This morning AVG found the cisvc.exe in the C:\WINDOWS\System32 folder and the C:\WINDOWS\System32\dllcache folder (not sure about the dllcache but it is not on my computer or was hidden). It was found and deleted from 2 spots with popup warning that certain windows files were replaced with unrecognized ones(undoubtedly from having to delete the process file cisvc.exe) and I was asked to put in the Windows CD to replace them.
The virus it was found to have is the trojan "dropper.agent.8.b" or something like that. I am just wondering if anyone has had that happen and know what it is. A while back AVG found my "hijack this" zip file and exe file to have some trojan after I had it on my computer forever. I am not sure how hijack this would have been infected or the cisvc.exe file as I had run a complete AVG scan the day before and found nothing and do not know of anything I could have done that was out of my normal routine.
Is this a sign of a bigger problem?
I run AVG, online panda software scan, trend microscan and bit defender and the only program to have found anything other than AVG is the panda scan. I have not had a chance to run those today because I am not at home.
If I insert the CD like it wants me to would it just put the 2 files that were deleted back?
I did not have a chance to make a Hi Jack this log (from the new one I got) but if that would help I can do that. At a first glance when I ran Hijack this after it deleted the files everything seemed normal. I had no weird entries just 02,03,04,09,16,23(I am pretty sure those numbers are right) which I have checked to be normal.
If anyone has had experience with this or have any suggestions please let me know. If a HiJack This log would help then I can post one. I would have already but had to head off to work so I am going from memory in case someone does recognize this and has a solution.
Thanks
PS Windows OS is Windows XP Home Edition if that helps.