Windows 10: Win32:KipodToolsCby

  1.    10 Nov 2017 #1


    Hi all,

    Was running a Full System Scan with AV software and detected the following malware:


    It's described by Microsoft as a 'high' threat piece of Malware.

    The AV claimed to have 'partially removed' it.

    Is anyone very familiar with this particular piece of Malware? Where it installs itself and what it does? I'm only asking to help confirm its removal and increase my understanding of malware/viruses/hacking as a whole to better protect myself.
      My ComputerSystem Spec

  2. Borg 386's Avatar
    Posts : 21,219
    Win 7 32, Win 7 64 Pro, Win 8.1 64 Pro, Win 10 64 Education Edition
       10 Nov 2017 #2

    If it only partially removed it, that probably means it's spread out all over the system in pieces in various files. Partial removal may have also occurred because the malware process was running in the background, preventing full removal.

    D/L & run Malwarebytes, the free version will work fine.

    Also wouldn't hurt to run AdwCleaner.

    If those have problems removing it, d/l & run RKill to try to terminate the malware processes. After running RKill, DO NOT reboot your computer, instead immediately scan with you malware scanners.

    In fact, you may wish to go ahead & run it first anyway to insure more of a success for the malware scanners.
      My ComputerSystem Spec

  3.    10 Nov 2017 #3

    You need to reset your browser to totally remove it Remove BrowserModifier:Win32/KipodToolsCby (Virus Removal Guide)
      My ComputerSystem Spec

  4.    10 Nov 2017 #4

    Samuria is correct. You need to reset all browsers on the system, whether you use them all or not.

      My ComputerSystem Spec

  5.    11 Dec 2017 #5

    Malwarebytes doesn't ever seem to find any Malware/Viruses/Trojans/etc. It's very strange. Had a subscription with them for a very long time. Hopefully that's a good thing.
      My ComputerSystem Spec

  6. Posts : 562
    Win 10 Pro, 18219 (Skip) 64bit
       11 Dec 2017 #6

    Thelps - What is your current AV that found the malware ? Just curious of one that did its job.
      My ComputerSystem Spec


Related Threads
Hi. I just wanna ask if it's possible to make a Windows theme (that applies to Win32 apps and UI) that shows the white background of those dialogs, windows, tooltips and any other else as black, and text, button the opposite. Like the High contrast...
How to Enable or Disable Win32 Long Paths in Windows 10 by default, the maximum path length limit in Windows is 260 characters. A local path is structured in the following order: drive letter, colon, backslash, name components separated by...
DoNotSpy10 - Win32/FusionCore.I in AntiVirus, Firewalls and System Security
Hi, When I am trying to download DoNotSpy10 - NOD32 Antivirus says Win32/FusionCore.I so I choose to Disconnect the Download. Is it safe to use DoNotSpy10 with Win32/FusionCore.I ? Thank you.
Getting a weird error with an old piece of disc software on my Windows 10 64-bit PC. It says, "aspi for win32 is not installed correctly". aspi32.sys is in my sysWOW64 folder but not my system32 folder. From a quick search it seems ASPI is...
In Win 8.x when using win32 apps in tablet mode, there was an icon to force the keyboard to display, this is gone in Windows 10, anybody know how to get the keyboard to display?
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 06:18.
Find Us