Who's Connected to My Wi-Fi? How to Check and Secure Your Network

Have you noticed that your internet is slower than usual, and your data usage is suspiciously high? Perhaps someone else is accessing your Wi-Fi. In this article, we'll figure out... Is it possible to find out who has been using your Wi-Fi?, what tools exist for this, and what to do if you detect an unauthorized connection.

Let's be clear: the router doesn't keep a complete connection history with usernames and exact session times. However, there are ways to detect active And recent connections, and determine which devices are consuming your data. We'll cover both standard router features and third-party software, from simple to advanced.

It is important to understand the difference between current connections (devices that are currently online) and connection history (a list of devices that have ever been connected). Most home routers don't store history for long, but some models allow you to enable logging—we'll cover that too.

1. Checking active connections via the router's web interface

The easiest way to find out who Now If your Wi-Fi is using your router, go to your router's control panel. To do this:

  1. Open your browser and enter the router's IP address (usually 192.168.0.1 or 192.168.1.1).
  2. Enter your login and password (by default it is often admin/admin, but may differ).
  3. Find the section Wireless network, DHCP or Clients (names vary).

Here you will see a list of devices with their MAC addresses, IP addresses and sometimes names (if the device broadcasts them). For example, in routers TP-Link this is a section Wireless → Wireless Statistics, and in ASUSNetwork map.

  • 📱 Smartphones and tablets usually appear with names like "iPhone-12", "Samsung-Galaxy-S21".
  • 💻 Laptops and PCs may appear as "DESKTOP-XXXX" (Windows) or "MacBook-Pro".
  • 🎮 Game consoles (PlayStation, Xbox) have distinctive names.
  • 🔌 Smart devices (lamps, cameras, speakers) are often named by model, such as "Yeelight-0123".

If you see a device with an unfamiliar name or MAC address, it's a cause for concern. However, not all routers display a complete list: some models only display devices connected via cable or those assigned an IP via DHCP.

📊 How often do you check connected devices in your router?
Never
Once a month
Only if the internet is slow
I monitor it regularly

2. How to identify other people's devices by MAC address

A MAC address is a unique identifier for a network device. It can be used to identify the manufacturer of the equipment and roughly determine what kind of device it is. For example, addresses beginning with:

  • 🔹 00:1A:79 — devices Apple;
  • 🔹 3C:5A:B4 - gadgets Google (including Nest, Pixel);
  • 🔹 78:31:C1 - technique Xiaomi;
  • 🔹 00:0E:35 — routers Siemens.

Check the first 6 characters of the MAC address of an unknown device in the database MAC Vendors (will open in a new tab). This will help you understand whose device is connected—your neighbor's iPhone or a hacker with custom firmware.

MAC prefix Manufacturer Typical devices
28:CF:DA Apple iPhone, MacBook, iPad
B4:FB:E4 Microsoft Xbox, Surface
74:83:C2 Ubiquiti Network equipment
00:1E:68 Cisco Corporate routers

If the MAC address starts with 02:00:00, 06:00:00 or AA:00:00, it could be a virtual device or a fake - such traffic should be blocked.

⚠️ Attention: MAC addresses can be spoofed, so this method isn't 100% foolproof. If you see a suspicious address, it's best to disconnect the device from the network immediately.

3. View connection history (if the router supports logging)

Most home routers do not store connection history for long, but some models (for example, ASUS RT-AX88U, Keenetic, MikroTik) allow you to enable logging. To do this:

  1. Go to your router settings.
  2. Find the section System toolsMagazine or Logs.
  3. Enable the option DHCP logging or Wireless Event Log.

Once activated, the router will begin logging connection events. Logs can be exported to a file and analyzed manually or using utilities such as WiFi History View (for Windows). Please note that:

  • 📅 Logs take up router memory and can slow down its operation.
  • 🔄 When you reboot your router, the history may be reset.
  • 📊 Not all models support detailed logs (for example, budget ones TP-Link TL-WR840N they are not led).

If your router does not support logging, you can use third-party solutions - for example, set up Pi-hole on Raspberry Pi or install specialized software on your computer.

How to enable logging on Keenetic?

