How to delete Downloader.GK - Removal tool, fix instructions

Name: Downloader.GK

Aliases: Trj/Downloader.GK, Trojan.Downloader.GK

Type: Trojan

Size: -

First appeared on: 07.06.2005

Damage: Medium

Brief Description:
Downloader.GK is a Trojan that downloads and installs the spyware BetterInet. In addition, BetterInet installs the adware detected by Panda Software as SearchCentrix. All these actions are carried out without users noticing.

Downloader.GK creates a file with a random name in the Windows system directory. This file is a copy of the Trojan.

Visible Symptoms:

Downloader.GK is very easy to recognize as it displays several popup messages before installing the adware programs. This is a typical symptom of this type of programs.

Technical description:

Downloader.GK creates the following entry in the Windows Registry:

HKEY_LOCAL_MACHINE\ Software\ Microsoft\ Windows\ Current Version\ Run
%entry% = %sysdir% \ %Trojan%

where %entry% is the random name of the entry, %sysdir% is the Windows system directory, and %Trojan% is the name of the random file created by Downloader.GK.

By creating this entry, Downloader.GK ensures it is run whenever Windows is started.

Downloader.GK is downloaded to the computer when the user accesses certain websites and accepts to install an specific ActiveX control.

Propagation:

Downloader.GK is downloaded to the computer when the user accesses certain websites and accepts to install an specific ActiveX control.

Removal tool and instruction:
Not available