I fear I may be infected by a trojan/rootkit. Sometimes I notice strange mouse behaviour that can be very annoying, specially when playing FPS games.
I don’t know if this altered mouse behaviour is been done “live” by a remote attacker or it’s scripted. Does anyone know how could I trace calls to operating system functions used to move the mouse?. I suppose that detecting a malware script that moves the mouse randomly at sometime (hardly noticeable) can be hardest than detecting an executable trojan.
This is probably not malware activity. However, to be sure please follow the advice I give in How to Know If Your Computer Is Infected and let me know what you find.
I’ve followed the advice and I haven’t found any serious threat. The only odd behaviour I’ve seen is killSwitch stucked in “Analyzing” state for process CTAudSvc.exe. This process is installed with the drivers of my Creative audio card, and this link Answersthatwork.com claims it serves no purpose. I’ve killed the process and my PC audio remains working perfectly.
Anyway, do you know about some program I could use to trace calls to Windows mouse API?. I’m speaking about something similar to Process Monitor but regarding mouse API calls.
Thanks for your help.
I’m not sure about that. Hopefully someone else can assist you in that regard.
It’s possible this is caused by the driver for your mouse. Please ensure that all relevant drivers are up to date.