Solved “MSDMine?STacS” possible malware detected by GMER

[gonwk]

Broni,

Rest of the OTL log ...

C:\Users\GN\AppData\Roaming\88220e99 moved successfully.
C:\Users\GN\AppData\Roaming\87cef79d moved successfully.
C:\Users\GN\AppData\Roaming\c3aa5009 moved successfully.
C:\Users\GN\AppData\Roaming\6d63afc1 moved successfully.
C:\Users\GN\AppData\Roaming\6cef7921 moved successfully.
C:\Users\GN\AppData\Roaming\1ced189 moved successfully.
C:\Users\GN\AppData\Roaming\b32f1735 moved successfully.
C:\Users\GN\AppData\Roaming\b276ce61 moved successfully.
C:\Users\GN\AppData\Roaming\7f6a578d moved successfully.
C:\Users\GN\AppData\Roaming\7ebf8abd moved successfully.
C:\Users\GN\AppData\Roaming\7b89765 moved successfully.
C:\Users\GN\AppData\Roaming\438d9b6d moved successfully.
C:\Users\GN\AppData\Roaming\432f1af5 moved successfully.
C:\Users\GN\AppData\Roaming\427ce691 moved successfully.
C:\Users\GN\AppData\Roaming\4226a439 moved successfully.
C:\Users\GN\AppData\Roaming\41cfd33d moved successfully.
C:\Users\GN\AppData\Roaming\4146ad11 moved successfully.
C:\Users\GN\AppData\Roaming\40ecce41 moved successfully.
C:\Users\GN\AppData\Roaming\39bae749 moved successfully.
C:\Users\GN\AppData\Roaming\375eaedd moved successfully.
C:\Users\GN\AppData\Roaming\37071829 moved successfully.
C:\Users\GN\AppData\Roaming\369e220d moved successfully.
C:\Users\GN\AppData\Roaming\36478795 moved successfully.
C:\Users\GN\AppData\Roaming\34b33451 moved successfully.
C:\Users\GN\AppData\Roaming\56c704cd moved successfully.
C:\Users\GN\AppData\Roaming\563cd3d1 moved successfully.
C:\Users\GN\AppData\Roaming\55a3a029 moved successfully.
C:\Users\GN\AppData\Roaming\54f7f109 moved successfully.
C:\Users\GN\AppData\Roaming\546e6585 moved successfully.
C:\Users\GN\AppData\Roaming\53e37d59 moved successfully.
C:\Users\GN\AppData\Roaming\5352b98d moved successfully.
C:\Users\GN\AppData\Roaming\52b7cc9d moved successfully.
C:\Users\GN\AppData\Roaming\522ba9f5 moved successfully.
C:\Users\GN\AppData\Roaming\5194bebd moved successfully.
C:\Users\GN\AppData\Roaming\fda0069 moved successfully.
C:\Users\GN\AppData\Roaming\f931d81 moved successfully.
C:\Users\GN\AppData\Roaming\f43e245 moved successfully.
C:\Users\GN\AppData\Roaming\ebaccc9 moved successfully.
C:\Users\GN\AppData\Roaming\e69011d moved successfully.
C:\Users\GN\AppData\Roaming\10d8b341 moved successfully.
C:\Users\GN\AppData\Roaming\107cc7a1 moved successfully.
C:\Users\GN\AppData\Roaming\3a71425 moved successfully.
C:\Users\GN\AppData\Roaming\35ac0e9 moved successfully.
C:\Users\GN\AppData\Roaming\2f93fa5 moved successfully.
C:\Users\GN\AppData\Roaming\2a9238d moved successfully.
C:\Users\GN\AppData\Roaming\e09fd335 moved successfully.
C:\Users\GN\AppData\Roaming\254f6365 moved successfully.
C:\Users\GN\AppData\Roaming\24f73eb5 moved successfully.
C:\Users\GN\AppData\Roaming\24520a29 moved successfully.
C:\Users\GN\AppData\Roaming\2408bcb1 moved successfully.
C:\Users\GN\AppData\Roaming\23b8132d moved successfully.
C:\Users\GN\AppData\Roaming\232f662d moved successfully.
C:\Users\GN\AppData\Roaming\22dc0cdd moved successfully.
C:\Users\GN\AppData\Roaming\1c397a9d moved successfully.
C:\Users\GN\AppData\Roaming\19ba6621 moved successfully.
C:\Users\GN\AppData\Roaming\196ffadd moved successfully.
C:\Users\GN\AppData\Roaming\1902d591 moved successfully.
C:\Users\GN\AppData\Roaming\18b218a5 moved successfully.
C:\Users\GN\AppData\Roaming\179c93dd moved successfully.
