R
Rebellchen1906
Guest
Mahlzeit,
Vor kurzem habe ich auf meiner Festplatte weit über 15 Ordner gefunden die alle Namen wie z.B.
"2e98c4c6be95c7907941f6225778d5" zu erst dachte ich mir nichts dabei und habe sie gelöscht.
Jedoch kommen sie immer wieder, in den Ordern sind Textdokumente enthalten die ohne Zweifel auf Schreiben was unteranderem auf meinem PC ist oder sogar gemacht wird.
Ausschnitt:
MSI (s) (04:F8) [10:53:21:265]: Product Code from property table after transforms: '{37477865-A3F1-4772-AD43-AAFC6BCFF99F}'
MSI (s) (04:F8) [10:53:21:265]: Product registered: entering maintenance mode
MSI (s) (04:F8) [10:53:21:265]: PROPERTY CHANGE: Adding ProductState property. Its value is '5'.
MSI (s) (04:F8) [10:53:21:265]: PROPERTY CHANGE: Adding ProductToBeRegistered property. Its value is '1'.
MSI (s) (04:F8) [10:53:21:265]: Entering CMsiConfigurationManager::SetLastUsedSource.
MSI (s) (04:F8) [10:53:21:265]: Specifed source is not already in a list.
MSI (s) (04:F8) [10:53:21:265]: User policy value 'SearchOrder' is 'nmu'
MSI (s) (04:F8) [10:53:21:265]: Machine policy value 'DisableBrowse' is 0
MSI (s) (04:F8) [10:53:21:265]: Machine policy value 'AllowLockdownBrowse' is 0
MSI (s) (04:F8) [10:53:21:265]: Adding new sources is allowed.
MSI (s) (04:F8) [10:53:21:265]: Package name retrieved from configuration data: 'msxml.msi'
MSI (s) (04:F8) [10:53:21:265]: Determined that existing product (either this product or the product being upgraded with a patch) is installed per-machine.
MSI (s) (04:F8) [10:53:21:265]: Note: 1: 2729
MSI (s) (04:F8) [10:53:21:375]: Note: 1: 2729
MSI (s) (04:F8) [10:53:21:375]: Note: 1: 2262 2: AdminProperties 3: -2147287038
MSI (s) (04:F8) [10:53:21:375]: Machine policy value 'DisableMsi' is 0
MSI (s) (04:F8) [10:53:21:375]: Machine policy value 'AlwaysInstallElevated' is 0
MSI (s) (04:F8) [10:53:21:375]: User policy value 'AlwaysInstallElevated' is 0
MSI (s) (04:F8) [10:53:21:375]: Product {37477865-A3F1-4772-AD43-AAFC6BCFF99F} is admin assigned: LocalSystem owns the publish key.
MSI (s) (04:F8) [10:53:21:375]: Product {37477865-A3F1-4772-AD43-AAFC6BCFF99F} is managed.
MSI (s) (04:F8) [10:53:21:375]: Running product '{37477865-A3F1-4772-AD43-AAFC6BCFF99F}' with elevated privileges: Product is assigned.
MSI (s) (04:F8) [10:53:21:375]: PROPERTY CHANGE: Adding REBOOT property. Its value is 'ReallySuppress'.
MSI (s) (04:F8) [10:53:21:375]: PROPERTY CHANGE: Adding CURRENTDIRECTORY property. Its value is 'c:2e98c4c6be95c7907941f6225778d5'.
MSI (s) (04:F8) [10:53:21:375]: PROPERTY CHANGE: Adding CLIENTUILEVEL property. Its value is '3'.
MSI (s) (04:F8) [10:53:21:375]: PROPERTY CHANGE: Adding CLIENTPROCESSID property. Its value is '2684'.
MSI (s) (04:F8) [10:53:21:375]: TRANSFORMS property is now:
MSI (s) (04:F8) [10:53:21:375]: PROPERTY CHANGE: Adding PRODUCTLANGUAGE property. Its value is '1033'.
MSI (s) (04:F8) [10:53:21:375]: PROPERTY CHANGE: Adding VersionDatabase property. Its value is '200'.
