How to remove TR/ATRAP.Gen2 virus that detected by Avira Antivirus? I kept getting a pops up with this virus from Avira firewall alert. And it didn’t clean it out, i have tried Microsoft Security Essentials software and it found nothing. Every time i boot up my computer and log in windows, i receive this warning, it is crazy! please help me!!

Complete TR/ATRAP.Gen2 Virus Information & Characteristics

The TR/ATRAP.Gen2 virus is a Trojan attack that has been giving consumers troubles for a considerable period of time. It is designed to damage computer files in an attempt to steal money. The first thing that the TR/ATRAP.Gen2 virus does is to change files on the computer in an attempt to remain undetected by antivirus software. It then begins to share system information that makes the computer accessible to online crooks and criminals and allows them to obtain sensitive personal information and data. Lastly, the TR/ATRAP.Gen2 virus completely disables the antivirus and turns off the firewall through the modification of key registries. This makes the users computer 100% accessible and vulnerable to an attack and purge of data.

When the TR/ATRAP.Gen2 virus is installed it will allow the hacker to have remote access to the computer and steal data stored on the computer, modify or delete any file on the computer, recording of keystrokes which can lead to password theft and the access of sensitive information such as banking details, which can lead to the hackers emptying out accounts. The hackers can also use machines for spamming activities that they have access to. Once they gain access there are endless amounts of ways they can make your life a headache.

Special tips: How do you delete this Trojan horse safely and permanently? Manual removal is suggested here as it is a guaranteed complete removal. Contact YooSecurity Online PC Expert to get further help in removing Trojan infection.

The TR/ATRAP.Gen2 virus is also know by the following names as well:

Trojan.FraudPack.cipn

TrojanDownloader:Win32/Waledac.C

Trojan.DownLoad.41551

Trojan-Downloader.Win32.Agent.fdim

TR/Drop.Ag.amr

Trojan.Generic.5151805

WORM_JOLEEE.ZA

Generic.dx!urw

Trojan.Win32.Generic.pak!cobra

The TR/ATRAP.Gen2 virus can also download malicious files from remote ftp servers without being detected. These files are then installed and executed without the computer owner knowing. The entire process is done without the computer owner authorization since the virus has complete control and access of the computer.

Why Is The ATRAP.Gen2 Virus So Hard To Remove For You?

Computer worms don’t integrate into a host file and don’t depend on the execution of the host file to duplicate themselves. A TR/ATRAP.Gen2 virus worm can send a copy form the infected computer to other systems and computer networks through the local network, user shared networks, IRC messaging channels, email, SMS text messaging, and even through Bluetooth devices. The ATRAP.Gen2 virus can be spread through virtually every wireless network imaginable without the user ever being aware.

Steps on How to Get Rid of TR/ATRAP.Gen2 Virus

Firstly, you had better to restart your infected computer and get in safe mode with networking by pressing F8 Key constantly.

safe mode with networking for Windows XP Vista and Win 7

Step 1: Open Windows Task Manager to end all processes generated by the virus. Hold down the Ctrl+Alt+Del keys at the same time or right click on Task Bar and select Start Task Manager.
taskmanager

Step 2: Show hidden files. Go to Folder Options from Control Panel. Under View tab, uncheck Show hidden files and folders and non-select Hide protected operating system files (Recommended) then click OK.
FolderOptions

Step 3: Go to Registry Editor. First press Windows+R keys and then type regedit in Run box to run it. Delete all the following or those related to the following files and registry entries:
Run+regedit

%AllUsersProfile%\Application Data\random letters
C:\windows\system32\services.exe\”Random”
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Random letters
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System “DisableRegedit”
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\{rnd}=disable
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\Random.exe

Video on How to Modify or Change Windows Registry

Conclusion

Since the TR/ATRAP.Gen2 virus is delivered in a compressed file it bypasses many of the security checks that virus programs contain, as the compressed file prevents many of them from analyzing the files contained in the compressed format. These packing techniques are used by hackers not just in the TR/ATRAP.Gen2 virus, but also in several other computer viruses. And you have absolutely NO problem with this virus if you got support with expertise.

Note: Still having problems with your computer after every reboot? Don’t know how to permanently remove TR/ATRAP.Gen2 virus from your computer? Contact Online PC Expert to get help from professionals online if you failed to do it.

Published by Tony Shepherd & last updated on February 22, 2013 8:10 am

Leave a Reply