C:\Users\GN\AppData\Roaming\c524f3e1 moved successfully.
C:\Users\GN\AppData\Roaming\c4c68ed5 moved successfully.
C:\Users\GN\AppData\Roaming\c40e8699 moved successfully.
C:\Users\GN\AppData\Roaming\c3b82599 moved successfully.
C:\Users\GN\AppData\Roaming\c35f5505 moved successfully.
C:\Users\GN\AppData\Roaming\c240ac79 moved successfully.
C:\Users\GN\AppData\Roaming\c1e13349 moved successfully.
C:\Users\GN\AppData\Roaming\bfdacff1 moved successfully.
C:\Users\GN\AppData\Roaming\bf831111 moved successfully.
C:\Users\GN\AppData\Roaming\bb2c0209 moved successfully.
C:\Users\GN\AppData\Roaming\bada4e81 moved successfully.
C:\Users\GN\AppData\Roaming\ba820cf1 moved successfully.
C:\Users\GN\AppData\Roaming\ba2e50dd moved successfully.
C:\Users\GN\AppData\Roaming\b9ce108d moved successfully.
C:\Users\GN\AppData\Roaming\b95abb35 moved successfully.
C:\Users\GN\AppData\Roaming\8d71321d moved successfully.
C:\Users\GN\AppData\Roaming\8ce255d1 moved successfully.
C:\Users\GN\AppData\Roaming\8c41c40d moved successfully.
C:\Users\GN\AppData\Roaming\8bb670d1 moved successfully.
C:\Users\GN\AppData\Roaming\8b28f42d moved successfully.
C:\Users\GN\AppData\Roaming\8a914e71 moved successfully.
C:\Users\GN\AppData\Roaming\8a0a3fe9 moved successfully.
C:\Users\GN\AppData\Roaming\8975e0d1 moved successfully.
C:\Users\GN\AppData\Roaming\88e1e98d moved successfully.
C:\Users\GN\AppData\Roaming\8844b7ed moved successfully.
C:\Users\GN\AppData\Roaming\f67971e5 moved successfully.
C:\Users\GN\AppData\Roaming\f6189bf5 moved successfully.
C:\Users\GN\AppData\Roaming\f57a725d moved successfully.
C:\Users\GN\AppData\Roaming\f53186dd moved successfully.
C:\Users\GN\AppData\Roaming\f4ddf001 moved successfully.
C:\Users\GN\AppData\Roaming\f3bd924d moved successfully.
C:\Users\GN\AppData\Roaming\f36bd1e1 moved successfully.
C:\Users\GN\AppData\Roaming\ec9242a5 moved successfully.
C:\Users\GN\AppData\Roaming\ec37fcb5 moved successfully.
C:\Users\GN\AppData\Roaming\e80a2015 moved successfully.
C:\Users\GN\AppData\Roaming\e7c0decd moved successfully.
C:\Users\GN\AppData\Roaming\e7757ef1 moved successfully.
C:\Users\GN\AppData\Roaming\e72a1309 moved successfully.
C:\Users\GN\AppData\Roaming\e6c9c9c5 moved successfully.
C:\Users\GN\AppData\Roaming\e673ae6d moved successfully.
C:\Users\GN\AppData\Roaming\a56a89e1 moved successfully.
C:\Users\GN\AppData\Roaming\a4ca3081 moved successfully.
C:\Users\GN\AppData\Roaming\b9b704f1 moved successfully.
C:\Users\GN\AppData\Roaming\b961e695 moved successfully.
C:\Users\GN\AppData\Roaming\b8cd4c6d moved successfully.
C:\Users\GN\AppData\Roaming\b8806c91 moved successfully.
C:\Users\GN\AppData\Roaming\b829b629 moved successfully.
C:\Users\GN\AppData\Roaming\b7244195 moved successfully.
C:\Users\GN\AppData\Roaming\b6d2a751 moved successfully.
C:\Users\GN\AppData\Roaming\b5215a21 moved successfully.
C:\Users\GN\AppData\Roaming\b4c6a9b1 moved successfully.
C:\Users\GN\AppData\Roaming\b09f574d moved successfully.
C:\Users\GN\AppData\Roaming\b0567ebd moved successfully.
C:\Users\GN\AppData\Roaming\b00a8f35 moved successfully.
C:\Users\GN\AppData\Roaming\afbe2099 moved successfully.
C:\Users\GN\AppData\Roaming\af5e2b01 moved successfully.
C:\Users\GN\AppData\Roaming\af07d2d1 moved successfully.
C:\Users\GN\AppData\Roaming\1ca328d9 moved successfully.
C:\Users\GN\AppData\Roaming\1c38aab9 moved successfully.
C:\Users\GN\AppData\Roaming\1b9bef75 moved successfully.
C:\Users\GN\AppData\Roaming\1b4818cd moved successfully.
