New York Boot (NYB) Virus

This article has been archived. It is offered "as is" and will no longer be updated.
The New York Boot (NYB) virus is a simple Master Boot Record (MBR) virus. It is a stealth virus and is contracted when an infected floppy disk is started. The virus was previously known as Stoned.i, B1 and was discovered in 1995. This virus creates a copy of the uninfected MBR and stores it on the hard disk drive at side zero, cylinder zero, sector 17, and then places itself in the original location of the MBR. Any attempt to read the MBR is redirected to sector 17; NYB is a stealth virus because it uses this method to prevent detection.
More information
This virus uses the last record of the root directory on floppy disks to hold its viral code. Any data that is written to this area is lost. There are two payloads with this virus:
  • In one out of every 512 floppy disk accesses, the virus causes the system to constantly scan the drive, which eventually leads to physical damage to the drive.
  • If the drive is written to at the exact second of midnight, the virus crashes the system, causing any unsaved data to be lost.
It is recommended that viruses be removed from the system with an anti-virus software program.

Article ID: 259341 - Last Review: 12/05/2015 19:36:56 - Revision: 2.0

  • kbnosurvey kbarchive kbinfo kbvirus KB259341