Aliases: W32/Backdoor.ARXT-7998 (Command) Backdoor.Win32.Tofsee.ag (Kaspersky) winpe/Suspicious_Gen3.OCHI (Norman) Gen:Trojan.Heur.LP.aq4@aGmr6rg (BitDefender)
Windows Defender detects and removes this threat.
This threat installs web browser plugins that can be used for a number of malicious activities on your PC. This can include stealing your sensitive information, Bitcoin mining, and sending spam emails.
It is installed by other malware in the Win32/Tofsee family.
Use the following free Microsoft software to detect and remove this threat:
You should also run a full scan. A full scan might find other hidden malware.
Get more help
If you’re using Windows XP, see our Windows XP end of support page.