http://www.bleepingcomputer.com/startups/mouse.exe-11146.html I saw a process running (mouse.exe), saw my computer sending LOTS of data out every time I was connected to the internet, did a google search, found the page at top and followed the removal link on the page, downloaded Autoruns, deleted startup item, mouse.exe, ran Spyware Doctor (scan only) after and still found the registry entry at HKLM\Software\Microsoft\Windows\Current version\RunServices##mouse. Did a regedit from run and it's still there. Here's my question: through regedit, should I delete this entry in the registry? Another question: could this kill my network? I can access files on the client comp, but can't access host computer from client... Thx for the help.

robber2, download Ewido's trial version from this link Ewido Security Suite (not the beta version at the bottom left of the page) then set it up this way Ewido Setup Instructions then reboot into Safe Mode Or you can use killbox as I posted to the wrong poster(which was suppossed to be you) at this link in response #2 ooops

so while i'm in regedit can i just right click delete that ##mouse entry?

You should run ewido to make sure that mouse.exe is actually a virus, it will identify it.You can delete the entry in the registry but if it is a virus that will not remove it,and will probably ony remove it from the registry for a few minutes, and should it be legit your mouse may fail next time you start the computer.

ran ewido - couldn't find mouse.exe in registry (or didn't think it was a virus/trojan), but it's certainly in the place that http://www.bleepingcomputer.com/startups/mouse.exe-11146.html indicates it would be, i was just wondering if it's NOT UNSAFE to leave it there or if i should delete that registry entry. i'll see if more advice comes in. thank to all for your help so far.

p.s. ran Spyware Doctor (scan only) after and still found the registry entry at HKLM\Software\Microsoft\Windows\Current version\RunServices##mouse. Did a regedit from run and it's still there, too. hmmm...

robber2,You can use Hijack This to get rid of it. You can download Hijack This at this link http://www.tomcoyote.org/hjt/ then place it into a folder of it's on, such as C:\HJT, so that back up copies can be made and not clutter your desktop or other folders and the backup copies of deleted items can be easily located if needed. Once saved double click HijackThis.exe, and press "Scan". When the scan is finished,close all windows and browsers (except HT) then place a check in the box to the left of the following item and press "fix checked": O4 - HKLM\..\Run: [mouse] mouse.exe Remember, HT is a powerful tool so use it carefully.