Have you noticed your internet has slowed down even though your plan hasn't changed? Are pages taking longer to load, are videos lagging, and are online games lagging? Someone might be using your Wi-Fi without permission. According to Juniper Research, to 24% of home networks have unsecured access points that can be easily hacked in a matter of minutes. In this article, we'll look at how check connected devices, identify traffic thieves, and reliably protect your network—even if you're not an IT expert.
The problem isn't just a slowdown. Unauthorized users can:
- 🔍 Intercept your data (passwords, bank details, correspondence).
- 📥 Download illegal content from your IP - risk of blocking or fines.
- 💻 Infect the network with viruses, if their device is infected.
- 🎮 Use your traffic to mine cryptocurrency or DDoS attacks.
We collected Current verification methods for 2026, which work on routers of any brand - from budget ones Tenda to bonuses ASUS RT-AX88UThere's no need to install any third-party software: most of the methods are built into the router's web interface. Let's start with the simplest.
1. Checking via the router's web interface: step-by-step instructions
The most reliable way is to access the router's control panel. It displays a complete list of connected devices, including MAC addresses, IP addresses, and even names (if the device broadcasts them). The instructions are universal for TP-Link, Keenetic, MikroTik and other popular brands.
How to access router settings:
- Open your browser and type in the address bar
192.168.0.1or192.168.1.1(less often -192.168.8.1for some models Huawei). - Enter your login and password (usually
admin/admin, if you haven't changed it. On some routers, for example Zyxel Keenetic, the password is indicated on the sticker below). - Go to the section with connected devices (names may differ):
- 📌 TP-Link:
DHCP → DHCP ClientsorWireless Mode → Statistics - 📌 ASUS:
Network Map → Clients - 📌 Keenetic:
Devices → Device List - 📌 MikroTik:
IP → DHCP Server → Leases
- 📌 TP-Link:
What to look for in the list:
- 🆔 Unknown MAC addressesEach device has a unique identifier. If you see an unfamiliar one, it's cause for concern.
- 📱 Suspicious names. For example,
Android-123456oriPhone_unknown- Perhaps these are someone else's gadgets. - 🖥️ Unusual manufacturersThe "Vendor" column may display a brand (Apple, Samsung, Xiaomi). If you see
TP-LINK TECHNOLOGIESAmong clients, it could be a second router in repeater mode... or someone else's device.
Disable it via the web interface (Block or Disconnect button)|
Check if any guests have joined (for example, friends you had before)|
Change your Wi-Fi password to a more complex one (instructions below)|
Enable MAC address filtering (if needed)
-->
⚠️ Attention: Some routers (eg. Huawei HG8245H) may show their own service connections (for example, for IPTV) in the list. Don't block them—this will disrupt internet service.
2. How to distinguish your device from someone else's: MAC address analysis
A MAC address is the "passport" of a network device. It can be used to identify the gadget's manufacturer and even model. For example, addresses beginning with:
B8:27:EB— devices Raspberry Pi.3C:5A:B4- gadgets Google (including Nest, Chromecast).78:31:C1- technique Apple (iPhone, MacBook, iPad).5C:F9:DD— routers and repeaters TP-Link.
How to check your device's MAC address:
- 📱 Android:
Settings → About phone → General information → Wi-Fi MAC address. - 🍎 iPhone/iPad:
Settings → General → About → Wi-Fi Address. - 💻 Windows: Open Command Prompt (
Win + R→ entercmd→ipconfig /all) and find the line "Physical address". - 🖥️ MacOS:
System Preferences → Network → Advanced → Ethernet/Wi-Fi → Ethernet Address.
Compare your gadgets' addresses with those displayed on your router. If you find a discrepancy, it's an intruder. For convenience, you can create a table:
| Device | MAC address | IP address | Note |
|---|---|---|---|
| iPhone 15 Pro | A4:83:E7:12:F5:89 |
192.168.1.102 |
My phone |
| Samsung Smart TV Q70C | 6C:3B:6B:4A:2D:11 |
192.168.1.105 |
TV in the living room |
| Unknown Device | 00:1A:79:8B:3C:4D |
192.168.1.110 |
🚨 Suspicious! Manufacturer: Samsung Electronics (but I don't have any Samsung gadgets) |
Advice: Use online services to check MAC addresses, for example MAC Vendors Lookup or Wireshark OUI Lookup. Just enter the first 6 characters of the address (e.g. B8:27:EB), and the service will show the manufacturer.
3. Mobile apps for Wi-Fi monitoring: TOP 5 utilities
If accessing your router settings is inconvenient, you can use specialized apps. They scan the network and display all connected devices in a convenient format. The main advantage is notifications about new connections in real time.
Best apps for Android and iOS:
- 📱 Fing (free + premium version)
- Scans the network in 10 seconds.
- Shows the device manufacturer by MAC address.
- There is a speed test and port check.
- 🛡️ NetCut (Android only)
- Maybe block other people's devices directly from the application (requires root rights).
