To add insult to injury, I'm now dealing with this on my new laptop.

Malwarebytes' Anti-Malware 1.44
Database version: 3738
Windows 6.1.7600
Internet Explorer 8.0.7600.16385

2/14/2010 10:26:49 AM
mbam-log-2010-02-14 (10-26-49).txt

Scan type: Full Scan (C:\|D:\|E:\|F:\|)
Objects scanned: 302938
Time elapsed: 31 minute(s), 17 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 1
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)



SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 02/14/2010 at 12:26 PM

Application Version : 4.33.1000

Core Rules Database Version : 4584
Trace Rules Database Version: 2396

Scan type : Complete Scan
Total Scan Time : 00:36:21

Memory items scanned : 330
Memory threats detected : 0
Registry items scanned : 6747
Registry threats detected : 0
File items scanned : 44932
File threats detected : 48

Adware.Tracking Cookie
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@247realmedia[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@2o7[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@a1.interclick[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@ad.wsod[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@ad.yieldmanager[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@adecn[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@adinterax[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@adlegend[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@ads.bridgetrack[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@ads.gmodules[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@ads.pointroll[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@ads.undertone[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@adserver.adtechus[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@advertising[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@apmebf[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@at.atwola[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@atdmt[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@bs.serving-sys[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@burstnet[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@casalemedia[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@cdn4.specificclick[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@collective-media[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@content.yieldmanager[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@content.yieldmanager[3].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@doubleclick[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@fastclick[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@greensboronewsrecord.112.2o7[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@insightexpressai[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@interclick[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@kontera[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@lockedonmedia[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@media6degrees[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@mediaplex[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@microsoftwindows.112.2o7[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@msnportal.112.2o7[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@oasn04.247realmedia[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@overture[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@pointroll[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@realmedia[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@revsci[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@serving-sys[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@smartadserver[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@specificclick[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@specificmedia[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@tacoda[2].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@tribalfusion[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@xiti[1].txt
C:\Users\Tricia\AppData\Roaming\Microsoft\Windows\Cookies\Low\tricia@zedo[1].txt

Please open Notepad and enter in the following:

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges]

Then, click File > Save as...
Save as nadc.reg to your Desktop.
Choose Save as type... All Files.
Click Save.

Then, exit Notepad.

Double-click on nadc.reg, and it will ask to confirm. Please confirm it, restart your computer, and post a new MBAM log in your next reply.

I think I may have posted this reply in another topic by accident. I'll try to find it in a min....but here is my log.

Malwarebytes' Anti-Malware 1.44
Database version: 3738
Windows 6.1.7600
Internet Explorer 8.0.7600.16385

2/14/2010 3:52:44 PM
mbam-log-2010-02-14 (15-52-44).txt

Scan type: Full Scan (C:\|D:\|E:\|F:\|)
Objects scanned: 299956
Time elapsed: 33 minute(s), 27 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Good. It was just a bad registry setting. No biggie.

Thank you. Working on my friend's computer now.