Sprawa jest dosc dziwna. Od 3 dni walcze z ... hmm, wlasciwie to nie wiem z czym ... zaczelo sie niewinnie – wszystko bylo pieknie, slicznie az tu mi GG siadlo. A potem juz nic nie chcialo dzialac (SSH + FTP). Co dziwne – PING'i chodza wlasciwie na wiekszosc adresow ale nie jestem w stanie sie polaczyc w zaden sposob z zadnym z nich. Co ciekawe – strony w FireFoxie chodza (rOOX) a w IE juz nie :| GG/Tlen nie dziala, to juz mowiuem. Z poczatku mysl – wirus. Przeskanowalem Kasperskim z baza ze wczoraj w trybie awaryjnym – nic nie znalazl. Idac za glosami na forum, sciagnalem sobie HijackThis i to co mi wyplul, wklejam ponizej.

Co ciekawe – jak robie pinga na poczta.o2.pl to nie dochodza, ale jak odpale te strone w Firefoxie, to bez problemu sie loguje :| jestem juz na wykonczeniu nerwowym bo zupelnie nie wiem dlaczego sie tak dzieje ... moze ktos mial podobne "halo" w kompie i sobie jakos poradzil ??

Uprzejmie prosze o pomoc, bo za wszelka cene chce uniknac reinstalacji kompa.

HILFE !!! :] W WAS jedyna szansa ...

Logfile of HijackThis v1.99.1
Scan saved at 22:18:32, on 2005–12–16
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
L:\WINXP\System32\smss.exe
L:\WINXP\system32\winlogon.exe
L:\WINXP\system32\services.exe
L:\WINXP\system32\lsass.exe
L:\WINXP\system32\svchost.exe
L:\WINXP\System32\svchost.exe
L:\WINXP\system32\spoolsv.exe
L:\Program Files\Digidesign\Drivers\MMERefresh.exe
L:\WINXP\System32\nvsvc32.exe
L:\WINXP\system32\oodag.exe
c:\apache\APACHE.EXE
L:\WINXP\System32\svchost.exe
L:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
c:\apache\APACHE.EXE
L:\WINXP\Explorer.EXE
L:\WINXP\system32\DeltTray.exe
L:\WINXP\system32\RUNDLL32.EXE
L:\Program Files\D–Tools\daemon.exe
L:\WINXP\system32\kxmixer.exe
L:\Program Files\Hewlett–Packard\Digital Imaging\bin\hpohmr08.exe
L:\Program Files\Hewlett–Packard\Digital Imaging\bin\hpotdd01.exe
L:\Program Files\Hewlett–Packard\Digital Imaging\bin\hpoevm08.exe
L:\Program Files\Hewlett–Packard\Digital Imaging\Bin\hpoSTS08.exe
L:\Program Files\totalcmd\TOTALCMD.EXE
L:\WINXP\system32\wscntfy.exe
L:\WINXP\system32\cmd.exe
L:\Program Files\Mozilla Firefox\firefox.exe
L:\WINXP\system32\cmd.exe
N:\== apps ==\hijackthis1.99.1\HijackThis.exe

