>> harvested from malware... contained; vwfws4obovm2cydl.onion >> It contained a script file named; poclbm120222.cl
> So from what it seems, the malware included a bitcoin miner > that perhaps is to report found blocks .... to ... this site in question. And surely the contents of any wallet it finds on the system too :) You'd have to take the package apart to find if/how the onion is used. There are any number of security lists dedicated to that. Or simply write it off, zero out the system and start over. Onions cannot be identified or shutdown, if that's what you're asking. _______________________________________________ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
