same name may indicate various malware:
Note: conime.exe could also be a process which is registered as the Input Method Editor Remote administration backdoor tool. This backdoor application can allow attackers to access your computer, stealing passwords and personal data. This process is a security risk and should be removed from your system.
Note! If your system is using a non western language this can be a legitimate entry.
Determining whether conime.exe is a virus or a legitimate Windows process depends on the directory location it executes or runs from
For restoring the conime.exe file, see the instructions given in this post by a McAfee Tech. A download link is provided for the file.
The "extra dat" instructions are for the retail versions of VirusScan but the "conime.exe" file should be appropriate for any situation.
Hope this helps.