GMER 2.1.19357 - http://www.gmer.net Rootkit scan 2015-01-21 20:39:43 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\0000006b ST950032 rev.0003 465,76GB Running: 47btyg3t.exe; Driver: C:\Users\ASUS\AppData\Local\Temp\aftcqaoc.sys ---- Kernel IAT/EAT - GMER 2.1 ---- IAT C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortBufferUshort] [fffff88001066e94] \SystemRoot\System32\Drivers\sptd.sys [.text] IAT C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUchar] [fffff88001066c38] \SystemRoot\System32\Drivers\sptd.sys [.text] IAT C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUchar] [fffff88001067614] \SystemRoot\System32\Drivers\sptd.sys [.text] IAT C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUlong] [fffff88001067a10] \SystemRoot\System32\Drivers\sptd.sys [.text] IAT C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortBufferUshort] [fffff8800106786c] \SystemRoot\System32\Drivers\sptd.sys [.text] ---- Devices - GMER 2.1 ---- Device \FileSystem\Ntfs \Ntfs fffffa80021db2c0 Device \FileSystem\fastfat \Fat fffffa8002e9b2c0 Device \Driver\usbehci \Device\USBPDO-5 fffffa8002f752c0 Device \Driver\usbehci \Device\USBFDO-3 fffffa8002f752c0 Device \Driver\usbehci \Device\USBPDO-1 fffffa8002f752c0 Device \Driver\amd_sata \Device\RaidPort0 fffffa80018852c0 Device \Driver\cdrom \Device\CdRom0 fffffa8002adc2c0 Device \Driver\USBSTOR \Device\00000094 fffffa8003bf52c0 Device \Driver\cdrom \Device\CdRom1 fffffa8002adc2c0 Device \Driver\NetBT \Device\NetBT_Tcpip_{73DDEA40-F56F-48EA-94A6-04F3597DA751} fffffa8002da32c0 Device \Driver\amd_sata \Device\0000006b fffffa80018852c0 Device \Driver\usbohci \Device\USBFDO-4 fffffa8002f7d2c0 Device \Driver\usbohci \Device\USBFDO-0 fffffa8002f7d2c0 Device \Driver\usbohci \Device\USBPDO-2 fffffa8002f7d2c0 Device \Driver\USBSTOR \Device\00000091 fffffa8003bf52c0 Device \Driver\NetBT \Device\NetBT_Tcpip_{DA5D9C79-B16A-4F68-B46D-75A7D63F2304} fffffa8002da32c0 Device \Driver\amd_sata \Device\0000006c fffffa80018852c0 Device \Driver\usbehci \Device\USBFDO-5 fffffa8002f752c0 Device \Driver\NetBT \Device\NetBT_Tcpip_{37AF6517-8D19-42CC-BDBD-A0E392198D9B} fffffa8002da32c0 Device \Driver\usbehci \Device\USBPDO-3 fffffa8002f752c0 Device \Driver\usbehci \Device\USBFDO-1 fffffa8002f752c0 Device \Driver\USBSTOR \Device\00000092 fffffa8003bf52c0 Device \Driver\NetBT \Device\NetBt_Wins_Export fffffa8002da32c0 Device \Driver\usbohci \Device\USBPDO-4 fffffa8002f7d2c0 Device \Driver\amd_sata \Device\ScsiPort0 fffffa80018852c0 Device \Driver\usbohci \Device\USBFDO-2 fffffa8002f7d2c0 Device \Driver\usbohci \Device\USBPDO-0 fffffa8002f7d2c0 Device \Driver\USBSTOR \Device\00000093 fffffa8003bf52c0 ---- Trace I/O - GMER 2.1 ---- Trace ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0xfffffa80018872c0]<< sptd.sys amd_xata.sys storport.sys hal.dll amd_sata.sys fffffa80018872c0 Trace 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80029fa060] fffffa80029fa060 Trace 3 CLASSPNP.SYS[fffff88001ae143f] -> nt!IofCallDriver -> [0xfffffa80024fbac0] fffffa80024fbac0 Trace \Driver\amd_xata[0xfffffa80022be900] -> IRP_MJ_CREATE -> 0xfffffa80018872c0 fffffa80018872c0 Trace 5 amd_xata.sys[fffff88000e71d00] -> nt!IofCallDriver -> \Device\0000006b[0xfffffa80022ce9c0] fffffa80022ce9c0 Trace \Driver\amd_sata[0xfffffa80022bee70] -> IRP_MJ_CREATE -> 0xfffffa80018852c0 fffffa80018852c0 ---- EOF - GMER 2.1 ----