TR/ATRAPS.Gen2

TR/ATRAPS.Gen2 is a generic detection to identify several Trojan or malware that shares the same characteristics. This detection method was created to classify threats that originates from the same group or families. As for last update (July 12, 2012), this Trojan is involved in spreading a hack tool that will generate revenue to the attacker. The detection method is expected to enhance as the Trojan develops.

Damage Level: Medium

Systems Affected: Windows 9x, 2000, XP, Windows Vista/7

Characteristics
TR/ATRAPS.Gen2 is a heuristic detection. As such, payloads may vary from one infection to another. There are no typical visible symptoms for this Trojan. However, most antivirus software will display an alert when encountering the illicit actions perpetuated by this threat.

Member of this family of Trojans are made with diverse sets of payloads. Thus, each variant have unusual effect on the PC. Some of the common actions it may initiate towards the infected computer are as follows:

  • TR/ATRAPS.Gen2 targets computer that visits explicit and other compromised web sites.
  • The Trojan can steal sensitive information from the infected computer.
  • It can also deactivate various Windows functions such as Registry Editor, Task Manager, and Folder Options.
  • The Trojan may help propagate rogue security applications and other malicious software.
  • It may connect to a distant computer to download additional malware.

Distribution
This kind of Trojan basically spread through infected web sites. In most occasions, TR/ATRAPS.Gen2 pretends as a coder/decoder (codec) that can be found on explicit web sites. Using a highly developed method, it often conceals itself from antivirus application. It has a tendency to end process that belongs to antivirus and firewall application. Moreover, TR/ATRAPS.Gen2 will drop several harmful files under Windows folder. However, the Trojan was not designed to spread locally via network transmission. 

Update antivirus program can block and delete TR/ATRAPS.Gen2 before it can infect a computer. Image below is a proof that antivirus program with real-time protection can prevent Trojan from infecting a system.

TR/ATRAPS.Gen2 Detection

You may also like...

6 Responses

  1. anomimius says:

    how i can delete

  2. Jason says:

    Our usual Microsoft will block us from deleting the file. Must be huge project, a collaboration between Microsoft and the Virus vendor to create havoc in windows world so that the PC users have to rely on Microsoft AV program such as McAffee to totally remove the virus from Windows.

    To remove the files/virus, got to buy 100% Micro~soft product including the AV program.

    Thanks

  3. anonimus says:

    It worked thank you very much i ve been searching for methods 2 days thanks again.

  4. Lanxord says:

    Thanks, it worked! this malware has been pestering me and can’t work efficiently.. Now I can get back to work.. thanks again…

  5. lillyvalley says:

    I can’t download any file at the moment because my computer says there is a virus in the file. So I can’t even proceed to the first step of the removal.
    When I go in the task manager, I don’t see any atraps or suspicious file…
    I am really lost

  6. Teira says:

    I tried this procedure with the Rootkit on one computer and it worked very well and I’m so relieved. It excited so much that I decided to try it on another computer with a virus with the same characteristics (I’m pretty sure now that it’s the same one) but the virus has attacked everything in the system files making it so that I can’t go into safe mode or even do a manual procedure. I need some serious help with any other method I can try to get it off my other computer.

Leave a Reply

Your email address will not be published. Required fields are marked *