Redirect to windowsclick.com site is a result of UACd.sys trojan activity. The trojan horse may represent security risk for the infected computer and uses rootkit-specific techniques designed to hide the software presence in the system. Once infected, UACd.sys trojan blocks user access to security websites, search results in Google, Yahoo, MSN and other redirect you to windowsclick.com and other non related sites.

The Fix:

• Download Avenger from here and unzip to your desktop.
• Run Avenger, copy,then paste the following text in Input script Box:
  

  Drivers to delete:
  UACd.sys

  Files to delete:
  C:\WINDOWS\system32\wJQs.exe

  Then click on ‘Execute’.

• You will be asked Are you sure you want to execute the current script?. Click Yes.
• You will now be asked First step completed — The Avenger has been successfully
  set up to run on next boot. Reboot now?. Click Yes.

• Your PC will now be rebooted.

You can find a few other steps with the website link below.

http://www.myantispyware.com/2009/01/24/how-to-remove-windowsclickcom-redirect-uacdsys-trojan/

Please leave comment. Let me know if this post help!

Profile Storage Space Fix registry location

First make sure you clean  Spyware Protect 2009 virus out of your system using Malwarebytes Anti-Malware

Follow the following steps:

a. Ctl+Alt+Delete go to task manger, go to process tab,  find “proquota.exe” right click and end the process.

b.  Click Start, and then click Run.

1. In the Open box, type regedit, and then click OK
2. Back up registry by clicking the File menu, click Export.
3. In the Save in box, select a location where you want to save the Registration Entries (.reg)
4. Locate by clicking on the left hand side —>HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System  ( view image above)
5. once your at the location you will see on the right side “EnableProfileQuota” right click EnableProfileQuota and select Delete

c. An easier way to do this is to copy the following script between the ******  to notepad save and rename the extension to .reg and execute the file.

REGEDIT4

*****************************************************************

I have made the file you can download profileStorageErrorRemoval here Extract the file and double click the file, click yes and then ok.

Enter the Recovery Console if you need help and don’t know how to get into Recovery Console click here

Boot the system using the Windows XP CD-ROM. In the first screen when the Setup begins, read the instructions press “R” (in the first screen) enter the Recovery Console. Type-in the built-in Administrator password to enter the Console. You’ll see the prompt reading C:\Windows (Or any other drive-letter where you’ve installed XP)

Type the following command and press Enter.

CD SYSTEM32
(If that does not work, try CHDIR SYSTEM32)

option 1:

COPY USERINIT.EXE WSAUPDATER.EXE

option 2:

expand d:\i386\userint.exe c:\windows\system32\

if your in c:\windows\system32 then

expand d:\i386\userinint.exe

Quit Recovery Console by typing EXIT and restart Windows.

You’ll be able to login successfully as you’ve created the wsaupdater.exe file (now, a copy of userinit.exe)

Now, change the USERINIT value in the registry and change it accordingly.

Fixing a registry entry which causes the xp login – logoff loop

Click Start, Run and type REGEDIT. Navigate to:

HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ WindowsNT \ CurrentVersion \ Winlogon

In the right-pane, change the value of Userinit to “C:\WINDOWS\system32\userinit.exe,“

Type the above value exactly as given, including the comma – exclude the quotes. Also, change the path to userinit.exe appropriately if Windows is installed in a different drive.

Close Registry Editor and restart Windows.

Method 2:

Sometime virus scanners such as AVG and Malwarebytes eat up the infected file userinit.exe which cause this login loop. A way to fix this issue is to take out the infected hard drive. Attach the hard drive to a working Windows system via usb or placing it inside the system. Once the drive is up and running copy  the userinit.exe found in c:\windows\system32 into the drive infected drive d:\windows\system32 (d: being the infected drive letter). Reinstall the hard drive into the orginal system and boot up.

i have attach the userinit.exe with this blog download here

the file is compress with winrar you can download winrar here to extract

Did this post help? Please comment!

Aliases:
-

Risk Level: Medium

File Size: Varies

Affected System: Windows

Common Symptoms:
1. It can block internet connections to some websites

How to remove…

1. Download Malwarebytes’ Anti-Malware (mbam-setup.exe) and save it on your Desktop.
2. After downloading, double-click on mbam-setup.exe to install the application.
3. Follow the prompts and install as “default” only
4. Before the installation completes, check on the following prompts:
- Update Malwarebytes’ Anti-Malware
- Launch Malwarebytes’ Anti-Malware
5. Click “Finish.” Program will run automatically and you will be prompt to update the program before doing a scan. Please update.
6. Scan your computer thoroughly.
7. When scanning is finished click on the “Show Results”
8. Make sure that all detected threats are marked, click on Remove Selected.
9. Restart your computer.

If that does not fix the problem. Try to empty the hosts file the file is under Windows/system32/drivers/etc.

To empty “hosts” file. Do this

a) Close the broswer
b) Open C:\Windows\system32\drivers\etc\hosts file with notepad.
c) remove all the text
d) Save the file

Now open the browser and browse internet. It should work fine.

Please leave comment. Let me know if this post help!