1.    10 Nov 2017 #1
    Join Date : Oct 2016
    Posts : 38


    Hi all,

    Was running a Full System Scan with AV software and detected the following malware:


    It's described by Microsoft as a 'high' threat piece of Malware.

    The AV claimed to have 'partially removed' it.

    Is anyone very familiar with this particular piece of Malware? Where it installs itself and what it does? I'm only asking to help confirm its removal and increase my understanding of malware/viruses/hacking as a whole to better protect myself.
      My ComputerSystem Spec
  2.    10 Nov 2017 #2
    Join Date : Oct 2014
    In a house with a crazy cat trying to kill me
    Posts : 18,045
    Win 7 32, Win 7 64 Pro, Win 8.1 64 Pro, Win 10 64 Education Edition

    If it only partially removed it, that probably means it's spread out all over the system in pieces in various files. Partial removal may have also occurred because the malware process was running in the background, preventing full removal.

    D/L & run Malwarebytes, the free version will work fine.

    Also wouldn't hurt to run AdwCleaner.

    If those have problems removing it, d/l & run RKill to try to terminate the malware processes. After running RKill, DO NOT reboot your computer, instead immediately scan with you malware scanners.

    In fact, you may wish to go ahead & run it first anyway to insure more of a success for the malware scanners.
      My ComputerSystem Spec
  3.    10 Nov 2017 #3
    Join Date : Jul 2016
    Crewe Cheshire
    Posts : 1,632
    windows 10

    You need to reset your browser to totally remove it Remove BrowserModifier:Win32/KipodToolsCby (Virus Removal Guide)
      My ComputerSystem Spec
  4.    10 Nov 2017 #4
    Join Date : Apr 2015
    Posts : 13,282

    Samuria is correct. You need to reset all browsers on the system, whether you use them all or not.

      My ComputerSystem Spec
  5.    11 Dec 2017 #5
    Join Date : Oct 2016
    Posts : 38
    Thread Starter

    Malwarebytes doesn't ever seem to find any Malware/Viruses/Trojans/etc. It's very strange. Had a subscription with them for a very long time. Hopefully that's a good thing.
      My ComputerSystem Spec
  6.    11 Dec 2017 #6
    Join Date : Oct 2014
    Posts : 422
    Win 10 Home Build 1709 16299.125 64bit

    Thelps - What is your current AV that found the malware ? Just curious of one that did its job.
      My ComputerSystem Spec


Similar Threads
Thread Forum
Dark Mode Win32 theme for Windows 10?
Hi. I just wanna ask if it's possible to make a Windows theme (that applies to Win32 apps and UI) that shows the white background of those dialogs, windows, tooltips and any other else as black, and text, button the opposite. Like the High contrast...
Customization Enable or Disable Win32 Long Paths in Windows 10
How to Enable or Disable Win32 Long Paths in Windows 10 by default, the maximum path length limit in Windows is 260 characters. A local path is structured in the following order: drive letter, colon, backslash, name components separated by...
DoNotSpy10 - Win32/FusionCore.I
Hi, When I am trying to download DoNotSpy10 - NOD32 Antivirus says Win32/FusionCore.I so I choose to Disconnect the Download. Is it safe to use DoNotSpy10 with Win32/FusionCore.I ? Thank you.
AntiVirus, Firewalls and System Security
aspi for win32 is not installed correctly
Getting a weird error with an old piece of disc software on my Windows 10 64-bit PC. It says, "aspi for win32 is not installed correctly". aspi32.sys is in my sysWOW64 folder but not my system32 folder. From a quick search it seems ASPI is...
General Support
Tablet mode keyboard doesn't display with Win32 apps
In Win 8.x when using win32 apps in tablet mode, there was an icon to force the keyboard to display, this is gone in Windows 10, anybody know how to get the keyboard to display?
General Support
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 17:19.
Find Us
Twitter Facebook Google+ Ten Forums iOS App Ten Forums Android App

Windows 10 Forums