It's often frustrating when the internet suddenly slows down and pages load slowly. Our first instinct is to blame the internet service provider or a technical issue with our equipment. However, in most cases, the root cause is much more immediate: someone else may have connected to your network.
In dense urban areas, the signal range Wi-Fi Your connection often extends beyond your apartment. If you haven't set a strong password or are using an outdated encryption protocol, neighbors or random passersby can use your connection for free. This not only reduces speed but also poses a security risk to your personal data.
Checking the list of connected clients is the first step a home network administrator should take if they suspect traffic theft. Modern routers offer ample tools for monitoring activity. In this article, we'll explore all the ways to find out who's connected to your Wi-Fi and how to effectively protect your network from intruders.
Indirect signs of unauthorized access
Before delving into complex router settings, it's worth paying attention to your network's behavior. There are clear signs that other people are using your WiFi. If you notice a sharp drop in download speed or spikes in ping while playing online games, this is cause for concern.
A particularly alarming signal is the blinking wireless network indicator on the router body when all your devices are turned off or in sleep mode. WLAN LED It shouldn't actively pulse when no traffic is being transmitted. Constant activity indicates background processes that may be initiated by a third-party device.
It's also worth paying attention to the behavior of smart devices. If CCTV cameras or smart speakers start to malfunction due to insufficient bandwidth, the problem may be network congestion from unauthorized users. In today's environment, a single active torrent client on a neighbor's network can completely shut down the entire connection.
⚠️ Attention: Not all speed drops are due to WiFi theft. Issues could be with your provider, an overheating router, or interference from neighboring networks. Always rule out technical equipment malfunctions before looking for hackers.
For initial diagnostics, you can use the built-in monitoring features, if available in your provider's app. Many modern operators allow you to view a list of devices directly in your personal account on the website or in the mobile app, making life much easier for the user.
Checking via the router's web interface
The most reliable and accurate way to find out who is connected to your network is to log into your router's control panel. This method works for the vast majority of models, whether TP-Link, Asus, Zyxel or KeeneticYou will need a browser and the device's local network address.
To begin, you need to open any browser and enter the gateway IP address in the address bar. By default, this is most often 192.168.0.1 or 192.168.1.1The exact address is usually indicated on a sticker on the bottom of the device. After entering the address, the system will request a username and password for authorization.
If you haven't changed the factory settings, try the default password pair: admin/admin. If successful, you'll see the router dashboard. Interfaces vary by manufacturer, but the search logic remains the same. You need to find the section related to the wireless network or connection status.
Depending on your router model, the section you need may have a different name. Look for the following menu items:
- 📡 Wireless Status
- 🖥️ DHCP Client List
- 📶 Connected Devices
- 🔗 Map Network
Once in the desired section, you'll see a table or list displaying all currently active devices. It's important to be able to distinguish your gadgets from others. Typically, the MAC address, IP address, and sometimes the device name (Hostname) are displayed.
☑️ Verification algorithm in the web interface
Analyzing the list of connected devices
The most difficult part of the process is identifying devices. The client list often displays dry technical names like android-123abc or sets of MAC address numbers. Figuring out who's who requires a little detective work.
The first step is to turn off WiFi on all your devices (smartphones, tablets, laptops, TVs). Then, refresh the router's status page. If the list is empty, that's great—there are no unwanted devices. If any devices remain on the list, those are the uninvited guests.
The second method is a step-by-step approach. Leave Wi-Fi enabled on just one device, such as your phone. Check how it appears in the router's list. Write down its MAC address or name. Then repeat the process for the remaining devices. This will allow you to map your home network.
Pay special attention to devices with names like "Unknown" or "Generic." This is often how other people's smartphones or laptops are disguised. It's also worth paying attention to the number of connections. If you have one laptop and one phone at home, but there are five active clients listed, this is cause for concern.
