GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-10-25 00:57:47
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\00000034 WDC_WD10JPVX-80JC3T0 rev.01.01A01 931.51GB
Running: _4_z3mhwmu5.exe; Driver: C:\Users\M-KOL_~1.SKI\AppData\Local\Temp\pfldypoc.sys


---- Disk sectors - GMER 2.1 ----

Disk     \Device\Harddisk0\DR0                                                                                                                                                                                                     unknown MBR code

---- Threads - GMER 2.1 ----

Thread   C:\WINDOWS\system32\csrss.exe [652:668]                                                                                                                                                                                   fffff96000957b90
---- Processes - GMER 2.1 ----

Library  C:\Program Files (x86)\Common Files\Microsoft Shared\Office15\mso.dll (*** suspicious ***) @ C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE [6800]       000000006a740000
Library  C:\Program Files (x86)\Common Files\Microsoft Shared\Office15\csi.dll (*** suspicious ***) @ C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE [6800]       0000000063e90000
Library  C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\ACEOLEDB.DLL (*** suspicious ***) @ C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE [6800]  0000000063e40000

---- EOF - GMER 2.1 ----