sysWOW64 cmd.exe, possible malware hijack?

[JoePGM]

Alright, thanks again TwinHeadedEagle!

[JoePGM]

Hi TwinHeadedEagle, my system come back something like this, these application try to reach an external IP and reports malicious action by Malwarebyte

 

Malwarebytes Anti-Malware

www.malwarebytes.org

 

 

Update, 05/05/2015 10:44:25 PM, SYSTEM, X99, Manual, Remediation Database, 2014.12.6.1, 2015.4.22.1, 

Update, 05/05/2015 10:44:25 PM, SYSTEM, X99, Manual, Rootkit Database, 2015.2.25.1, 2015.4.21.1, 

Update, 05/05/2015 10:44:27 PM, SYSTEM, X99, Manual, Malware Database, 2015.3.7.4, 2015.5.5.4, 

Protection, 05/05/2015 10:45:08 PM, SYSTEM, X99, Protection, Malware Protection, Starting, 

Protection, 05/05/2015 10:45:08 PM, SYSTEM, X99, Protection, Malware Protection, Started, 

Protection, 05/05/2015 10:45:08 PM, SYSTEM, X99, Protection, Malicious Website Protection, Starting, 

Protection, 05/05/2015 10:45:08 PM, SYSTEM, X99, Protection, Malicious Website Protection, Started, 

Update, 05/05/2015 10:51:55 PM, SYSTEM, X99, Manual, Malware Database, 2015.5.5.4, 2015.5.5.5, 

Protection, 05/05/2015 10:51:55 PM, SYSTEM, X99, Protection, Refresh, Starting, 

Protection, 05/05/2015 10:51:55 PM, SYSTEM, X99, Protection, Malicious Website Protection, Stopping, 

Protection, 05/05/2015 10:51:55 PM, SYSTEM, X99, Protection, Malicious Website Protection, Stopped, 

Protection, 05/05/2015 10:51:58 PM, SYSTEM, X99, Protection, Refresh, Success, 

Protection, 05/05/2015 10:51:58 PM, SYSTEM, X99, Protection, Malicious Website Protection, Starting, 

Protection, 05/05/2015 10:51:58 PM, SYSTEM, X99, Protection, Malicious Website Protection, Started, 

Scan, 05/05/2015 10:56:48 PM, SYSTEM, X99, Manual, Start:05/05/2015 10:52:07 PM, Duration:4 min 41 sec, Threat Scan, Completed, 0 Malware Detections, 0 Non-Malware Detections, 

Protection, 05/05/2015 10:04:50 PM, SYSTEM, X99, Protection, Malware Protection, Starting, 

Protection, 05/05/2015 10:04:50 PM, SYSTEM, X99, Protection, Malware Protection, Started, 

Protection, 05/05/2015 10:04:50 PM, SYSTEM, X99, Protection, Malicious Website Protection, Starting, 

Protection, 05/05/2015 10:05:08 PM, SYSTEM, X99, Protection, Malicious Website Protection, Started, 

Detection, 05/05/2015 10:06:15 PM, SYSTEM, X99, Protection, Malicious Website Protection, IP, 166.78.246.145, 1147, Outbound, C:\Program Files (x86)\NZXT\CAM\CAM_Client.exe, 

Detection, 05/05/2015 10:06:15 PM, SYSTEM, X99, Protection, Malicious Website Protection, IP, 166.78.246.145, 1147, Outbound, C:\Program Files (x86)\NZXT\CAM\CAM_Client.exe, 

Detection, 05/05/2015 11:11:04 PM, SYSTEM, X99, Protection, Malicious Website Protection, IP, 213.226.201.226, 6881, Outbound, D:\Games\World_of_Tanks\WoTLauncher.exe, 

Detection, 05/05/2015 11:11:04 PM, SYSTEM, X99, Protection, Malicious Website Protection, IP, 213.226.201.226, 6881, Outbound, D:\Games\World_of_Tanks\WoTLauncher.exe, 

 

(end)

 

Any idea??

[JoePGM]

I have report the similar case at my post #6

I have once again scan my PC with malwarebyte and kaspersky, can't find anything. But it is weird that malwarebye keep report malicious action, right?

[AdvancedSetup]

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!