-=> Quoting Rick Collins to The Visionary <=-
 tv> You can have a clean system powered on, insert a floppy, and then
 tv> just type 'dir a:' and infect your system (well, load the virus
 tv> into memory, which it can then infect from).
 RC> And how, pray tell, does that stuff loaded in the "read" buffer get
 RC> executed to "infect from?"
 RC> There is a _lot_ of misinformation in the echo, and I fear it is
 RC> about to get _worse_.
        Why is it that I can take a completely clean hard drive and system,
boot it up to the hard drive (after cleaning it with scanner on a "clean"
floppy, then insert a disk with NYB on it, read some data from it, copy some
data to it, and then boot back to that clean floppy and scan again, and it
will detect NYB on the MBR? If you want, I can send you the floppy this
happens with. It's 1,000,000% consistant. FP225 can't see it unless you boot
to floppy and scan that way. We have people at work with random GPF's and
random reboots and worse, and when I hit their machine in person, 99% of the
time, it's NYB that's causing the problems.
        One machine was cleaned the night before, and the user came in the
next morning, and installed some software onto the hard drive (AutoSketch) 
nd
infected his system again with NYB (it was put on the floppies when his
machine was infected and he copied some drawings to it).
-The Visionary
visionary@brazerko.com
... A Tagline a day keeps viruses away!
--- WtrGate+ 0.93.PRE1 beta sn 116
---------------