C:\Users\GN\AppData\Roaming\1af1f81d moved successfully.
C:\Users\GN\AppData\Roaming\19f6a665 moved successfully.
C:\Users\GN\AppData\Roaming\19a414dd moved successfully.
C:\Users\GN\AppData\Roaming\17857951 moved successfully.
C:\Users\GN\AppData\Roaming\17309515 moved successfully.
C:\Users\GN\AppData\Roaming\12a8d315 moved successfully.
C:\Users\GN\AppData\Roaming\125f8639 moved successfully.
C:\Users\GN\AppData\Roaming\1212b8d5 moved successfully.
C:\Users\GN\AppData\Roaming\11c7e8a5 moved successfully.
C:\Users\GN\AppData\Roaming\115c3369 moved successfully.
C:\Users\GN\AppData\Roaming\11025109 moved successfully.
C:\Users\GN\AppData\Roaming\8513c659 moved successfully.
C:\Users\GN\AppData\Roaming\84761d85 moved successfully.
C:\Users\GN\AppData\Roaming\83dc8485 moved successfully.
C:\Users\GN\AppData\Roaming\834aa1cd moved successfully.
C:\Users\GN\AppData\Roaming\82b9ed0d moved successfully.
C:\Users\GN\AppData\Roaming\822b7a81 moved successfully.
C:\Users\GN\AppData\Roaming\81a2348d moved successfully.
C:\Users\GN\AppData\Roaming\810db09d moved successfully.
C:\Users\GN\AppData\Roaming\80726131 moved successfully.
C:\Users\GN\AppData\Roaming\7fde7959 moved successfully.
C:\Users\GN\AppData\Roaming\fd337649 moved successfully.
C:\Users\GN\AppData\Roaming\fce482ad moved successfully.
C:\Users\GN\AppData\Roaming\fc92b389 moved successfully.
C:\Users\GN\AppData\Roaming\fc43f0f5 moved successfully.
C:\Users\GN\AppData\Roaming\fbed82b1 moved successfully.
C:\Users\GN\AppData\Roaming\fb917d31 moved successfully.
C:\Users\GN\AppData\Roaming\66838a9 moved successfully.
C:\Users\GN\AppData\Roaming\60d177d moved successfully.
C:\Users\GN\AppData\Roaming\4cb36ad moved successfully.
C:\Users\GN\AppData\Roaming\3c785e1 moved successfully.
C:\Users\GN\AppData\Roaming\1b0dbe9 moved successfully.
C:\Users\GN\AppData\Roaming\143a5c9 moved successfully.
C:\Users\GN\AppData\Roaming\e3f0d009 moved successfully.
C:\Users\GN\AppData\Roaming\e39add25 moved successfully.
C:\Users\GN\AppData\Roaming\d61e7085 moved successfully.
C:\Users\GN\AppData\Roaming\d55a6855 moved successfully.
C:\Users\GN\AppData\Roaming\af9be525 moved successfully.
C:\Users\GN\AppData\Roaming\aeed09f5 moved successfully.
C:\Users\GN\AppData\Roaming\5e321da9 moved successfully.
C:\Users\GN\AppData\Roaming\5dd38ec1 moved successfully.
C:\Users\GN\AppData\Roaming\5d19f37d moved successfully.
C:\Users\GN\AppData\Roaming\5ccc960d moved successfully.
C:\Users\GN\AppData\Roaming\5c6c036d moved successfully.
C:\Users\GN\AppData\Roaming\5b12a60d moved successfully.
C:\Users\GN\AppData\Roaming\5ac19fc5 moved successfully.
C:\Users\GN\AppData\Roaming\58a31eb5 moved successfully.
C:\Users\GN\AppData\Roaming\584e0df1 moved successfully.
C:\Users\GN\AppData\Roaming\536a8c6d moved successfully.
C:\Users\GN\AppData\Roaming\5312ec1d moved successfully.
C:\Users\GN\AppData\Roaming\52aa5151 moved successfully.
C:\Users\GN\AppData\Roaming\525c29c1 moved successfully.
C:\Users\GN\AppData\Roaming\51fe3b41 moved successfully.
C:\Users\GN\AppData\Roaming\51a450ad moved successfully.
ADS C:\ProgramData\TEMP:66633281 deleted successfully.
ADS C:\ProgramData\TEMP:0888F409 deleted successfully.
ADS C:\ProgramData\TEMP:4BF2F6B5 deleted successfully.
ADS C:\ProgramData\TEMP:5C321E34 deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: GN
->Temp folder emptied: 125674 bytes
->Temporary Internet Files folder emptied: 39779511 bytes
->Java cache emptied: 3016554 bytes
->Flash cache emptied: 4726 bytes

