File Search: 

ThreatExpert's awareness of the file "conime.exe":

Across all ThreatExpert reports, the file "conime.exe" has sometimes been a threat.
File "conime.exe" has the following statistics:
Total number of reports analysed611,932
Number of cases that involved the file "conime.exe"259
Number of incidents when this file was found to be a threat67
Statistical volume of cases when "conime.exe" was a threat26%
Please enable javascript to display the chart.
Notes:
  • Please note that the name of the file should NOT be used to define if it is legitimate or not. Such determination can only be made by observing its dynamic behaviour.
  • In order to check a file, please submit it to ThreatExpert.
  • For a comprehensive pro-active protection against threats, please consider ThreatFire - our behavioral antivirus solution.
The file "conime.exe" is known to be created under the following filenames:
%AppData%\{187412dd-6f8d-45a5-a1f6-e7b6fe193f5b}\conime.exe
%AppData%\{bfb5f154-9212-46f3-b547-ac6106030a54}\conime.exe
%CommonFavorites%\qznbmxbp.exe
%CommonFavorites%\upevoeuq.exe
%CommonPrograms%\startup\explorer.exe
%FontsDir%\conime.exe
%FontsDir%\system\conime.exe
%ProgramFiles%\internet explorer\signup\conime.exe
%ProgramFiles%\maps\conime.exe
%System%\alligt.exe
%System%\bryato.exe
%System%\conime.sys
%System%\dllcache\conime.exe
%System%\dmqgmk.exe
%System%\drivers\adamrf.exe
%System%\drivers\akouow.exe
%System%\drivers\avipit.exe
%System%\drivers\cisceq.exe
%System%\drivers\conime.exe
%System%\drivers\eyuqhu.exe
%System%\drivers\jmxxxh.exe
%System%\drivers\nkruls.exe
%System%\drivers\pnvifj.exe
%System%\drivers\rekbao.com
%System%\drivers\sbfcme.exe
%System%\drivers\tekkdv.exe
%System%\eminoc_bd.dll
%System%\hsiwij.exe
%System%\jitpjr.exe
%System%\jusodl.exe
%System%\mmlucj.exe
%System%\qdoken.dll
%System%\severe.exe
%System%\svch0st.exe
%System%\tfidma.exe
%System%\tssrhe.exe
%System%\unsecc.exe
%System%\ydggot.exe
%System%\yimdkc.exe
%Temp%\{00e2f4e0-f208-4826-a101-fe547c6da4a1}\conime.exe
%Temp%\{01e69986-a054-4c52-abe8-ef63df1c5211}\conime.exe
%Temp%\{0557e456-054d-4c3a-b501-2cc437256230}\conime.exe
%Temp%\{0aa1c598-2d4d-4282-8a5c-3c48229c1e19}\conime.exe
%Temp%\{0c55a48a-97dc-4003-8729-7d0b159b40d3}\conime.exe
%Temp%\{0c9a45d1-6df3-4615-9353-07fb5ee9b507}\conime.exe
%Temp%\{10000000-1000-1000-1000-100000000000}\conime.exe
%Temp%\{1341140c-c0f8-4f1e-a3ac-0ee3b38f8e06}\conime.exe
%Temp%\{1a295e8e-e51b-42ce-81b2-b73614f0fcd2}\conime.exe
%Temp%\{1b8db3cb-cc40-41b8-8a00-9afc2187a64d}\conime.exe
%Temp%\{1bb22d38-a411-4b13-a746-c2a4f4ec7344}\conime.exe
%Temp%\{23ac6c23-2b97-4543-8a69-7ba860de111f}\conime.exe
%Temp%\{257079ca-2ffd-4c92-a1b5-3ae466ecef22}\conime.exe
%Temp%\{25f97eb4-1c02-45ba-ba0c-e67aace64d4a}\conime.exe
%Temp%\{2d69e865-9291-4428-b482-ec33f183e37f}\conime.exe
%Temp%\{3416069b-939c-4a20-98a7-a745195a2279}\conime.exe
%Temp%\{3444d0f9-92d4-455a-8a84-dcecd543eca2}\conime.exe
%Temp%\{34f459b8-1d37-4ff2-9efa-192d8e3aba6f}\conime.exe
%Temp%\{382be5e1-d321-42ed-8820-cbaf85280afb}\conime.exe
%Temp%\{3affd7f7-fd3d-4c9d-8f83-03296a1a8840}\conime.exe
