That is NOT a legit MS page! cf.
You're seeing the effects of a Trojan W32/Fake XPA-variant infection,
usually accompanied by Vundo & SDBot and/or RBot infections, all of which is
protected by a rootkit.
NB: If you had no anti-virus application installed or the subscription had
expired *when the machine first got infected* and/or your subscription has
since expired and/or the machine's not been kept fully-patched at Windows
Update, don't waste your time with any of the below: Format & reinstall
Windows. A Repair Install will NOT help!
1. See if you can download/run the MSRT manually:
NB: Run the FULL scan, not the QUICK scan! You may need to download the
MSRT on a non-infected machine, then transfer MRT.EXE to the infected
machine and rename it to SCAN.EXE before running it.
2. [WinXP ONLY!! =>] Run the Windows Live Safety Center's 'Protection' scan
(only!) in Safe Mode with Networking, if need be:
3. Run a /thorough/ check for hijackware, including posting the requested
logs in an appropriate forum, not here.
Checking for/Help with Hijackware
**Seek expert assistance in
or other appropriate forums.**
If the procedures look too complex - and there is no shame in admitting this
isn't your cup of tea - take the machine to a local, reputable and
independent (i.e., not BigBoxStoreUSA) computer repair shop.
~Robear Dyer (PA Bear)
MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
> This aggravating scam is so frustrating. I don't know how its a scam, but
> is. Every setting on the computer is correct, but half the time
> http://browser-security.microsoft.co...ked.php?r=28.0 shows up, and the
> only way to get out of it is to pay $50 for a spyware product, and I
> have a spyware product. Somebody please tell me how to get rid of this.