PCMech Forums - View Single Post

Statica · 03-26-2001, 07:14 PM

TROJ_MTX.A has a trasmitted file called jimi_hendrix.mp3.vbs

There are other manifestations of the virus as well.

First confirm its MTX by going to:
http://housecall.antivirus.com/housecall/start_corp.asp for an online scan if possible

MTX remover [ http://www.antivirus.com/vinfo/security/fix_mtx.exe ] will remove it automatically, if it cant be downloaded use these guidelines.

Directions:
Remove the following registry keys using regedit
HKEY_LOCAL_MACHINE\Software\[MATRiX]
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
SytemBackup="c:\windows\mtx_.exe'

Delete the files .. they should be hidden so you have to unhide them.
IE_PACK.EXE
WIN32.DLL
MTX_.EXE

Delete WSOCK32.DLL and load a fresh copy from your WINDOWS installation CD.

[Edited by Statica on 03-26-2001 at 08:17 PM]

03-26-2001, 07:14 PM	#2
Statica Premium Member Join Date: Jun 1999 Posts: 9,231	Sounds like TROJ_MTX.A has a trasmitted file called jimi_hendrix.mp3.vbs There are other manifestations of the virus as well. First confirm its MTX by going to: http://housecall.antivirus.com/housecall/start_corp.asp for an online scan if possible MTX remover [ http://www.antivirus.com/vinfo/security/fix_mtx.exe ] will remove it automatically, if it cant be downloaded use these guidelines. Directions: Remove the following registry keys using regedit HKEY_LOCAL_MACHINE\Software\[MATRiX] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run SytemBackup="c:\windows\mtx_.exe' Delete the files .. they should be hidden so you have to unhide them. IE_PACK.EXE WIN32.DLL MTX_.EXE Delete WSOCK32.DLL and load a fresh copy from your WINDOWS installation CD. [Edited by Statica on 03-26-2001 at 08:17 PM]