%Temp%\{3cd1a41c-be30-4022-8481-5cc21933a460}\conime.exe
%Temp%\{3e9d340b-d614-4854-ae06-4218201f6aae}\conime.exe
%Temp%\{3fe20a68-5f78-4cf1-a941-3aaa55de4c9d}\conime.exe
%Temp%\{406f93f0-c228-4a5c-ac2c-c366ada572c1}\conime.exe
%Temp%\{486e390a-7713-433f-a882-8b52263e595a}\conime.exe
%Temp%\{5439259c-7473-4efd-a60a-a01d101047b9}\conime.exe
%Temp%\{565fe2e0-7b46-46eb-9d83-3b2dc5934bcc}\conime.exe
%Temp%\{5cae37e7-ff3d-4c1e-b801-abcb2b83149e}\conime.exe
%Temp%\{6226ba26-c017-4007-928c-de9715c6fa67}\conime.exe
%Temp%\{62ab8984-8b0b-42f7-a2b2-27b5fc92ddcc}\conime.exe
%Temp%\{63ab11bc-39b6-4002-a127-6884e2c507fb}\conime.exe
%Temp%\{6ae02e1c-8859-4f57-9097-5a55a56a4caf}\conime.exe
%Temp%\{6cd56c02-cb4d-41b5-a0fe-b479061ccb41}\conime.exe
%Temp%\{6d53adb7-6ad5-4a59-bfe4-7b57d2f4aa89}\conime.exe
%Temp%\{749e89cc-187b-4f00-9e99-49bb7ddae0d7}\conime.exe
%Temp%\{77fbf9b8-1d37-4ff2-9ced-192d8e3aba6f}\conime.exe
%Temp%\{7ac2d5c8-d2c9-4055-b5ae-3542d4464a08}\conime.exe
%Temp%\{7ae4d099-43c2-4964-ac6a-c7bfa8a1aa55}\conime.exe
%Temp%\{84a6aea7-c34b-4246-9a00-05ad7a36bf00}\conime.exe
%Temp%\{89e551a3-c402-4f52-ad12-fd6d3bc69cc2}\conime.exe
%Temp%\{973885cd-25ca-4848-a6a6-a4cbb4f01a04}\conime.exe
%Temp%\{a3dce8c1-168a-4dfb-9111-173392989b40}\conime.exe
%Temp%\{a95ffea0-8321-417b-8015-59aeb292c2ce}\conime.exe
%Temp%\{aa01d2e3-6c81-4266-aa54-a912697110e2}\conime.exe
%Temp%\{aadb89b3-7e7d-461e-bbf7-eb5437e27670}\conime.exe
%Temp%\{ab455519-4e14-498b-a0a9-7dcef42440fc}\conime.exe
%Temp%\{abc1ae48-81f2-4dfc-8ad1-b955b1018e4f}\conime.exe
%Temp%\{ac33f678-1fe3-4896-ab82-0bf8248b1086}\conime.exe
%Temp%\{adc54a5c-84a3-4e95-ad19-4d7195deaf54}\conime.exe
%Temp%\{b6925de0-c836-4eb5-b0d6-64bb7b202f63}\conime.exe
%Temp%\{b7d3e479-cc68-42b5-a338-938ece35f419}\conime.exe
%Temp%\{b95615bc-7ca4-4e0c-9357-e9750d836704}\conime.exe
%Temp%\{bd328e49-38ab-42cb-8eea-73aa4cd2a6fd}\conime.exe
%Temp%\{bf3888f1-d74e-4209-b923-a2c3cee67abe}\conime.exe
%Temp%\{bfb5f154-9212-46f3-b547-ac6106030a54}\conime.exe
%Temp%\{c1642ca3-dcac-49a4-8c78-f0853bbb1357}\conime.exe
%Temp%\{c1e68079-1b2c-41d7-a3c2-be82e570251e}\conime.exe
%Temp%\{c4e22bd4-1a16-4e0a-aeaa-43d91a30a345}\conime.exe
%Temp%\{ced562ec-239d-460c-924e-283e501b3fd7}\conime.exe
%Temp%\{d04021bd-c472-4364-9e86-2d8bb7c51e78}\conime.exe
%Temp%\{d0523bb4-21e7-11dd-9ab7-415b56d89593}\conime.exe
Notes:
  • %AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
  • %CommonFavorites% is a variable that refers to the file system directory that serves as a common repository for all users' favorite items. A typical path is C:\Documents and Settings\All Users\Favorites (Windows NT/2000/XP).
  • %CommonPrograms% is a variable that refers to the file system directory that contains the directories for the common program groups that appear on the Start menu for all users. A typical path is C:\Documents and Settings\All Users\Start Menu\Programs (Windows NT/2000/XP).
  • %FontsDir% is a variable that refers to a virtual folder containing fonts. A typical path is C:\Windows\Fonts.
  • %ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).

