Sorry to make a new thread about this, but I keep seeing conflicting information floating about the intertubes about this particular executable.
I was going through a routine spyware and virus check this morning, and after putting my hijackthis log into an auto-analyzer, it came back with the result that ctfmon.exe was a spyware related file. I believe it was attributed to some horrid cool web search variant. Doing a quick google search revealed that this file is either: A.) A harmless Microsoft Office file that is used for various alternative inputs or languages within the Office suite. B.) A trojan, running in the background, or C.) A piece of Adware / Spyware.
No one seems to agree on this file, but I know folks around here are dependable and knowledgeable about these issues. Is there any way to check if it's legit or not? Currently it's running from \Windows\System32\ if that makes a difference. I'd also post my hijackthis log, but will be away from the computer in question for a few hours hence.
Thanks for any help.