I have a Windows 8.1 computer with 16 processor cores and 32 GB of memory that becomes slow and unusable for about 30 minutes after each cold boot of the computer. Normally I associate this kind of long startup delay with either a virus / trojan or a bad driver. So far the virus scanners do not find anything, although it could always be a rooted trojan. Is there any tool I can install to see inside the kernel at startup and identify which specific driver is taking up all of the resources?
After a cold boot, when I bring up the Performance tab in Task Manager, the CPUs are pretty fully occupied, typically 40% to 60%. When you go to the Detail tab, no application is taking up much CPU. Almost all of the time is being spent by the kernel, which further reinforces the idea that this is a driver or virus.
I might understand why - by default - Microsoft does not monitor inside the kernel. But it is very hard to understand why they do not offer a boot mode to fully instrument the kernel and observe the behavior of drivers inside of it. That would slow down everything but surely in cases like this it would save the day. If I knew which driver to uninstall I could quickly get my computer back.