See the information below:
http://vil.nai.com/vil/content/v_100683.htm
"The 5409 DAT files contain an incorrect identification on PWS-LegMir. McAfee Avert Labs have released DAT 5410 to correct this issue. The false detection is being seen on the following file:
* conime.exe - Windows Vista console IME (MD5: F96EBC5A624349D81DCC7600A3C5DC43) "
______________
If you're running the current "retail" versions of VirusScan, follow the instructions below to fix the issue:
Download extra.dat from www.mvrsupport.com/extra.zip & save it to the desktop
Extract extra.zip to C:\Program Files\McAfee\Virus Scan\DAT\5409.0\
Restart the system
Check if conime.exe is present in System32 folder
If it is not found, download the same from www.Mvrsupport.com/conime.zip and extract it to system32 folder.
If you're using a corporate version of VirusScan, simply download the newest Superdat or XDat file from the link below and manually update your machines.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp?region=us&segment=enterprise
Hope this helps.
Grif
Another fine mess
By John Leyden
21st October 2008
McAfee has fixed an update glitch that wrongly slapped a Trojan classification on components of Microsoft Vista.
As a result of a misfiring update, published on Monday, the Windows Vista console IME executable was treated as a password-stealing Trojan. Depending on their setup, McAfee users applying would have typically found the component either quarantined or deleted.
More: http://www.theregister.co.uk/2008/10/21/mcafee_vista_trojan_false_alert/
Chowhound
Comic Vine
GameFAQs
GameSpot
Giant Bomb
TechRepublic