How to Fix a Blue Screen Virus

The blue screen virus is generated by the rogue anti-virus program, Antivirus 2010. This rogue anti-virus program installs itself onto your computer and proceeds to flood your computer with pop-ups and fake system security scans. In addition, the rogue anti-virus program displays a blue screen with the message, “A spyware application has been detected and Windows has been shut down to prevent damage to your computer.” Note that these blue screen virus removal steps apply to the Windows Vista and 7 operating systems.

...
Antivirus 2010 turns your computer screen blue.

End Processes

Step

Press "Ctrl" + "Shift" + "Escape" to open the Windows Task Manager.

Step

Click the "Processes" tab and then click "Show Processes From All Users."

Step

Click "Image Name" to view the list of processes in alphabetical order.

Step

End the following processes. To end a process, click on the process and then click "End Process."

Step

AV2010.exe svchost.exe wingamma.exe

Step

Close the Windows Task Manager.

Delete Registry Entries

Step

Click "Start" and type "regedit" into the "Search Programs and Files" box and press "Enter." The Registry Editor opens.

Step

Delete each of the following registry entries from the left pane of the Registry Editor. To delete a registry entry, right-click on it and select "Delete." Note that deleting the wrong registry may cause serious system-wide complications.

Step

HKEY_CURRENT_USER\Software\AV2010

Step

HKEY_CLASSES_ROOT\AppID{3C40236D-990B-443C-90E8-B1C07BCD4A68}

Step

HKEY_CLASSES_ROOT\AppID\IEDefender.DLL

Step

HKEY_CLASSES_ROOT\CLSID{FC8A493F-D236-4653-9A03-2BF4FD94F643}

Step

HKEY_CLASSES_ROOT\IEDefender.IEDefenderBHO

Step

HKEY_CLASSES_ROOT\IEDefender.IEDefenderBHO.1

Step

HKEY_CLASSES_ROOT\Interface{7BC7565C-5062-43CE-8797-DC2C271140A9}

Step

HKEY_CLASSES_ROOT\TypeLib{705FD64B-2B7B-4856-9337-44CA1DA86849}

Step

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{FC8A493F-D236-4653-9A03-2BF4FD94F643}

Step

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class{4D36E972-E325-11CE-BFC1-08002bE10318}\0012

Step

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class{4D36E972-E325-11CE-BFC1-08002bE10318}\0013

Step

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class{4D36E972-E325-11CE-BFC1-08002bE10318}\0014

Step

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “Windows Gamma Display”

Step

Close the Registry Editor.

Unregister DLLs

Step

Click "Start" and type "cmd" into the "Search Programs and Files" box and press "Enter." The Command Prompt opens.

Step

Type "regsvr32 /u IEDefender.dll" (without the quotation marks) into the Command Prompt and press "Enter." Click "Yes" if asked to confirm.

Step

Close the Command Prompt.

Delete Files and Folders

Step

Click "Start" and then click on the "Search Programs and Files" box.

Step

Search for and delete each of the following files and folders. To delete a file or folder, right-click on it and select "Delete."

Step

c:\Documents and Settings\All Users\Desktop\AV2010.lnk c:\Documents and Settings\All Users\Start Menu\Programs\AV2010 c:\Documents and Settings\All Users\Start Menu\Programs\AV2010\Uninstall.lnk c:\Documents and Settings\All Users\Start Menu\Programs\AV2010\AV2010.lnk c:\Program Files\AV2010

Step

Restart your computer.