simrick said:
Wynona, I don't know what to say. We may never know the method of infection. For all we know it could have been a compromised web site. Hard to say with a file-less rootkit, because they delete their files after they attack, and just sit in the registry.

Since the second MBAM scan came up clean, I guess you can mark this thread as solved. :)
Whoops, forgot to mark it solved! Doing it now! Thanks.