The very fine folks in the malwarebytes forum are telling my my other laptop has been infected with a backdoor type infection and that though the computer can be cleaned, I really should just wipe the hard drive and start over. That and I should call all my credit cards/bank and tell them I've potentially had my identity stolen (which I'm assuming they'll respond to by issuing new cards, new accounts, etc etc). Now, I respect their advice, but given this is a pretty huge amount of hassle I was thinking maybe a second opinion would be in order.
malwarebytes found svchost.exe, and TDSSkiller found rootkit.boot.pihar.c. I have the mbam log and dds text files if that would be of interest.