The table below shows examples of what entries in the connection list of different routers might look like:
| Parameter | Description | Example of meaning |
|---|---|---|
| Device Name | Device name (set by user or system) | iPhone-Oleg, LivingRoom-TV |
| MAC Address | Unique physical address of the network card | A4:5E:60:C2:11:09 |
| IP Address | Internal address issued by the router | 192.168.1.45 |
| Connection Type | Connection type (wired or WiFi) | Wireless (802.11n) |
Using mobile apps for scanning
If logging into the web interface seems too complicated, there are alternative testing methods. Mobile apps for Android and iOS allow you to scan your network and identify connected devices with just one click. This is a convenient tool for quick diagnostics.
One of the most popular and functional applications is FingIt's available for free in app stores and provides detailed information about every device on the network. The program shows the device manufacturer, OS type, and even open ports.
Other useful utilities include Network Analyzer And WiFi AnalyzerThey operate on a similar principle: they scan the local subnet, send requests to all possible IP addresses, and compile a report on those that respond. This allows you to see even devices that aren't currently transmitting data but are still connected.
It's important to understand that mobile apps see the network the same way a router does. If the app shows 10 devices, but you only know three of your own, the problem is confirmed. The advantage of software is that it can often identify the device model more accurately than the router itself, using a database of MAC addresses.
Methods of protection and blocking of intruders
Detecting an intruder is only half the battle. The main goal is to block their access and prevent them from reconnecting. The simplest, but not the most effective, way is to simply change the WiFi password. This will disconnect everyone, but if the password was weak, it can be cracked again.
A more intelligent approach is to use MAC filteringThis feature allows you to create a "whitelist" of devices that are allowed to connect. All others, even with the password, will be blocked from access. Configuration is performed in the Wireless MAC Filtering section of the router menu.
Algorithm of actions during protection:
- 🔒 Change your password to a complex one (at least 12 characters, numbers and letters)
- 🛡️ Enable encryption WPA2-PSK or WPA3
- 📝 Whitelist your devices' MAC addresses
- 🚫 Disable the WPS function as it is vulnerable to hacking
Some advanced routers, for example Keenetic or MikroTik, allow you not only to block but also limit the speed of suspicious clients or completely disconnect them remotely via a cloud interface. This gives you complete control over the situation without having to reboot the router.
⚠️ Attention: Be extremely careful when enabling MAC filtering. If you accidentally fail to add your current device to the list of allowed devices, you will lose access to the router's settings via WiFi. Always configure filtering with a computer connected via cable.
Frequently asked questions and problems during verification
During diagnostics, users often encounter ambiguous situations. For example, the list might include a device you don't recognize, but it belongs to you. This could be a smart home module, a TV set-top box, or even a printer network card, all running in the background.
Another common problem is "dead souls." These are devices that were once connected but haven't been used in a while. The router may keep them in the ARP or DHCP leases table for some time. To clear this list, you can try rebooting the router or clicking the "Release All" button in the DHCP settings.
It's also worth remembering the MAC address randomization feature, which is being implemented in modern versions of iOS and Android. A smartphone can appear to the router as a new device with a different address each time. This can create the illusion of multiple connections, even though there's only one device.
If you suspect your router has been hacked professionally (the administrator password has been changed, preventing you from accessing the settings), your only option is a hard reset. Press and hold the reset button for 10-15 seconds until the router blinks. Then, reconfigure your network from scratch, setting the most secure security settings.
Can my neighbor see my screen via WiFi?
Simply connecting to the same WiFi network doesn't grant access to your screen or files. However, if you have network discovery enabled and weak passwords on your folders, it's theoretically possible. If you detect an intruder, immediately change the network type to "Public" in your Windows/macOS settings.
Why does the router show more devices than there are in the house?
These are often virtual interfaces (guest networks, IoT networks) or devices that have been disconnected but their entry hasn't been removed from the IP lease table. Try clearing the DHCP Leases list or rebooting the equipment.
How can I find out how much traffic someone else's device is using?
This feature is rare in standard home routers. Detailed traffic monitoring for each client requires routers of the higher level. MikroTik or installing alternative firmware like OpenWrt, which has a built-in traffic analyzer.