S2 204065EE; %SystemRoot%\204065EE.exe [X]
S2 lanesiwamreg; "C:\Windows\SysWOW64\lanesiwamreg.exe" [X]
R4 eppdisk; system32\drivers\eppdisk.sys [X]
CMD: type C:\Windows\wininit.ini
2018-06-28 16:56 - 2009-07-13 21:38 - 000079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lanesiwamreg_.exe
CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i"