- Shows how much traffic each device consumes.
- 🔍 WiFi Guard (for free)
- Compares current connections with a "whitelist" of your devices.
- Sends push notifications when new gadgets appear.
- 📊 Network Analyzer (for iOS)
- Shows
IP,MAC, and even host name (if the device broadcasts it). - There is a built-in ping and traceroute.
- Shows
- 🔒 GlassWire (Windows/macOS/Android)
- Monitors traffic in real time.
- Shows which programs consume internet on your devices.
How to use (using Fing as an example):
- Download the app from Google Play or App Store.
- Connect to your Wi-Fi network.
- Click "Scan" and in a few seconds you will see a list of devices.
- Click on a suspicious device to see details (MAC, IP, manufacturer).
⚠️ Attention: Some applications (eg. NetCut) require root rights On Android, you can block devices. Without them, they only work in monitoring mode. On iOS, due to Apple restrictions, blocking other people's devices is impossible—only viewing.
Can you trust Wi-Fi scanning apps?
Yes, but with some caveats. Popular utilities like Fing or Network Analyzer They don't steal your data because their code is verified by app stores. However:
- Avoid little-known programs with suspicious permissions (for example, access to SMS or contacts).
- Do not enter your Wi-Fi password into apps - they are not needed to scan the network.
- On Android, some apps may display ads or prompt you to purchase a premium version. This is normal if the app is from an official store.
4. Checking via the command line (for advanced users)
If you prefer to work without a graphical interface, you can check the connected devices via command line (Windows/macOS/Linux). This method is suitable for advanced users, but provides the most accurate information.
Instructions for Windows:
- Open Command Prompt (
Win + R→ entercmd→Enter). - Enter the command:
arp -aThis will display an ARP (Address Resolution Protocol) table with the IP and MAC addresses of all devices on the local network.
- Compare the output with your gadgets. For example, a line like this:
192.168.1.103 00-1a-79-8b-3c-4d dynamicindicates a connected device with a MAC
00:1A:79:8B:3C:4D.
Instructions for macOS/Linux:
- Open Terminal.
- Enter the command:
nmap -sn 192.168.1.0/24(replace
192.168.1.0/24to your subnet, if it is different). - Wait for the scan to complete—the program will display all active hosts with MAC addresses.
Output example nmap:
Starting Nmap 7.92 ( https://nmap.org )
Nmap scan report for 192.168.1.1
Host is up (0.0020s latency).
MAC Address: 5C:F9:DD:AA:BB:CC (TP-Link Technologies)
Nmap scan report for 192.168.1.102
Host is up (0.0030s latency).
MAC Address: A4:83:E7:12:F5:89 (Apple)
Nmap scan report for 192.168.1.110
Host is up (0.0050s latency).
MAC Address: 00:1A:79:8B:3C:4D (Samsung Electronics)
What to do with the data:
- Copy suspicious MAC addresses.
- Check them out through MAC Vendors Lookup (see section 2).
- If the device is someone else's - block it through your router (instructions in section 6).
⚠️ Attention: Teamsarp -aAndnmapshow all devices on the local network, including those connected via cable (such as a Smart TV or game console). Don't block them by mistake!
5. Indirect signs of a Wi-Fi leak: when to be wary
Even if you haven't checked the list of connected devices, there are some signs that should alert you:
- 🐢 A sharp drop in speed without objective reasons (check on Speedtest.net). If the speed via cable is normal, but not via Wi-Fi, it's possible that someone is consuming traffic.
- 🔋 The router is overheating or rebooting frequently.This may be due to high load (for example, if someone is downloading torrents).
- 📡 The Wi-Fi signal has become weaker in familiar locations. Other devices can clog up the channel, especially if they're far from the router and using a low connection speed.
- 💡 The activity light on the router is blinking too fast. (even when you are not using the Internet).
- 📵 Unknown devices appear in the list of connected devices (for example, in mobile games or instant messengers, you may see "A new device has connected to your network").
How to check network speed and load:
- Connect to the router via cable and take the test Speedtest.net or Yandex.Internetometer.
- Disconnect all your devices from Wi-Fi and repeat the test.
- If the speed via cable and without connected gadgets is significantly higher, someone is stealing your traffic.
Example: You have a 100 Mbps plan. When connected via cable, the speed is 95 Mbps, and via Wi-Fi, it's 20 Mbps, even though you're right next to the router. This is a clear sign of an unauthorized connection.
6. How to block other people's devices and protect Wi-Fi
Finding the "thief" is half the battle. Now we need to block him And protect the network from repeated connections. Here's a step-by-step plan:
Step 1: Change your Wi-Fi password
The simplest and most effective solution. Use complex password 12+ characters with letters, numbers, and special characters. Examples:
- ✅ Good:
k7#pL9!vN2@qR5$ - ❌ Bad:
12345678orqwerty
How to change your password:
- Log into your router's web interface (see section 1).
