Unfortunately it doesn't state what that directory location might be. I read on microsoft's tech library that this file remains active after removal of MS Office. I never at any point had MS Office installed on my computer though, so I'm really wondering why it is here at all. If use the task manager to disable the ctfmon.exe process, it just gets restarted again. Removing the file from the system32 directory has the same effect, it just gets replaced.Process File: ctfmon.exe or ctfmon
Process Name: Alternative User Input Services
Description:
ctfmon.exe is a process belonging to Microsoft Office Suite. It activates the Alternative User Input Text Input Processor (TIP) and the
Microsoft Office XP Language Bar. This program is a non-essential system process, but should not be terminated unless suspected to be causing problems.
Note: ctfmon.execould also be a process which is registered as a trojan. This Trojan allows attackers to access your computer from remote locations, stealing passwords, Internet banking and personal data. This process is a security risk and should be removed from your system.
Determining whether ctfmon.exe is a virus or a legitimate Windows process depends on the directory location it executes or runs from in WinTasks.
I tried Norton, McAfee and AVG, but none of the virus scanners seems to pick this up as a virus. I'm really suspicious, but I can think of no other way to figure out if this really is a virus.
I need some suggestion. One thing I'd like to know is the actual byte size of ctfmon.exe on a computer that actually does have MS Office XP installed. Could someone here help me out with at least that part? To see the byte size, right-click and check the file's properties.
Mine are:
http://i119.photobucket.com/albums/o136 ... ctfmon.jpg
Do they match?
The other thing I'd like to know if there is anyone else who never at any point had MS Office XP installed on their computer. Do you also see that file? Any other suggestions would be appreciated. =/
