Infected with Win32:Monder-V [Trj]

Avast home 4.8.1201
Today, a manually initiated “standard” scan turned up two instances of the Win32:Monder-V [trj] trojan, both in files in the IE cache (I almost never use IE, I use Firefox and sometime IETab in FF). Both files were moved to the chest. Here is the info:

F:\IE Cache\Temporary Internet Files\Content.IE5\99EEJADZ\idkfa[1] [L] Win32:Monder-V [trj] (0)
File was successfully moved to chest…
F:\IE Cache\Temporary Internet Files\Content.IE5\D70WDO8O\glas[1] [L] Win32:Monder-V [trj] (0)
File was successfully moved to chest…

I’ve done some googling but nothing much is turned up. “Monder-V” doesn’t show up in searches of the avast forums.

Does anyone have any info about this virus/trojan?

What could this thing do sitting in the IE cache?

Is moving the infected files to the chest enough to remove/deactivate it? Or is more action needed?

Thanks,
Larry


The chest is a protected safe area where malwear can do no harm. These can do no harm while in the chest and it is safe to leave them there of you want to do so.

Since these were also in Temporary Internet Files, this indicates that you do not have IE set to automatically delete these temporary files.

Here is how to do this in IE :

Click on Tools > Internet Oprions > Advance tab > scroll down to Security section > click the box next to “Empty Temporary Internet files folder when browser is closed” if not already check marked > click on Apply > click on OK


I would run avast at boot time and, if you can, other antispyware tools (like SuperAntispyware, Malwarebytes or SpywareTerminator).