works like this …
caught somewhere and it is not detected: on fryday 13

symptoms:
boot sector/disk partitioning table of my secondary disk becomes invisible for one day — every fryday
i hope this remains for some time because on sunday after it reappears
i scanned my hd 2wice nothing detected
my desktop is behind a router, well configured — even though using everything whats on the net (i am a skilled developer)

temporary resolution:
i change the bios date to sunday and the HD works fine … the f***er restored my bootstrap

guess:
its somewhere within my drivers … undetected
its not a boot virus but hidden in the kernel of my winxp
it kills my boot sector of my secondary hard disk on fryday
it restores it sundays

because:
it reactivates itself on frydays and restores the infected system on sunday, first
it is unrecognized by avast even through the boot-time-scan

offer:
i give u my remote desktop access for you find out (and turn it on lol)
can also assist you with my senior programmer skills (pro c++ win coder, in my spare time, before 10:00 after 18:00)
also speak czech, german and english for clarification

final question to avast team:
what next?

workaround: change bios date to sunday

You can send the undetected malware through avast! chest. Add the suspect file to the chest and then make a manual update to upload the sample immediately. Also, you can send an email to virus@avast.com. Use a password-protected zip archive with the suspect .exe applications and include the password in the email body.

;D hey that’s the point … its undetected yet …
of course i’ve checked my rt environment with process explorer looking for suspicious processes (wo success)
but this thing is smart enough to load on windows startup only and disappear then
so what should i send to you, if not knowing what?
any tool for boot time to detect processes changing by boot sector?
…
yet i’ve boought one server license and using home edition at home but
i’m gonna check out avast’s competitors if they detect it
:-*

in fact it’s not ruining my boot sector but temporarily removing my secondary disk’s partition table
so if on a friday an unexperienced user klicks on the affected disk, windows asks him to format his disk
would be a fatal decision and a user kills his data himself
…
any tool which detects/monitors processes handling disk configuration (accesing partition tables)?

Interesting…!
Did you run a boot time scan with avast yet…??
asyn

yap … nothing found

therefore i think i’ve got a new bird flue

by the way norton didn’t find anything as well

from my c++ times i know that one can monitor changes on the partition tables on windows systems
anyone wrote that tool yet?