Task: {09F66E8E-9F66-43CB-ADE6-83CF970DDC10} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (No File)
Task: {15E4A690-A6D4-4421-A45F-63AFE737E532} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (No File)
Task: {25E9B3AB-16B0-42C4-AE47-527E6C0D8375} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {27BB8114-A96C-4EE2-A3F1-41606BF9A7F8} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (No File)
Task: {2D268147-9A45-4E5A-BDFE-C7314F5089CB} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {2F1D79DD-EF31-4521-84D9-5E5B16334318} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {3532DA2F-BD4F-400F-A2B3-1843DA603006} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (No File)
Task: {450B94F7-3123-4C47-89AC-63E69AAE9EAC} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {470FAF02-F985-4F8F-B4FB-0E994C8E96C5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (No File)
Task: {4A4C3CC9-3381-4520-A58C-76767825D7B9} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (No File)
Task: {4FAEEF82-E64B-4D2A-B2CC-B7F33137CDE7} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {5103ED3B-BE22-4C0D-9BE2-7425186AD8C4} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (No File)
Task: {593BE672-3D5E-4AEB-86D6-26D232CE92B4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {5D1C52D8-6C86-444F-8C17-DF7EA613FD8E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (No File)
Task: {617F01F5-DD3F-48B2-9E9D-757C3A3E34B4} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (No File)
Task: {64A7A34F-1F69-49B7-B92A-AF2CA22E1F38} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (No File)
Task: {670936F4-6FDA-496A-A0B6-A691BE75E542} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {83BC47FA-B153-4096-B80E-78676D663CBB} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (No File)
Task: {93A8F4C8-2A39-4BE5-B9BD-39EFC26E4EF2} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (No File)
Task: {B80D8339-9C1D-402B-BD1F-453402D7EDCA} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (No File)
Task: {B8796AE0-90FD-43E5-B555-5ECB3929FE16} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (No File)
Task: {BEBCF221-111B-416C-8DF5-F0A098796A93} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (No File)
Task: {D33448E1-CADF-4340-AA19-AE6F7F3A337B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {D3A5BFBF-79F9-4EF5-8C4A-BA2BE99D6B59} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (No File)
Task: {D5BE3CE4-4683-42E2-B82C-37DFBE43C083} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (No File)
Task: {DFA72E33-E607-4CAE-8ABE-F7EA6F8C62CB} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (No File)
Task: {E35D1A64-D942-47F1-958F-BBAB1CFD4B12} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (No File)Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Task: {E5491616-7385-42A6-A25F-455BB414C697} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (No File)
Task: {FBF27397-2298-4250-9918-0506423498C4} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (No File)
U3 idsvc; no ImagePath
cmd: ECHO Y|CHKDSK C: /F
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> No File
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
AlternateDataStreams: C:\Users\Public\AppData:CSM [476]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
FirewallRules: [{B5728A4E-A152-4997-8851-D8282BD53D63}] => (Allow) E:\Steam Games\steamapps\common\rocketleague\Binaries\RocketLeague.exe => No File
FirewallRules: [{378AE846-9FC2-47B8-8EB3-1AC4F22F6005}] => (Allow) E:\Steam Games\steamapps\common\rocketleague\Binaries\RocketLeague.exe => No File
FirewallRules: [{E72B1CD7-B587-43B3-8CC3-A47B82EBF105}] => (Allow) C:\Users\Kitchen PC\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{488B39DA-E6B4-401E-BC0F-A9FF42F8FAC1}] => (Allow) E:\Steam Games\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe => No File
FirewallRules: [{A69F5670-F9A7-4C2B-B44A-4D014A007BBC}] => (Allow) E:\Steam Games\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe => No File
FirewallRules: [{4CC08633-AD90-41DC-8BED-021DBF142746}] => (Allow) E:\Steam Games\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe => No File
FirewallRules: [{645231DD-F1EF-4D9A-942A-7591D64D14F8}] => (Allow) E:\Steam Games\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe => No File
FirewallRules: [{B3F4B192-85DC-4B1C-84C6-C479B2C2D413}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe => No File
FirewallRules: [{B8A7E5D1-9D3D-47BE-9E1D-CBCBDE53F18B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe => No File
FirewallRules: [TCP Query User{0222D137-17FA-4891-BDCC-014CC08C77BB}C:\users\kitchen pc\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\users\kitchen pc\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe => No File