MSI (s) (04:F8) [10:53:21:375]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileAnwendungsdaten
MSI (s) (04:F8) [10:53:21:375]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileFavoriten
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileNetzwerkumgebung
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileEigene Dateien
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileDruckumgebung
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileRecent
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileSendTo
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileVorlagen
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C
okumente und EinstellungenAll UsersAnwendungsdaten
MSI (s) (04:F8) [10:53:21:406]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileLokale EinstellungenAnwendungsdaten
MSI (s) (04:F8) [10:53:21:406]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileEigene DateienEigene Bilder
MSI (s) (04:F8) [10:53:21:437]: SHELL32::SHGetFolderPath returned: C
okumente und EinstellungenAll UsersStartmenüProgrammeVerwaltung
MSI (s) (04:F8) [10:53:21:437]: SHELL32::SHGetFolderPath returned: C
okumente und EinstellungenAll UsersStartmenüProgrammeAutostart
MSI (s) (04:F8) [10:53:21:437]: SHELL32::SHGetFolderPath returned: C
okumente und EinstellungenAll UsersStartmenüProgramme
MSI (s) (04:F8) [10:53:21:437]: SHELL32::SHGetFolderPath returned: C
okumente und EinstellungenAll UsersStartmenü
MSI (s) (04:F8) [10:53:21:437]: SHELL32::SHGetFolderPath returned: C
okumente und EinstellungenAll UsersDesktop
MSI (s) (04:F8) [10:53:21:437]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileStartmenüProgrammeVerwaltung
MSI (s) (04:F8) [10:53:21:546]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileStartmenüProgrammeAutostart
MSI (s) (04:F8) [10:53:21:546]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileStartmenüProgramme
MSI (s) (04:F8) [10:53:21:546]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileStartmenü
MSI (s) (04:F8) [10:53:21:546]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileDesktop
MSI (s) (04:F8) [10:53:21:546]: SHELL32::SHGetFolderPath returned: C
okumente und EinstellungenAll UsersVorlagen
Ich habe alle möglichen Anti Virus Programme Versucht aber keines konnte dieses abschalten.
meine angst ist nun das jemand auf mein PC zugreifen kann.
Weiß jemand ob es so ist oder sogar wie ich dieses Abschalten kann?
mfg
Vor kurzem habe ich auf meiner Festplatte weit über 15 Ordner gefunden die alle Namen wie z.B.
"2e98c4c6be95c7907941f6225778d5" zu erst dachte ich mir nichts dabei und habe sie gelöscht.
Jedoch kommen sie immer wieder, in den Ordern sind Textdokumente enthalten die ohne Zweifel auf Schreiben was unteranderem auf meinem PC ist oder sogar gemacht wird.
Ausschnitt:
MSI (s) (04:F8) [10:53:21:265]: Product Code from property table after transforms: '{37477865-A3F1-4772-AD43-AAFC6BCFF99F}'
MSI (s) (04:F8) [10:53:21:265]: Product registered: entering maintenance mode
MSI (s) (04:F8) [10:53:21:265]: PROPERTY CHANGE: Adding ProductState property. Its value is '5'.
MSI (s) (04:F8) [10:53:21:265]: PROPERTY CHANGE: Adding ProductToBeRegistered property. Its value is '1'.
MSI (s) (04:F8) [10:53:21:265]: Entering CMsiConfigurationManager::SetLastUsedSource.
MSI (s) (04:F8) [10:53:21:265]: Specifed source is not already in a list.
MSI (s) (04:F8) [10:53:21:265]: User policy value 'SearchOrder' is 'nmu'
MSI (s) (04:F8) [10:53:21:265]: Machine policy value 'DisableBrowse' is 0
MSI (s) (04:F8) [10:53:21:265]: Machine policy value 'AllowLockdownBrowse' is 0
MSI (s) (04:F8) [10:53:21:265]: Adding new sources is allowed.
MSI (s) (04:F8) [10:53:21:265]: Package name retrieved from configuration data: 'msxml.msi'
MSI (s) (04:F8) [10:53:21:265]: Determined that existing product (either this product or the product being upgraded with a patch) is installed per-machine.