The file "conime.exe" has the following possible country of origin:
OriginNumber of Incidents
China26

The following threats are known to be associated with the file "conime.exe":
Threat AliasNumber of Incidents
Mal/Behav-204 [Sophos]100
Downloader [Symantec]60
Suspicious.MH690 [Symantec]53
Trojan.Generic [Ikarus]43
Generic.dx [McAfee]37
Trojan-Dropper.Agent [Ikarus]31
Trojan-Clicker.Win32.Agent.esx [Kaspersky Lab]25
Trojan-Dropper.Win32.Agent.ahot [Kaspersky Lab]21
Exploit:Win32/MS08067 [Microsoft]20
Infostealer [Symantec]15
PWS-QQRob [McAfee]15
Generic Exploit [McAfee]10
Mal/Generic-A [Sophos]10
Trojan-Dropper.Win32.Agent.ahgs [Kaspersky Lab]10
Trojan-PSW.Win32.QQPass.jh [Kaspersky Lab]8
TSPY_QQPASS.BXM [Trend Micro]7
Bloodhound.Unknown [Symantec]6
Trojan-Clicker.Agent!sd6 [PC Tools]5
Trojan-PSW.Delf!sd5 [PC Tools]5
Trojan-PSW.QQPass!sd5 [PC Tools]5
Trojan-PSW.Win32.Delf.vb [Kaspersky Lab]5
Win32.Drowor.Gen [PC Tools]5
Backdoor:Win32/Heloag.A [Microsoft]4
Downloader-BYA [McAfee]4
Generic PWS.y [McAfee]4
Mal_MLWR-1 [Trend Micro]4
New Malware.n [McAfee]4
Trojan-Downloader.Win32.Agent.cqnw [Kaspersky Lab]4
Trojan-PSW.Win32.Delf.alw [Kaspersky Lab]4
W32/HLLP.Philis [McAfee]4
Downloader.gen.a [McAfee]3
Mal/Emogen-F [Sophos]3
Trojan.PWS.QQPass [Symantec]3
Trojan.PWS.QQPass.ACC [PC Tools]3
Trojan.Win32.Agent [Ikarus]3
Trojan-PSW.Win32.QQPass.uj [Kaspersky Lab]3
Backdoor.Paproxy [Symantec]2
Downloader.Generic [PC Tools]2
Generic Proxy [McAfee]2
Mal/Dropper-O [Sophos]2
PWS-QQPass [McAfee]2
Spy-Agent.cp.dr [McAfee]2
Troj/CHMDrop-B [Sophos]2
TROJ_PROXY.ABL [Trend Micro]2
Trojan.PWS.Delf.WOM [PC Tools]2
Trojan.PWS.OnLineGames.COX [PC Tools]2
Trojan:Win32/Malagent [Microsoft]2
Trojan-Downloader.Win32.Small.eyz [Kaspersky Lab]2
TrojanProxy:Win32/Agent.AYY [Microsoft]2
Trojan-PSW.Win32.Agent.aap [Kaspersky Lab]2
Win-Trojan/Agent.24582 [AhnLab]2
WORM_QQPASS.BRV [Trend Micro]2
Adware.StartPage [PC Tools]1
Adware.StartPage [Symantec]1
Backdoor.Graybird [Symantec]1
Backdoor.Win32.Hupigon.axbr [Kaspersky Lab]1
Backdoor:Win32/Hupigon [Microsoft]1
BackDoor-AWQ [McAfee]1
Email-Worm.Win32.Runouce.b [Kaspersky Lab]1
Generic Downloader.x [McAfee]1
Generic Downloader.z [McAfee]1
JS.Chir.B [PC Tools]1
Mal/Behav-024 [Sophos]1
Mal/Behav-024, Mal/Heuri-E [Sophos]1
Mal/Hupig-E, Mal/GrayBird-B, Mal/Behav-043 [Sophos]1
PE_CEKAR.B-O [Trend Micro]1
PE_Chir.B [Trend Micro]1
TROJ_DLOADER.PZZ [Trend Micro]1
TROJ_DLOADER.SVJ [Trend Micro]1
TROJ_QQPASS.BSG [Trend Micro]1
Trojan Horse [Symantec]1
Trojan.DL.Small.WBF [PC Tools]1
Trojan.KillAV [Symantec]1
Trojan.PWS.QQPass.AEL [PC Tools]1
Trojan.Win32.Agent.avui [Kaspersky Lab]1
Trojan.Win32.Agent.azxb [Kaspersky Lab]1
Trojan.Win32.Agent.bfjh [Kaspersky Lab]1
Trojan-Clicker.Win32.VB [Ikarus]1
Trojan-Clicker.Win32.VB.dca [Kaspersky Lab]1
Trojan-Downloader.Win32.Agent.aqex [Kaspersky Lab]1
Trojan-Downloader.Win32.Agent.baz [Kaspersky Lab]1
TrojanDownloader:Win32/Cekar.gen!A [Microsoft]1
Trojan-Dropper.Win32.Agent.cwc [Kaspersky Lab]1
Trojan-Dropper.Win32.Microjoin.gp [Kaspersky Lab]1
Trojan-Proxy.Win32.Agent.AY [Ikarus]1
Trojan-PSW.Win32.QQPass.uu [Kaspersky Lab]1
TSPY_DELF.EXA [Trend Micro]1
TSPY_LDPINCH.BED [Trend Micro]1
TSPY_QQPASS.BBS [Trend Micro]1
W32/Chir.b@MM [McAfee]1
Win-Trojan/Xema.variant [AhnLab]1
Worm.Win32.Delf.bg [Kaspersky Lab]1