Posted 03 December 2012 - 12:10 PM
I am running XP SP3 on a Dell Lattitude D630. A few weeks back I noticed performance (speed / response to web sites, etc - overall sluggishness) issues. I was running Avast professional for AV - it did not report any issues on full scan or boot scan. I also ran Malwarebytes and it did not find any issues. ESET remote scan I don't believe found anything either. I then ran Avast aswMBR and it found a file it indicated that had a CRC error (sorry I no longer have the details).
Performance seemed to get better, but last week I decided to take another look at the issue. I ran TDSSKiller - it found nothing. I then ran GMER and unfortunately it appeared to lock up the first time. I then rebooted the laptop (hard) and ran GMER again. This time it BSOD'd indicating an issue with atapi.sys (sorry - again no further details).
I rebooted, and the unit BSOD's again - still showing atapi.sys as the cause.
Subsequent attempts to ring GMER resulted the same.
I had read on another blog that AVAST might be causing the issue, so I uninstalled Avast, and installed MSE. Ran a full scan with MSE - found nothing.
Tried GMER again - and BSOD.
I am currently running Microsoft Safety Scanner which is about 10% done - but I am assuming it will find nothing.
Another strange thing is when I run Task Manager and monitor the system processes, the detailed list may indicate that CPU is 85% idle (sorting list by CPU utilization, but the summary line at the bottom of the display indicates a higher CPU utilization - usually off by about 10 - 20% - eg. CPU list says 90% idle, but CPU summary line at same time says 33% in use...
I am assuming this is a rootkit?
What should I do to analyze and resolve this issue?
Thank you - Ed