User: GN-1
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 73728 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 32902 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 749 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 41.00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: GN
->Flash cache emptied: 0 bytes

User: GN-1

User: Public

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.28.0 log created on 09162011_121931

Files\Folders moved on Reboot...
File move failed. C:\Windows\SysNative\1354.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\1B9D.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\1CD4.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\2AD1.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\39E5.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\3C66.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\4599.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\5AF4.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\99CE.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\AE4B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\B377.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\BECD.tmp scheduled to be moved on reboot.

Registry entries deleted on Reboot...


Thanks!

G!

 

[Broni]

Good job

Continue with other instructions from my reply #16.

 

[gonwk]

Hi Broni,

Should I run TFC and next steps also or wait for your go aheads?

Results of screen317's Security Check version 0.99.7
Windows Vista
Out of date service pack!!
Internet Explorer 7 Out of date!
``````````````````````````````
Antivirus/Firewall Check:
Windows Firewall Disabled!
Avira AntiVir Personal - Free Antivirus
[size=1]WMI entry may not exist for antivirus; attempting automatic update.[/size]
Avira successfully updated!
```````````````````````````````
Anti-malware/Other Utilities Check:
Malwarebytes' Anti-Malware
Java(TM) 6 Update 27
Out of date Java installed!
Adobe Flash Player
Adobe Reader X (10.1.0)
````````````````````````````````
Process Check:
objlist.exe by Laurent
WinPatrol winpatrol.exe
Avira Antivir avgnt.exe
Avira Antivir avguard.exe
Comodo Firewall cmdagent.exe
Comodo Firewall cfp.exe
BillP Studios WinPatrol WinPatrol.exe
``````````End of Log````````````


Thanks!

G!

 

[Broni]

Go ahead with TFC and Eset.

 

[gonwk]

Thanks Broni,

I will be logging off before I run those 2 ... but a Q first ...

Q: For ESET do I also "Disable" my Firewall?

Thanks,

G!

 

[Broni]

Firewall...never.

 

[gonwk]

Hi Broni,

As I suspected again I could not run ESET Online scanner using IE7 ... somethign about "my Security Settings not allowing ActiveX controls to be installed" ... and I don't know how to activate it.

Anyway, I am glad that you told me I could use FireFox without all the IE BS. SO I downloaded and installed FF 6.0.2 ... but even that asked me to run it as Admin ...