FirewallRules: [UDP Query User{BDDD6B5D-F09B-4E96-9782-FBF6866A4DE1}C:\users\kitchen pc\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\users\kitchen pc\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe => No File
FirewallRules: [TCP Query User{DB2B0F0F-CA5F-4283-A78E-4AE7F0847590}C:\users\kitchen pc\appdata\roaming\cricutdesignspace\bridge\cricutbridge.exe] => (Allow) C:\users\kitchen pc\appdata\roaming\cricutdesignspace\bridge\cricutbridge.exe => No File
FirewallRules: [UDP Query User{08DDBD49-383A-468F-8CE1-90AED8E88126}C:\users\kitchen pc\appdata\roaming\cricutdesignspace\bridge\cricutbridge.exe] => (Allow) C:\users\kitchen pc\appdata\roaming\cricutdesignspace\bridge\cricutbridge.exe => No File
FirewallRules: [TCP Query User{4110274A-1A96-44CE-8158-C3DBADC974CC}C:\users\kitchen pc\appdata\roaming\cricutdesignspace\bridge\cricutbridge.exe] => (Block) C:\users\kitchen pc\appdata\roaming\cricutdesignspace\bridge\cricutbridge.exe => No File
FirewallRules: [UDP Query User{967FB2CB-3231-4857-AC90-AC42EB5B2461}C:\users\kitchen pc\appdata\roaming\cricutdesignspace\bridge\cricutbridge.exe] => (Block) C:\users\kitchen pc\appdata\roaming\cricutdesignspace\bridge\cricutbridge.exe => No File
FirewallRules: [TCP Query User{C4462910-55D8-4429-B26E-5253109CECBE}E:\steamlibrary\steamapps\common\terraria\terrariaserver.exe] => (Block) E:\steamlibrary\steamapps\common\terraria\terrariaserver.exe => No File
FirewallRules: [UDP Query User{D28B7C85-BB65-43EF-895C-9626E4DE172F}E:\steamlibrary\steamapps\common\terraria\terrariaserver.exe] => (Block) E:\steamlibrary\steamapps\common\terraria\terrariaserver.exe => No File
FirewallRules: [TCP Query User{18A1BFD6-5FB9-414A-ADF0-96375D782BC9}C:\users\kitchen pc\appdata\local\temp\i1467333143\windows\resource\jre\bin\javaw.exe] => (Block) C:\users\kitchen pc\appdata\local\temp\i1467333143\windows\resource\jre\bin\javaw.exe => No File
FirewallRules: [UDP Query User{E6344121-5B10-45A4-B556-EE94F42FADC1}C:\users\kitchen pc\appdata\local\temp\i1467333143\windows\resource\jre\bin\javaw.exe] => (Block) C:\users\kitchen pc\appdata\local\temp\i1467333143\windows\resource\jre\bin\javaw.exe => No File
FirewallRules: [{747E58C6-7AE7-4380-B421-74670CEA0FC1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{85403528-AEFF-4FE4-B210-2700475D67C7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{079C798F-696F-4A75-8563-6FB3ED1002C9}] => (Allow) H:\SteamLibrary\steamapps\common\Call of Duty WWII Beta\s2_mp64_ship.exe => No File
FirewallRules: [{4DB06671-716C-4EE1-B1BF-39C6AD37CA2A}] => (Allow) H:\SteamLibrary\steamapps\common\Call of Duty WWII Beta\s2_mp64_ship.exe => No File
FirewallRules: [{06639C74-7561-4F37-AF38-3455C6BB1E8E}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe => No File
FirewallRules: [{38BC1987-1120-491E-97CC-788E23B503FF}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe => No File
FirewallRules: [TCP Query User{9C8934AB-AA55-4008-8389-7164EED37B71}C:\users\kitchen pc\appdata\roaming\cricutdesignspace3\bridge\cricutbridge4.exe] => (Allow) C:\users\kitchen pc\appdata\roaming\cricutdesignspace3\bridge\cricutbridge4.exe => No File
FirewallRules: [UDP Query User{8C7F4F29-0B8A-4416-9F97-7A6C40B8D7E5}C:\users\kitchen pc\appdata\roaming\cricutdesignspace3\bridge\cricutbridge4.exe] => (Allow) C:\users\kitchen pc\appdata\roaming\cricutdesignspace3\bridge\cricutbridge4.exe => No File
FirewallRules: [TCP Query User{942F7167-0F6B-4B91-9F48-80A1B6382899}C:\users\kitchen pc\appdata\roaming\cricutdesignspace3\bridge\cricutbridge4.exe] => (Block) C:\users\kitchen pc\appdata\roaming\cricutdesignspace3\bridge\cricutbridge4.exe => No File
FirewallRules: [UDP Query User{C1116937-E6AA-4F76-8F9E-BD773D67A829}C:\users\kitchen pc\appdata\roaming\cricutdesignspace3\bridge\cricutbridge4.exe] => (Block) C:\users\kitchen pc\appdata\roaming\cricutdesignspace3\bridge\cricutbridge4.exe => No File
FirewallRules: [TCP Query User{37CF859C-3620-47DB-B279-76702FC4615D}E:\subnautica\subnautica.exe] => (Block) E:\subnautica\subnautica.exe => No File
FirewallRules: [UDP Query User{657FD83A-CC17-4799-8775-7531212E66F8}E:\subnautica\subnautica.exe] => (Block) E:\subnautica\subnautica.exe => No File
FirewallRules: [{9524A563-6B49-401C-93DB-FC17A6D88B9D}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe => No File
FirewallRules: [{7159AAF6-5DD4-45A0-98A9-D7B16062EA32}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe => No File
FirewallRules: [{8DDF18C9-DD57-4CC2-AE01-E4BA9CD43DE6}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe => No File
FirewallRules: [{03984D40-3BA3-4307-A88A-42776A96583E}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe => No File
Unlock:  E:\Steam Games\steamapps\common\rocketleague\Binaries\Win64\EOSSDK-Win64-Shipping.dll
Unlock: C:\WINDOWS\SYSTEM32\ism.dll
CMD: DISM /Online /Cleanup-Image /RestoreHealth
CMD: SFC /scannow
CMD: findstr  /c:"[SR]"  \windows\logs\cbs\cbs.log
CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i"
Reboot: