Systemauslastung nach Malware Bereinigung ohne mein zutun über 50 % !!!!!

OTL Extras logfile created on: 18.04.2016 23:34:32 - Run 1
OTL by OldTimer - Version 3.2.11.0 Folder = I:\Programme\Viren killer
64bit- Enterprise Edition (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10586.0)
Locale: 00000407 | Country: Germany | Language: DEU | Date Format: dd.MM.yyyy
 
7,00 Gb Total Physical Memory | 6,00 Gb Available Physical Memory | 79,00% Memory free
9,00 Gb Paging File | 7,00 Gb Available in Paging File | 83,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 298,92 Gb Total Space | 243,46 Gb Free Space | 81,45% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 296,76 Gb Total Space | 101,72 Gb Free Space | 34,28% Space Free | Partition Type: NTFS
Drive F: | 197,20 Gb Total Space | 60,02 Gb Free Space | 30,44% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
Drive I: | 268,55 Gb Total Space | 68,74 Gb Free Space | 25,60% Space Free | Partition Type: NTFS
 
Computer Name: BASEMASCHINE
Current User Name: Raik-Raiker
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1" File not found
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = CF 14 68 A3 D7 92 D1 01 [binary data]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]
"DontEnumerateCommonFilesUpgradeExe" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
========== Authorized Applications List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{063E67F0-C298-8A2A-0FA6-84C15322A4E0}" = ccc-utility64
"{396FF2B1-6FD6-4BA4-AA6D-3C909E8D12FF}" = FMW 1
"{47EF2552-84E8-4810-B710-22770CAB803B}" = Max 7 (64-bit)
"{77D0571D-D8A9-4FA0-9DE4-5D8489FB0C9E}" = Ableton Live 9 Suite
"{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
"{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
"{E7366CA8-7179-77AE-E712-BA18D70A0A07}" = AMD Fuel
"ARIA Engine_is1" = ARIA Engine v1.8.2.2
"CCleaner" = CCleaner
"Effectrix_is1" = Sugar Bytes Effectrix 1.4.2
"VLC media player" = VLC media player
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07326A3E-02B3-1078-25D7-B8666BA8FE15}" = CCC Help Korean
"{078E1F5C-C102-4701-9D9D-7D49BA41AB7A}_is1" = Aalto VST version 1.3.2
"{085EBD0C-F24E-EB94-6D33-2A22EF64C5CF}" = CCC Help Finnish
"{11087D24-567D-7D88-69C6-D7A08B5F4C47}" = Catalyst Control Center - Branding
"{15134cb0-b767-4960-a911-f2d16ae54797}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
"{1AD99E77-37CC-744E-39CA-67F6FD34565A}" = Catalyst Control Center Localization All
"{1BB85E73-0D92-604A-0AAF-C7AAD5E3A3C6}" = CCC Help English
"{1E72F5D1-553E-CFF9-06A3-8C5AF507DD1C}" = CCC Help French
"{22154f09-719a-4619-bb71-5b3356999fbf}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
"{25ACE797-EBDA-0E4B-096F-9FE97A1E2A6F}" = CCC Help Russian
"{2D07E15C-A9A4-D8D6-D371-92EC8779E587}" = CCC Help Hungarian
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
"{350E61E5-6C2C-2F3C-3A14-7E094AB6D3A0}" = CCC Help Spanish
"{35A71DED-DA81-1313-352A-EC8A0B27DF3B}" = CCC Help Chinese Standard
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{64D5A142-BD50-726E-ED9E-D2508D2A17E2}" = Catalyst Control Center InstallProxy
"{6FDCB1C3-9EDC-3CBC-473C-DD85ED5E0494}" = CCC Help German
"{79D22166-78C1-2AD4-04E7-BD22BD58FD46}" = CCC Help Chinese Traditional
"{82CA1714-13EA-F419-91FE-12834424745E}" = CCC Help Italian
"{8CBC65A3-40AB-DE65-2CB1-997ABDA8FD68}" = CCC Help Turkish
"{8FFCCB27-EE2D-D58F-5ABD-ED5C06B91E81}" = CCC Help Swedish
"{A5A6A4D0-2005-2A05-2E21-495808CF95ED}" = CCC Help Norwegian
"{A760847A-C4D9-E7EF-716F-07C6CBF6B147}" = CCC Help Thai
"{AF0FDA86-6E7B-1A6C-51D4-43AF50181ED2}" = AMD Catalyst Control Center
"{B839153C-D4D2-F89C-5033-0A160C62706B}" = CCC Help Portuguese
"{C1EA3764-1138-AE27-AD63-549BAD99BA15}" = CCC Help Japanese
"{C3D13AB8-468A-0174-1D06-DB9AAE8A131B}" = CCC Help Czech
"{CA95D57F-9FC3-0DD7-7C36-362F74D8C04E}" = CCC Help Dutch
"{E817E580-6318-AFC8-2102-322C73117EC4}" = CCC Help Polish
"{F77474EE-EB6C-C87B-88AF-3310C848E068}" = CCC Help Greek
"{F8DDBE95-DCBE-03B5-5359-DE3601146E21}" = CCC Help Danish
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"ASIO4ALL" = ASIO4ALL
"Burt Free2.0" = Burt Free
"DAEMON Tools Lite" = DAEMON Tools Lite
"Google Chrome" = Google Chrome
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware Version 2.2.1.1043
"NewsLeecher_is1" = NewsLeecher v5.0 Final
"PhonicUSB Driver v1.35.03" = PhonicUSB Driver v1.35.03
"WinRAR archiver" = WinRAR 4.01 (32-Bit)
"WUCCCApp" = AMD Catalyst Control Center
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 18.04.2016 17:16:11 | Computer Name = BaseMaschine | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“
ist folgender Fehler aufgetreten: -2147024894. Weitere Informationen finden Sie
im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 
Error - 18.04.2016 17:16:11 | Computer Name = BaseMaschine | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“
ist folgender Fehler aufgetreten: -2147024770. Weitere Informationen finden Sie
im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 
Error - 18.04.2016 17:18:55 | Computer Name = BaseMaschine | Source = Software Protection Platform Service | ID = 8198
Description = Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode: hr=0x8007232B
Befehlszeilenargumente:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
 