- Go to the section
Wireless mode(orWi-Fi). - Find the field
Password(orKey,Passphrase). - Enter a new password and save the settings.
Step 2: Enable MAC address filtering
This will allow only authorized devices to connect. Minus: If you buy a new gadget, you will have to add its MAC to the list.
How to set up (using TP-Link as an example):
- Go to
Wireless Mode → MAC Filtering. - Select mode
Allow(and not "Ban"). - Add the MAC addresses of your devices (see section 2).
- Save the settings.
Step 3: Change the network name (SSID) and disable WPS
- SSID: Don't use standard names like
TP-Link_1234. It's better to come up with something unique, for exampleNet_555_Kotik. - WPS: This feature makes connection easier, but vulnerable to hacking. Disable it in your router settings (
Wireless → WPS → Disable).
Step 4: Update your router firmware
Manufacturers regularly patch vulnerabilities. How to update:
- Go to
System Tools → Firmware Update. - Click "Check for updates".
- If there is a new version, install it.
Step 5: Set up a guest network (optional)
If you frequently grant access to guests, create a separate network with limited rights:
- 🔒 Separate password.
- 🚫 No access to local devices (printers, NAS).
- ⏱ Time limit (e.g. 2 hours).
⚠️ Attention: Some older routers (eg. D-Link DIR-300 or Tenda N301) do not support modern encryption standards (WPA3). If your router was manufactured before 2018, consider replacing it—otherwise, your network will remain vulnerable even after changing your password.
7. What to do if the "thief" connects again?
If someone else's device reappears after changing the password and settings, it may be:
- 🔄 Someone guessed the new password (too simple).
- 📡 Your Wi-Fi intercepted through replay attack.
- 🏠 The neighbor is using repeater, which is connected to your network.
- 🕵️ Someone from the family gave the password to strangers (children, guests).
Actions in such cases:
- Enable SSID Hidden Mode (The network won't be visible in the list, but you can connect if you know the name.) Cons: Doesn't protect against targeted attacks.
- Use a VPN on your router (For example, NordVPN or Surfshark For ASUS/Keenetic). This won't stop the "thief", but it will encrypt your traffic.
- Install alternative firmware (For example, DD-WRT or OpenWRT) for advanced security features. Attention: This will void the warranty!
- Buy a router with WPA3 support (For example, ASUS RT-AX86U or TP-Link Archer AX6000). This encryption standard is virtually unbreakable.
Last resort: If attacks persist, please contact your ISP. Some companies (e.g. Rostelecom or MTS) can:
- 🔍 Check the connection logs on your end.
- 🔒 Block suspicious MAC addresses at the hardware level.
- 📡 Suggest changing the Wi-Fi channel (if the problem is interference from neighbors).
FAQ: Frequently Asked Questions About Wi-Fi Theft
❓ Is it possible to find out who exactly connected to my Wi-Fi (name, address)?
No, you can't identify a user by their MAC address or IP address. The most you'll see is the device model (e.g., Samsung Galaxy S23). To identify a person, you need to:
- Contact the police with a report of unauthorized access (Article 272 of the Criminal Code of the Russian Federation).
- Provide router logs and evidence of damage (e.g. screenshots from other people's devices).
- The provider may provide connection data upon request from law enforcement agencies.
In practice, this is time-consuming and ineffective unless it involves a serious offense (for example, downloading illegal content from your IP).
❓ Can my Wi-Fi be hacked if I use WPA2?
Yes, but it's more difficult than with the outdated standards (WEP or WPA). Main vulnerabilities WPA2:
- 🔑 Brute force attack: Password guessing using a dictionary. If the password is weak (for example,
12345678), it can be hacked in a few hours. - 🤝 KRACK attack: A vulnerability in the handshake protocol. Fixed in modern firmware, but still affects older routers.
- 📡 Evil Twin: The attacker creates a fake network with the same name and intercepts traffic.
How to protect yourself:
- Use
WPA3(if the router supports it). - Turn it off
WPSAndUPnP. - Update your firmware regularly.
❓ Why does "Unknown Device" appear in the device list with the router's MAC address?
This is normal! Many routers display themselves in the list of connected devices under:
- Own MAC address (for example,
5C:F9:DD:...For TP-Link). - IP address
192.168.1.1(or similar). - Host name, for example
router.asus.com.
The list may also include:
- 📺 IPTV set-top box from the provider (if you have digital TV).
- 🖨️ Printer or NAS, connected via the network.
- 🤖 Smart devices (robot vacuum cleaner, camera, light bulb).
To avoid blocking them by mistake, check the MAC addresses against the documentation for the devices.
❓ Can my neighbor steal my Wi-Fi if he has the same password?
Technically No, If:
- Do you have different network names (SSID).
- You are using unique password (not standard
adminor12345678).
However, if:
- 📡 Neighbor cloned your network (same name and password), his devices can automatically connect to your router if the signal is stronger.
- 🔄 You are using WPS, and the neighbor knows the PIN code (for example