Question: I'm at a bar placed by my company network cables [w32 hllw] [network cables]
Q: Since my lap top do not know whether the network options Companys my social network, I can not log into one of the areas of my business. But I can get on the internet because the CAT 5 cable is still the communication to the switch or server.
Just yesterday, two of the people in my IT department declined to look at my lap top. (Looking for the MAC address), because their server detects a virus. And because Norton was not activated on my PC, the worm w32.HLLW.Gaobot.gen smelly havoc on my system. It would actually disable my anti-virus software, even if I wanted to get rid of. So I had to boot into safe mode and repairing there.
Now questions.
1. How has the network detect my MAC address as the carrier of the virus? Especially if Im not logged as a company user.
2. I was not logged into a domain, the virus can spread to other users on the network? I find that hard because I can not even my company email server.
Cable Descramblers Plans Get Free Cable.
Re:I second the vote for donuts, especially if a few days go by and you don't get the call into the bosses' office………….
Next Generation Network Marketing Handbook
Re:Yeah, they more than likely did save your job. I wouldn't be surprised if they "mistakingly" failed to report it up the chain of command…most management wont tolerate incidents like that. You definitely need to thank them, write a letter…maybe even bring some donuts. Geeks love donuts. MMmmm, donuts….:D
Easy Network Wiring
Re:Did they at least take you out back for a horse-whipping? ("hoss-whuppin'")
I agree with an earlier poster, you're very lucky to still be employed.
IMHO, you should dash off a quick note to the IT folks to follow up your verbal apology and thank them for their professionalism and understanding (and apologize some more). You could have put the whole department on overtime if they weren't already rigged to catch that worm.
They probably saved your job.
.02
Scott
Home Automation & Networking eBook
Re:Originally posted by: guy
guy, your company's IT people get clue points for handling this correctly. Windows viruses (it's $#%@#$ always Windows. Always…) are causing major havoc on LANs, and so you need a management infrastructure that can let you hunt down and shut down problems, and IT folks who can do it and follow up on the problem. Otherwise, everyone can suffer because one person with a virus plugs in.
Yeah, that's why I was extremely embarrassed and apologetic when the IT fellows showed up.
Very careless on my part.
Social Network Marketing 2.0 – 75% commission
Re:guy, your company's IT people get clue points for handling this correctly. Windows viruses (it's $#%@#$ always Windows. Always…) are causing major havoc on LANs, and so you need a management infrastructure that can let you hunt down and shut down problems, and IT folks who can do it and follow up on the problem. Otherwise, everyone can suffer because one person with a virus plugs in.
The Social Networking Business Plan
Re:Yeah, he could have probably disabled your port.
Where I work, that happens automatically. We have every switch port that a user's PC is plugged into configured to accept one MAC address, that of the computer which is currently connected to it. We have one port in the office which is in the conference room where contractors, customers, people with laptops from home, etc can plug in their laptop. That port is connected to a cable modem, which is completely seperate from our company network. People get pissed off all the time because people in our office have a tendency to move around, they come to us yelling and screaming that their PC wont work now that they moved into such and such's office. We just go into the switch and allow that MAC on that port. Our reply to them is "I'm sorry but you didnt tell us you were moving….thats the way things are, and that's the way they're gonna be, so if you want to avoid the problem in the future, you need to inform IT before you move." It's actually fairly enjoyable because like many companies, IT gets treated like crap at my company, and people dont appreciate anything we do. This is one of our little ways of giving them the finger.
Of course, this doesnt prevent someone from spoofing the MAC of the PC that was previously connected to that port…but it's the best we can do until we get an 802.1x solution in place. Fortunately, we are small enough where it isnt a major daily thing we have to deal with.
Social Networking On Squidoo.
Re:Originally posted by: guy
Wow…
Like I thru a match inside a fireworks factory (in which I worked at) and ignored it.
Thanks for the info. Thankfully I deleted the worm. I just doubt they'll ever let me back into work with a lap top.
You think the Network Admin red flagged my IP/Mac address? And could he disable my port?
This kind of stuff is getting very serious these days. We're seriously considering using 802.1x authentication everywhere. Basically if you don't have an ID for a machine you can't log int.
Even had contractors ask "I need to plug in my laptop where is a port?" To which security responds "you may not plug in any non-company PC." and they do anyway. They suddenly find themselves no longer on the account.
Adwords Content Network Tips
Re:Wow…
Like I thru a match inside a fireworks factory (in which I worked at) and ignored it.
Thanks for the info. Thankfully I deleted the worm. I just doubt they'll ever let me back into work with a lap top.
You think the Network Admin red flagged my IP/Mac address? And could he disable my port?
Social Networking For Idiots
Re:the ip address of your machine was identified as generating worm traffic. Then the mac address was found out as well, then traced to a switch which said "the bad guy is on this port". They then followed the cable to a jack labeld "bad guys cube #"
and voila!
Worms don't need to be logged into anything to spread. They just spem/scan for any vulnerable hosts.
EW! Just read about that worm. it uses the RPC exploit that killed everybody last year. No wonder they found you. Probably had alarms going off all over the place when they saw a host scanning on port 135.
NetDepict – 100% Automated Visio Network Drawings
Re:You actually connected a laptop to your works network while you KNEW you had a virus? I'm surprised you didn't get fired. All a virus needs is access to the network it's not like it needs to 'log on' to infect the company's network, just needs access to any sort of network
Re:I'm no expert but I do know here at school in the dorms they can dectect a mac address and chase it down to a specific port on where the computer exists that is sending out bad packets and then they turn the port off.
Related posts
Tags: network cables, w32 hllw