R0 – HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wp.pl/
R1 – HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = w3cache.icm.edu.pl:8080
R3 – Default URLSearchHook is missing
O2 – BHO: AcroIEHlprObj Class – {06849E9F–C8D7–4D59–B87D–784B7D6BE0B3} – L:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 – BHO: IeCatch2 Class – {A5366673–E8CA–11D3–9CD9–0090271D075B} – L:\PROGRA~1\FlashGet\jccatch.dll
O3 – Toolbar: FlashGet Bar – {E0E899AB–F487–11D5–8D29–0050BA6940E3} – L:\PROGRA~1\FlashGet\fgiebar.dll
O3 – Toolbar: Alive Text to Speech – {954F618B–0DEC–4D1A–9317–E0FC96F87865} – L:\PROGRA~1\ALIVEM~1\TEXTTO~1\IETOOL~1.DLL
O4 – HKLM\..\Run: [IMJPMIG8.1] "L:\WINXP\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 – HKLM\..\Run: [PHIME2002ASync] L:\WINXP\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 – HKLM\..\Run: [PHIME2002A] L:\WINXP\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 – HKLM\..\Run: [DeltTray] DeltTray.exe
O4 – HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE L:\WINXP\System32\NvCpl.dll,NvStartup
O4 – HKLM\..\Run: [nwiz] nwiz.exe /install
O4 – HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE L:\WINXP\System32\NvMcTray.dll,NvTaskbarInit
O4 – HKLM\..\Run: [DAEMON Tools–1033] "L:\Program Files\D–Tools\daemon.exe" –lang 1033
O4 – HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 – HKLM\..\Run: [kX Mixer] L:\WINXP\system32\kxmixer.exe ––startup
O4 – HKLM\..\Run: [KAVPersonal50] "L:\Program Files\Kaspersky Lab\Kaspersky Anti–Virus Personal\kav.exe" /minimize
O4 – HKLM\..\Run: [Zone Labs Client] L:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 – HKCU\..\Run: [Komunikator] L:\Program Files\Tlen.pl\tlen.exe
O4 – HKCU\..\Run: [Skype] "L:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 – Global Startup: Adobe Gamma Loader.lnk = L:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 – Global Startup: Adobe Reader Speed Launch.lnk = L:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 – Global Startup: hp psc 1000 series.lnk = ?
O4 – Global Startup: hpoddt01.exe.lnk = ?
O8 – Extra context menu item: Download All by FlashGet – L:\Program Files\FlashGet\jc_all.htm
O8 – Extra context menu item: Download using FlashGet – L:\Program Files\FlashGet\jc_link.htm
O8 – Extra context menu item: E&ksport do programu Microsoft Excel – res://L:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 – Extra button: (no name) – {08B0E5C0–4FCB–11CF–AAA5–00401C608501} – L:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll
O9 – Extra 'Tools' menuitem: Sun Java Console – {08B0E5C0–4FCB–11CF–AAA5–00401C608501} – L:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll
O9 – Extra button: Badanie – {92780B25–18CC–41C8–B9BE–3C9C571A8263} – L:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 – Extra button: FlashGet – {D6E814A0–E0C5–11d4–8D29–0050BA6940E3} – L:\PROGRA~1\FlashGet\flashget.exe
O9 – Extra 'Tools' menuitem: &FlashGet – {D6E814A0–E0C5–11d4–8D29–0050BA6940E3} – L:\PROGRA~1\FlashGet\flashget.exe
O9 – Extra button: Messenger – {FB5F1910–F110–11d2–BB9E–00C04F795683} – L:\Program Files\Messenger\msmsgs.exe
O9 – Extra 'Tools' menuitem: Windows Messenger – {FB5F1910–F110–11d2–BB9E–00C04F795683} – L:\Program Files\Messenger\msmsgs.exe
O15 – Trusted Zone: http://arcaonline.arcabit.com
O15 – Trusted Zone: http://web33.jewelhost.de
O16 – DPF: {0A5FD7C5–A45C–49FC–ADB5–9952547D5715} (Creative Software AutoUpdate) – http://creative.com/su/ocx/15015/CTSUEng.cab
O16 – DPF: {3D8700FB–86A4–4CB4–B738–6F0FC016AC7D} (MainControl Class) – http://arcaonline.arcabit.com/ArcaOnline.cab
O16 – DPF: {E7544C6C–CFD6–43EA–B4E9–360CEE20BDF7} (MainControl Class) – http://skaner.mks.com.pl/SkanerOnline.cab
O16 – DPF: {F6ACF75C–C32C–447B–9BEF–46B766368D29} (Creative Software AutoUpdate Support Package) – http://creative.com/su/ocx/15016/CTPID.cab
O23 – Service: Cepstral License Server – Cepstral, LLC – L:\Program Files\Cepstral\lib\LicenseServer.exe
O23 – Service: Digidesign MME Refresh Service (DigiRefresh) – Digidesign, A Division of Avid Technology, Inc. – L:\Program Files\Digidesign\Drivers\MMERefresh.exe
O23 – Service: kavsvc – Kaspersky Lab – L:\Program Files\Kaspersky Lab\Kaspersky Anti–Virus Personal\kavsvc.exe
O23 – Service: Macromedia Licensing Service – Unknown owner – L:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 – Service: MSCSPTISRV – Sony Corporation – L:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 – Service: NVIDIA Display Driver Service (NVSvc) – NVIDIA Corporation – L:\WINXP\System32\nvsvc32.exe
O23 – Service: O&O Defrag – O&O Software GmbH – L:\WINXP\system32\oodag.exe
O23 – Service: PACSPTISVR – Sony Corporation – L:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 – Service: PHPGeekUtil – Unknown owner – c:\apache\APACHE.EXE" ––ntservice (file missing)
O23 – Service: Pml Driver HPZ12 – HP – L:\WINXP\system32\HPZipm12.exe
O23 – Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) – Unknown owner – %ProgramFiles%\WinPcap\rpcapd.exe" –d –f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 – Service: Sony SPTI Service (SPTISRV) – Sony Corporation – L:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 – Service: SonicStage SCSI Service (SSScsiSV) – Sony Corporation – L:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 – Service: Ulead Burning Helper (UleadBurningHelper) – Ulead Systems, Inc. – L:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 – Service: TrueVector Internet Monitor (vsmon) – Zone Labs, LLC – L:\WINXP\system32\ZoneLabs\vsmon.exe

Analizator kodow na stronie WWW w przyklejonym poscie nie wskazal na nic zlego w systemie ...