Q1: Is this Normal?

I ran the ESET Online Virus Scanner with your settings ... ran for about 1 hour 45 minutes ... and did not detect nor delete anything ... Clean as whistle.

BTW, you never answered me ... could I have just opted to do a Clean Install from D:/ Drive and it would wiped out the Malware/Virus?

Broni, what is Next?

Thanks again for Your Patience and Help so far.

G!

 

[Broni]

Your computer is clean

1. We need to reset system restore to prevent your computer from being accidentally reinfected by using some old restore point(s). We'll create fresh, clean restore point, using following OTL script:

Run OTL

• Under the Custom Scans/Fixes box at the bottom, paste in the following:

:OTL
:Commands
[purity]
[emptytemp]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[Reboot]

• Then click the Run Fix button at the top
• Let the program run unhindered, reboot the PC when it is done
• Post resulting log.

2. Now, we'll remove all tools, we used during our cleaning process

Clean up with OTL:

• Double-click OTL.exe to start the program.
• Close all other programs apart from OTL as this step will require a reboot
• On the OTL main screen, press the CLEANUP button
• Say Yes to the prompt and then allow the program to reboot your computer.

If you still have any tools or logs leftover on your computer you can go ahead and delete those off of your computer now.

3. Make sure, Windows Updates are current.

4. If any Trojan was listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!

5. Download, and install WOT (Web OF Trust): http://www.mywot.com/. It'll warn you (in most cases) about dangerous web sites.

6. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.

7. Run Temporary File Cleaner (TFC) weekly.

8. Download and install Secunia Personal Software Inspector (PSI): https://www.techspot.com/downloads/4898-secunia-personal-software-inspector-psi.html. The Secunia PSI is a FREE security tool designed to detect vulnerable and out-dated programs and plug-ins which expose your PC to attacks. Run it weekly.

9. (optional) If you want to keep all your programs up to date, download and install FileHippo Update Checker.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.

10. (Windows XP only) Run defrag at your convenience.

11. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.

12. Read How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html

13. Please, let me know, how your computer is doing.

 

[gonwk]

Hi Broni,

Here is my OTL log from Step 1 ... I will continue with your other steps after I logged out of here ... and then I will post again with my Final items.

BTW, I persoanlly don't see any difference in how my laptop is running now or before my initial posting ... if I had not run GMER ... I would have been fat, dumb and happy ... since None of other AV tools ... like AVIRA, MBAM and SAS was warning me of anything.

All processes killed
========== OTL ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: GN
->Temp folder emptied: 38583 bytes
->Temporary Internet Files folder emptied: 5209315 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 50991813 bytes
->Flash cache emptied: 0 bytes

User: GN-1
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 73728 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 32902 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
RecycleBin emptied: 1916928 bytes

Total Files Cleaned = 56.00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: GN
->Flash cache emptied: 0 bytes

User: GN-1

User: Public

Total Flash Files Cleaned = 0.00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.28.0 log created on 09162011_172738

Files\Folders moved on Reboot...
File\Folder C:\Users\GN\AppData\Local\Temp\~DF849E.tmp not found!
File\Folder C:\Users\GN\AppData\Local\Temp\~WRD0001.doc not found!
File\Folder C:\Users\GN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS0000.tmp not found!
File move failed. C:\Windows\SysNative\1354.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\1B9D.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\1CD4.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\2AD1.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\39E5.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\3C66.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\4599.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\5AF4.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\99CE.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\AE4B.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\B377.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\BECD.tmp scheduled to be moved on reboot.

Registry entries deleted on Reboot...



Thanks again for Your Help & Patience!

G!

 

[Broni]

You're very welcome

 

[gonwk]

Hi Broni,

Just FYI ...

1) I completed all of your steps. I am all updated and all.

2) I ran the ultimate test GMER with Services & Registry only checked (it is quicker) and viola the darn “MSDMine?STacS” 2 entries are GONE. Only SPTD is there and is locked.

3) I also ran MBAM Quick Scan with the latest update ... and it came back clean.


Thanks again & see you on your Site soon!

G!

 

[Broni]

Way to go!!

Good luck and stay safe