Error - 18.04.2016 17:18:56 | Computer Name = BaseMaschine | Source = Software Protection Platform Service | ID = 8198
Description = Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode: hr=0x8007232B
Befehlszeilenargumente:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error - 18.04.2016 17:19:16 | Computer Name = BaseMaschine | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“
ist folgender Fehler aufgetreten: -2147024770. Weitere Informationen finden Sie
im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 
Error - 18.04.2016 17:19:24 | Computer Name = BaseMaschine | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“
ist folgender Fehler aufgetreten: -2147024770. Weitere Informationen finden Sie
im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 
Error - 18.04.2016 17:21:15 | Computer Name = BaseMaschine | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“
ist folgender Fehler aufgetreten: -2147024770. Weitere Informationen finden Sie
im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 
Error - 18.04.2016 17:21:38 | Computer Name = BaseMaschine | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“
ist folgender Fehler aufgetreten: -2147024770. Weitere Informationen finden Sie
im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 
Error - 18.04.2016 17:24:41 | Computer Name = BaseMaschine | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“
ist folgender Fehler aufgetreten: -2147024770. Weitere Informationen finden Sie
im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 
Error - 18.04.2016 17:30:55 | Computer Name = BaseMaschine | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“
ist folgender Fehler aufgetreten: -2147024770. Weitere Informationen finden Sie
im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 
[ System Events ]
Error - 18.04.2016 16:58:20 | Computer Name = BaseMaschine | Source = Service Control Manager | ID = 7031
Description = Der Dienst "AVG Service" wurde unerwartet beendet. Dies ist bereits
1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt:
Restart the service.
 
Error - 18.04.2016 17:13:13 | Computer Name = BaseMaschine | Source = DCOM | ID = 10016
Description = 
 
Error - 18.04.2016 17:13:13 | Computer Name = BaseMaschine | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Sync Host_3244a" wurde unerwartet beendet. Dies ist bereits
1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt:
Restart the service.
 
Error - 18.04.2016 17:15:15 | Computer Name = BaseMaschine | Source = bowser | ID = 8016
Description = 
 
Error - 18.04.2016 17:16:01 | Computer Name = BaseMaschine | Source = DCOM | ID = 10001
Description = 
 
Error - 18.04.2016 17:16:03 | Computer Name = BaseMaschine | Source = DCOM | ID = 10001
Description = 
 
Error - 18.04.2016 17:16:05 | Computer Name = BaseMaschine | Source = DCOM | ID = 10001
Description = 
 
Error - 18.04.2016 17:16:07 | Computer Name = BaseMaschine | Source = DCOM | ID = 10001
Description = 
 
Error - 18.04.2016 17:16:09 | Computer Name = BaseMaschine | Source = DCOM | ID = 10001
Description = 
 
Error - 18.04.2016 17:16:11 | Computer Name = BaseMaschine | Source = DCOM | ID = 10001
Description = 
 
 
< End of report >