Home › Forums › Support Forum › Qtox readme.mds › Reply To: Qtox readme.mds
I am reluctant to classify those readme files as malware because there is not actually and malicious code in them. They are in fact just text files with, as you say, a ransom note and contact details from the hacker. As these details may vary in content and could also provide forensic evidence or leads for the victims and/or law enforcement to follow up on, I feel it would not be my place to arbitrarily and automatically delete this potentially useful info. These files are also very similar to the log/trace evidence that is characteristically left behind by many AI Agents after live actions have been taken on behalf of a user that is delegating tasks to Agents, and it would seem important to not accidentally remove such records from a user’s site in case they needed to audit they agents actions. In fact, I would not doubt that an AI agent might have been used in some part of the hack that you suffered. Also, if you are not wanting to make use of any of this evidence and simply need to clean up all these scattered README.md files, it would be far simpler and faster to use the find command with the –delete option to get rid of all those files. 😉
