Topic: Qtox readme.mds – Download this free Anti-Malware Plugin for WordPress.

This topic contains 2 replies, has 2 voices, and was last updated by Anti-Malware Admin 13 hours, 39 minutes ago.

Viewing 3 posts - 1 through 3 (of 3 total)

Author

Posts
May 1, 2026 at 9:07 pm #172202
Patrick O’Brien
Member
Please contact us through the qtox tool

Hi,

I am currently working on cleaning up a hacked site of a mate (some hacklinkmarket SEO injection). He received ransomware emails and every single folder on the server has a README.me with the following text:

Download qtox [URL Redacted for security reasons]
If you can’t contact us, please contact some data recovery company(suggest taobao.com), may they can contact to us.
Add our TOX ID and send an encrypted file and ‘Sorry-ID’ for testing decryption.
Our TOX ID: [ID removed]

Wanted to point it out and also ask if it can be included in the definitions. GOTMLS didn’t pick it up.

Thanks 🙂
- This topic was modified 13 hours, 44 minutes ago by Anti-Malware Admin. Reason: URL Redacted for security reasons
May 2, 2026 at 8:15 am #172212

Anti-Malware Admin
Moderator

If I understand you correctly, you want me to add the text contents of these readme files to my malware definition list so that they can be easily cleaned up with my plugin, is that right?

These look like calling cards or ransom notes, not malicious code. Is it not easier to use the “find –delete” command on these files once the treat has been removed.

More importantly, is the threat itself found and automatically fixed by my plugin?

May 2, 2026 at 8:22 am #172215

Anti-Malware Admin
Moderator

I removed the link in that text for security reasons. Please send me any malicious files (complete and unedited) directly via email so I can see the full original threat in those files as well as any potentially benign content that might have been added to disguise the threat or may have been there before the malicious content was injected.
Author

Posts