I first searched for complaints about Prevx and its programs and found no serious ones. So I downloaded the free Prvx CSI and scanned my computer.
These are the two infections/threats the Prevx software found.
? ROOTKIT ? c\windows\system32:hgtray.exe = Hidden data
? THREAT - \Registry\Machine\Software\Microsoft\Active Setup\Install . . . =Infected Entry: StubP . . . (cannot read remainder of screen information)
Notice that neither warning specifically mentions ?Pservermouse? which is my original problem.
Without purchasing the full Prevx program to remove these two findings, is there another way I can get rid of these to see if that clears up the Pservermouse problem? Or better still, is there a well known fix for that Pservermouse problem?
Beginning yesterday, when I plug in my flash drive into my computer and try to open it, I receive an error message ?Windows cannot find ?Pservermouse.exe??.
Using AVG 8.0, I scanned and cleaned my desktop, my flash drive, and a laptop. All were then clean. Then I tried again to open the flash drive but I still got the error message about Pservermouse.exe.
I Googled ?pservermouse? and found reports that it is a virus or worm. What makes me suspicious of this whole episode is that:
(1) AVG didn?t pick up the virus.
(2) Many of the Google returns are from local writers in Indonesia. I haven?t seen many international stories from the Google search about this virus.
(3) Some of the first search hits I read ask me to change my registry or download some new software to clean the pservermouse virus. This immediately makes me suspicious that the ?pservermouse? is a ruse to further infect or screw up my computer.
(4) A search of this CNET forums site has no mention of this virus.
Below are different web site stories about this virus/worm.
(1) The following one is from the Prevx Website. At first look the site looked almost ?too good? - like a medical clinic?s site - <http://www.prevx.com/filenames/283307765581222041-0/PSERVERMOUSE.EXE.html>
Further, it offers a free, downloadable program to remove the worm. This made me suspicious that the whole virus scene was a ruse to have me further infect my new computer. This is what this Prevx anti-virus web site said--
The filename is associated with the malware groups:
* Cloaked Malware
PSERVERMOUSE.EXE has been seen to perform the following behavior:
PSERVERMOUSE.EXE has been the subject of the following behavior:
* Added as a Registry auto start to load Program on Boot up
Country Of Origin
The filename PSERVERMOUSE.EXE was first seen on Mar 11 2008 in the following geographical regions of the Prevx community:
* SPAIN on Mar 11 2008
* INDONESIA on Mar 11 2008
* MALAYSIA on Oct 25 2008
File Name Aliases
PSERVERMOUSE.EXE can also use the following file names:
Files using the name PSERVERMOUSE.EXE have been seen with the following file size:
* 551,424 bytes
Vendor, Product and Version Information
These files have no vendor, product or version information specified in the file header.
(2) This is one local fix I read--
The filename PSERVERMOUSE.EXE refers to many versions of an executable program.
1. go to safe mode, by pressing F8 on computer boot-up. then download repair.inf which will un hide the file containing ?pservermouse.exe?.
2. then search for ?pservermouse.exe? all over your computer on all drive try to lookfor a while since they hide in a lot of places (depends on the infection).
3. open regedit (windows key -> run -> type ?regedit? , then you should search in all category of any suspicious registry which contains ?pservermouse? try to search several times until you are sure that n registry contains ?pservermouse?.
4. restart the computer then try to search the ?pservermouse.exe? on the system ( but this time under windows running normally, NOT safemode.)
5. Reinstall your antivirus and update them regularly to minimized threat of this virus.
My computer is only 2 days old running XP and the HDD is still almost empty. The HDD is partitioned in two: one for operating system and programs and the second for data.
What should I do? Thanks.