MSI (s) (04:F8) [10:53:21:265]: Note: 1: 2729
MSI (s) (04:F8) [10:53:21:375]: Note: 1: 2729
MSI (s) (04:F8) [10:53:21:375]: Note: 1: 2262 2: AdminProperties 3: -2147287038
MSI (s) (04:F8) [10:53:21:375]: Machine policy value 'DisableMsi' is 0
MSI (s) (04:F8) [10:53:21:375]: Machine policy value 'AlwaysInstallElevated' is 0
MSI (s) (04:F8) [10:53:21:375]: User policy value 'AlwaysInstallElevated' is 0
MSI (s) (04:F8) [10:53:21:375]: Product {37477865-A3F1-4772-AD43-AAFC6BCFF99F} is admin assigned: LocalSystem owns the publish key.
MSI (s) (04:F8) [10:53:21:375]: Product {37477865-A3F1-4772-AD43-AAFC6BCFF99F} is managed.
MSI (s) (04:F8) [10:53:21:375]: Running product '{37477865-A3F1-4772-AD43-AAFC6BCFF99F}' with elevated privileges: Product is assigned.
MSI (s) (04:F8) [10:53:21:375]: PROPERTY CHANGE: Adding REBOOT property. Its value is 'ReallySuppress'.
MSI (s) (04:F8) [10:53:21:375]: PROPERTY CHANGE: Adding CURRENTDIRECTORY property. Its value is 'c:2e98c4c6be95c7907941f6225778d5'.
MSI (s) (04:F8) [10:53:21:375]: PROPERTY CHANGE: Adding CLIENTUILEVEL property. Its value is '3'.
MSI (s) (04:F8) [10:53:21:375]: PROPERTY CHANGE: Adding CLIENTPROCESSID property. Its value is '2684'.
MSI (s) (04:F8) [10:53:21:375]: TRANSFORMS property is now:
MSI (s) (04:F8) [10:53:21:375]: PROPERTY CHANGE: Adding PRODUCTLANGUAGE property. Its value is '1033'.
MSI (s) (04:F8) [10:53:21:375]: PROPERTY CHANGE: Adding VersionDatabase property. Its value is '200'.
MSI (s) (04:F8) [10:53:21:375]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileAnwendungsdaten
MSI (s) (04:F8) [10:53:21:375]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileFavoriten
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileNetzwerkumgebung
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileEigene Dateien
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileDruckumgebung
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileRecent
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileSendTo
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileVorlagen
MSI (s) (04:F8) [10:53:21:390]: SHELL32::SHGetFolderPath returned: C
MSI (s) (04:F8) [10:53:21:406]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileLokale EinstellungenAnwendungsdaten
MSI (s) (04:F8) [10:53:21:406]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileEigene DateienEigene Bilder
MSI (s) (04:F8) [10:53:21:437]: SHELL32::SHGetFolderPath returned: C
MSI (s) (04:F8) [10:53:21:437]: SHELL32::SHGetFolderPath returned: C
MSI (s) (04:F8) [10:53:21:437]: SHELL32::SHGetFolderPath returned: C
MSI (s) (04:F8) [10:53:21:437]: SHELL32::SHGetFolderPath returned: C
MSI (s) (04:F8) [10:53:21:437]: SHELL32::SHGetFolderPath returned: C
MSI (s) (04:F8) [10:53:21:437]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileStartmenüProgrammeVerwaltung
MSI (s) (04:F8) [10:53:21:546]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileStartmenüProgrammeAutostart
MSI (s) (04:F8) [10:53:21:546]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileStartmenüProgramme
MSI (s) (04:F8) [10:53:21:546]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileStartmenü
MSI (s) (04:F8) [10:53:21:546]: SHELL32::SHGetFolderPath returned: C:WINDOWSsystem32configsystemprofileDesktop
MSI (s) (04:F8) [10:53:21:546]: SHELL32::SHGetFolderPath returned: C
Ich habe alle möglichen Anti Virus Programme Versucht aber keines konnte dieses abschalten.
meine angst ist nun das jemand auf mein PC zugreifen kann.
Weiß jemand ob es so ist oder sogar wie ich dieses Abschalten kann?
mfg
