Netster has got me...

See this: http://securityresponse.symantec.com/avcenter/venc/data/spyware.smartbrowse.html

If that does not help, please follow the steps below:


- Run ALL the steps in this Sticky thread READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal

Make sure you check version numbers and get all updates.

- Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.


After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps below:

- Download HijackThis 1.99.1

- Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

- Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file.

- Before running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

- Run HijackThis and save your log file.

- Post your log as an ATTACHMENT to your next message. (Do NOT copy/paste the log into your post).

 

Your OS and IE versions are way out of date and represent a major security risk. After fixing any problems you may have, you must get updated.

Yes, I believe that misspelled site belongs to netster based on what I can see.


The below two minor items can be fixed with HijackThis:
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)


The below item I'm curious about. Do you know what this is? It looks typical of a Look2Me VX2 infection.
O20 - Winlogon Notify: LMIinit - C:\WINDOWS\SYSTEM32\LMIinit.dll

Let's be safe and run the below to look for any problem files.

Please print out these instructions now or save locally so that you can operate with All Browser Windows CLOSED.

Exit Browsers now before continuing

Please move the L2MeFix Tool (I had you download this in message # 4) to your Desktop and DoubleClick l2mfix.exe. Click the Install button to extract the files and follow the prompts, then open the newly added l2mfix Folder on your Desktop. DoubleClick l2mfix.bat and Type 1 and ENTER to select Option #1 for Run Find Log . Allow it as much time as it needs to run until NotePad opens with a log.

NOTE: Please do not run any other options or files in the l2mfix Folder!

Now reconnect and come back here and post as an attachment the l2mfix log. Based on the log, we will determine the next steps.


Please DO NOT REBOOT after scanning for these logs!! Otherwise potential problems may mutate and spread. Wait for me to get back to you with the next steps.

 

You can go to Windows update and choose custom install instead of express and get all updates except WinXP SP2. This is at least a start. WinXP SP2 should not be messing up your MBR.

Sorry about the message mentioning message #4. That was a copy and past and forget to edit error on my part. I even forgot to post the link http://forums.majorgeeks.com/images/smilies/redface.gif for the download.


Now continue with the below steps:

L2Mefix cleanup


Print or save these instructions locally now because you will have to be disconnected with no browsers open in the next step.

Please make sure ALL Browser Windows are Closed and also you should physically disconnect from the Internet by unplugging your cable.

Go to the L2MFix Folder on your Desktop and DoubleClick l2mfix.bat and type 2 and ENTER to select option #2 for Run Fix. Then, press any key to Reboot your machine.
Your computer will go bazonkers (now there's a great technical term!) for a bit, but just let it run. It should eventually spit out another log in Notepad.


Again, don't run any other files in the L2MeFix folder.

Now get a new HJT log and post it along with the L2MeFix log.

 

Well it looks like that file is not related to a VX2 infection. I would like to know what it is for.

Let's try to get some more info on the C:\WINDOWS\SYSTEM32\LMIinit.dll file. Locate it again using Windows Explorer and then right click on it and select Properties. Now see if there is a Version tab in the window. If so, select the Version tab and on the next window select each of the listed Item names (one at a time) to get more info about the file. The most important Item is the company name. If there is no Version tab, tell me that too.

I'm now guessing that it may be related to:
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\LogMeInSystray.exe"

What is this LogMeIn GUI?

 

Your log was clean. If you are not having any other problems, I would recommend the steps in the below:

How to Protect yourself from malware!