Thanks for all your help, very much appreciated!! But I'm a little confused--is the system clean? At one point you said there was no evidence of malware, but there *was* evidence of a rootkit. Did we solve that? If so, at which point?
I ran GMER's Catchme again, and it still shows the modified NTDLL--is there anything to be concerned about?