'.MTXLOCK File Extension' Ransomware Description
The '.MTXLOCK File Extension' Ransomware is an encryption ransomware Trojan. There is practically nothing that differentiates the '.MTXLOCK File Extension' Ransomware's encryption method from many other encryption algorithms, and the '.MTXLOCK File Extension' Ransomware seems to be an updated version of the Matrix Ransomware, a ransomware threat reported for the first time in April 2018. The '.MTXLOCK File Extension' Ransomware variant was released shortly after, in the first week of May 2018. The '.MTXLOCK File Extension' Ransomware, like most encryption ransomware Trojans, uses a strong encryption algorithm to take the victim's files hostage, demanding the payment of a ransom if the victims want to have their files back to normal.
The Main Targets of the '.MTXLOCK File Extension' Ransomware are the User-Generated Files
The '.MTXLOCK File Extension' Ransomware scans the victim's files by connecting to its Command and Control server to be given instructions and relay information about the infected computer. The '.MTXLOCK File Extension' Ransomware scans the infected computer in search for the user-generated files, such as media files, databases, and numerous other document types. The '.MTXLOCK File Extension' Ransomware will then use the AES 256 encryption to make the victim's files inaccessible. A few of the file types that are commonly compromised in the event of infections like the '.MTXLOCK File Extension' Ransomware include:
.3dm, .3g2, .3gp, .7zip, .aaf, .accdb, .aep, .aepx, .aet, .ai, .aif, .as, .as3, .asf, .asp, .asx, .avi, .bmp, .c, .class, .cpp, .cs, .csv, .dat, .db, .dbf, .doc, .docb, .docm, .docx, .dot, .dotm, .dotx, .dwg, .dxf, .efx, .eps, .fla, .flv, .gif, .h, .idml, .iff, .indb, .indd, .indl, .indt, .inx, .jar, .java, .jpeg, .jpg, .js, .m3u, .m3u8, .m4u, .max, .mdb, .mid, .mkv, .mov, .mp3, .mp4, .mpa, .mpeg, .mpg, .msg, .pdb, .pdf, .php, .plb, .pmd, .png, .pot, .potm, .potx, .ppam, .ppj, .pps, .ppsm, .ppsx, .ppt, .pptm, .pptx, .prel, .prproj, .ps, .psd, .py, .ra, .rar, .raw, .rb, .rtf, .sdf, .sdf, .ses, .sldm, .sldx, .sql, .svg, .swf, .tif, .txt, .vcf, .vob, .wav, .wma, .wmv, .wpd, .wps, .xla, .xlam, .xll, .xlm, .xls, .xlsb, .xlsm, .xlsx, .xlt, .xltm, .xltx, .xlw, .xml, .xqx, .xqx, .zip.
The '.MTXLOCK File Extension' Ransomware also will erase the Shadow Volume Copies of the affected files and the System Restore points, making it difficult for the victims to use alternate means to restore access to their files after an attack.
The '.MTXLOCK File Extension' Ransomware's Ransom Demand
The '.MTXLOCK File Extension' Ransomware encrypts the files in a way that they are easy to recognize because they will be marked with the file extension '.MTXLOCK' and a contact email, such as RestoreFile@qq.com, 'RestoreFile@yahoo.com' or 'RestoreFile2018@gmail.com.' The '.MTXLOCK File Extension' Ransomware delivers a ransom note in the form of an RTF file, which it will drop on the infected computer's desktop. This file is named '#Decrypt_files_ReadMe#.rtf' and contains the following text:
'WHAT HAPPENED WITH YOUR FILES?
Your documents, databases, backups, network folders and other important files are encrypted with RSA-2048 and AES-128 ciphers.
More information about the RSA and AES can be found here:
h[tt]p://en.wikipedia[.]org/wiki/Advanced Encryption Standard
It means that you will not be able to access them anymore until they are decrypted with your personal decryption key! Without your personal key and special software data recovery is impossible! If you will follow our instructions, we guarantee that you can decrypt all your files quickly and safely!
You realy want to restore your files? Please write us to the e-mails:
In subject line of your message write your personal ID:
Unfortunately, once the '.MTXLOCK File Extension' Ransomware encrypts the files, they are no longer recoverable. However, PC security researchers strongly advise against following the instructions in the '.MTXLOCK File Extension' Ransomware ransom note or contacting the criminals responsible for the attack. Instead, it is important to take preemptive steps against threats like the '.MTXLOCK File Extension' Ransomware.
Preventing a '.MTXLOCK File Extension' Ransomware Attack
The best prevention against the '.MTXLOCK File Extension' Ransomware is to have file backups. A fully updated security program also is essential in keeping a clean machine. Since the '.MTXLOCK File Extension' Ransomware often spreads through spam email attachments, handling this content safely can avoid countless problems.
Do You Suspect Your PC May Be Infected with '.MTXLOCK File Extension' Ransomware & Other Threats? Scan Your PC with SpyHunterSpyHunter is a powerful malware remediation and protection tool designed to help provide PC users with in-depth system security analysis, detection and removal of a wide range of threats like '.MTXLOCK File Extension' Ransomware as well as a one-on-one tech support service. Download SpyHunter's FREE Malware Remover
Security Doesn't Let You Download SpyHunter or Access the Internet?Solutions: Your computer may have malware hiding in memory that prevents any program, including SpyHunter, from executing on your computer. Follow to download SpyHunter and gain access to the Internet:
- Use an alternative browser. Malware may disable your browser. If you're using IE, for example, and having problems downloading SpyHunter, you should open Firefox, Chrome or Safari browser instead.
- Use a removable media. Download SpyHunter on another clean computer, burn it to a USB flash drive, DVD/CD, or any preferred removable media, then install it on your infected computer and run SpyHunter's malware scanner.
- Start Windows in Safe Mode. If you can not access your Window's desktop, reboot your computer in "Safe Mode with Networking" and install SpyHunter in Safe Mode.
- IE Users: Disable proxy server for Internet Explorer to browse the web with Internet Explorer or update your anti-spyware program. Malware modifies your Windows settings to use a proxy server to prevent you from browsing the web with IE.
This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your PC. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.