Galileo System Cleaner
Written by Tomas Meskauskas
Damage level: High
Galileo System Cleaner - how to remove it from your computer?
Galileo System Cleaner is a fake security scanner. When installed on users' computers, it indicates non existent security infections in order to sell a useless license key. Galileo System Cleaner states that to remove supposedly 'detected' security threats, PC users must purchase the full version. In fact, the security issues found by this program do not exist - Galileo System Cleaner is merely an imitation of legitimate antivirus software. It is a scam created with the sole purpose of tricking PC users into paying money to Cyber criminals responsible for creating and distributing this malicious program. Galileo System Cleaner is simply an empty software shell, which imitates the scanning of your computer (and it does not comprise a virus definition database or any other features required of a legitimate security scanner).
Furthermore, this program generates false security warning messages and uses other deceptive methods to coerce PC users into paying for the full version. In truth, there is no full version of Galileo System Cleaner - it is scam and should be eliminated from your computer immediately. Do not purchase this program - you will lose your money and your PC will remain infected. Today, the Internet is rife with these bogus programs, which merely imitate the functionality of security software with the aim to steal money from your credit card. Always read reviews and other information available before buying security software to protect your PC.
Cyber criminals responsible for creating Galileo System Cleaner use Trojans and drive-by downloads to proliferate their fake antivirus program. Another known way that they distribute this malicious software is via exploit kits. If your computer is infiltrated with the aforementioned security infections, Galileo System Cleaner and other rogue programs could be downloaded and executed on your machine at any time. In essence, Cyber criminals are able to infiltrate computers connected to the Internet with a small portion of malicious code and then remotely install key-loggers, rogue antivirus programs, and other malware to the compromised machines. To prevent these attacks on your PC, always use legitimate antivirus and anti-spyware programs. If your PC is already infected with Galileo System Cleaner, use the removal guide provided to eliminate it from your computer.
Galileo System Cleaner generates the following fake warning messages:
Critical: Some malicious threats cannot be deleted. Some threats contain unrecognized structure and can not be removed without update.
Galileo System Cleaner removal:
Use the recommended malware removal software to remove this malicious program. Download, update, and run a full system scan, remove all entries that this software detects.
If you cannot download or run the spyware remover, try running the registry fix (link below). It enables execution of programs. Download the registryfix.reg file, double click it, click YES, and then OK.
Alternative Galileo System Cleaner removal instructions:
Start your computer in Safe Mode. Click Start, click Shut Down, click Restart, click OK. During your computer starting process press the F8 key on your keyboard multiple times until you see the Windows Advanced Option menu, then select Safe Mode with Networking from the list.
Video showing how to start Windows 7 in "Safe Mode with Networking":
Now remove the proxy settings. This fake antivirus program adds a proxy to your Internet connection settings to show various errors when you try to access Internet. To do this, open Internet Explorer, click Tools and select Internet Options. Then select the "Connections" tab.
In the "Connections" tab, click LAN settings, if 'Use a proxy server for your LAN' is checked, uncheck it and press OK.
Download legitimate anti-spyware software to fully remove Galileo System Cleaner from your computer.
After removing Galileo System Cleaner, you will need to reset your Hosts file. Do not skip this step, since this malware modifies your Hosts file and you will encounter browser redirect problems if malicious entries are not removed.
The Hosts file is used to resolve canonical names of websites to IP addresses. When it is changed, the user may be redirected to malicious sites, despite seeing legitimate URLs in address bar. It is difficult to determine sites are genuine when the Hosts file is modified. To fix this, please download the Microsoft Fix It tool, that restores your Hosts file to the Windows default. Run this tool when downloaded and follow the on-screen instructions. Download link below:
After completing these steps, your computer should be clean.
Other tools known to remove Galileo System Cleaner:
The fake antivirus programs (also known as "rogue antivirus programs" or "scareware") are applications that tries to lure computer users into paying for their non-existent full versions to remove the supposedly detected security infections (although the computer is actually clean). These bogus programs are created by cyber criminals who design them to look as legitimate antivirus software. Most commonly rogue antivirus programs infiltrate user's computer using poop-up windows or alerts which appear when users surf the Internet. These deceptive messages trick users into downloading a rogue antivirus program on their computers. Other known tactics used to spread scareware include exploit kits, infected email messages, online ad networks, drive-by downloads, or even direct calls to user's offering free support.
A computer that is infected with a fake antivirus program might also have other malware installed on it as rogue antivirus programs often are bundled with Trojans and exploit kits. Noteworthy that additional malware that infiltrates user's operating system remains on victim's computer regardless of whether a payment for a non-existent full version of a fake antivirus program is made. Here are some examples of fake security warning messages that are used in Galileo System Cleaner distribution:
Computer users who are dealing with a rogue security software shouldn't buy it's full version. By paying for a license key of a fake antivirus program users would send their money and banking information to cyber criminals. Users who have already entered their credit card number (or other sensitive information) when asked by such bogus software should inform their credit card company that they have been tricked into buying a rogue security software. Screenshot of a web page used to lure computer users into paying for a non-existent full version of Galileo System Cleaner and other rogue antivirus programs:
To protect your computer from Galileo System Cleaner and other rogue antivirus programs users should:
- Keep their operating system and all of the installed programs up-to-date.
- Use legitimate antivirus and anti-spyware programs.
- Use caution when clicking on links in social networking websites and email messages.
- Don't trust online pop-up messages which state that your computer is infected and offers you to download security software.
Symptoms indicating that your operating system is infected with a fake antivirus program:
- Intrusive security warning pop-up messages.
- Alerts asking to upgrade to a paid version of a program to remove the supposedly detected malware.
- Slow computer performance.
- Disabled Windows updates.
- Blocked Task Manager.
- Blocked Internet browsers or inability to visit legitimate antivirus vendor websites.
If you are experiencing problems while trying to remove Galileo System Cleaner from your computer, please ask for assistance in our malware removal forum.
If you have additional information on Galileo System Cleaner or it's removal please share your knowledge in the comments section below.