In Keenetic routers, go to System Monitor → Event LogHere you can enable logging of wireless network events and filter them by type (for example, "Client Association").

4. Using mobile apps to monitor Wi-Fi

If you don't want to mess with your router settings, you can use mobile apps. They scan the network and display connected devices. Popular options include:

  • 📱 Fing (Android/iOS) - identifies devices, their manufacturers, and even vulnerabilities.
  • 📱 WiFi Guard (Android) - compares current connections with the "white list".
  • 📱 NetScan (iOS) - Scans the local network and displays MAC addresses.
  • 📱 GlassWire (Windows/Android) — monitors traffic by device.

Applications like Fing not only show a list of devices, but also allow you to:

  • 🛡️ Block suspicious devices directly from the app (on some routers).
  • 📊 See how much traffic each device consumes.
  • 🔔 Receive notifications about new connections.

The downside of such applications is that they only see devices, active at the time of scanningOnce the "guest" has disconnected, they will no longer be detectable. Furthermore, some functions (such as blocking) require root rights on Android or jailbreak on iOS.

⚠️ Attention: Free versions of apps (such as Fing) may collect data about your network to "improve service." Please check permissions in Google Play or the App Store before using them.

5. Traffic analysis using specialized software

For advanced users, there are programs that analyze network traffic and identify suspicious activity. For example:

  • 🖥️ Wireshark — the "gold standard" of packet analysis. It allows you to see what data is being transmitted over the network, but it requires skill.
  • 🖥️ Acrylic Wi-Fi — scans networks, shows devices and their activity.
  • 🖥️ SoftPerfect WiFi Guard — compares MAC addresses with your "white list".

For example, in Wireshark You can filter traffic by MAC address and see which websites a suspicious device is visiting. However, this method requires:

  1. Connecting a computer to the network via a cable (for full traffic capture).
  2. Knowledge of network protocols (TCP/IP, DNS, HTTP).
  3. Time for analysis (there may be a lot of traffic).

If you are a beginner, start with WiFi Guard or GlassWire — they're easier to use. For a more in-depth analysis, it's best to consult a specialist.

Disable it through the router control panel|Change the Wi-Fi password|Enable MAC address filtering|Check the router for vulnerabilities-->

6. How to protect Wi-Fi from unauthorized connections

Found an unfamiliar device? Here's what to do. right now:

  1. Change your Wi-Fi password complex (at least 12 characters, with numbers and special characters). Use WPA3, if the router supports it.
  2. Disable WPS - This protocol is vulnerable to brute force.
  3. Enable MAC filtering (in the router settings, add only your devices to the "white list").
  4. Hide the SSID (Disable network name broadcasting) - this won't protect you from experienced hackers, but it will reduce the number of accidental connections.
  5. Update your router firmware — Manufacturers regularly patch vulnerabilities.

Additional security measures:

  • 🔄 Guest network — create a separate network for friends with limited access to local resources.
  • ⏱️ Wi-Fi schedule — turn off the Internet at night when no one is using it.
  • 📡 Speed ​​limit — if someone else's device does connect, it won't be able to "eat up" all the traffic.

If you suspect that your router has been hacked (for example, the settings are resetting themselves), reset it to factory settings (Reset button on the body) and set it up again.

⚠️ Attention: MAC address filtering isn't foolproof—an experienced user can spoof the MAC address. It's simply an additional security measure.

7. Legal aspects: is it legal to track a user?

Technically you can see devices in your network, but to identify a specific person It's difficult without his consent. In Russia and most countries:

  • 📜 MAC address collection may violate privacy laws without the user's knowledge (for example, Federal Law No. 152 in the Russian Federation).
  • 🚔 Filing a police report This is only possible if it is proven that the connection caused you material damage (for example, data theft or payment for someone else's traffic).
  • 🔍 Provider may help track an IP address, but only at the request of law enforcement agencies.

If you want to officially find out who has been using your Wi-Fi, you will need:

  1. Collect evidence (router logs, screenshots with MAC addresses).
  2. Contact your provider with a statement (but they are not obliged to disclose the data without a court order).
  3. If the damage is significant, file a lawsuit.

In practice it's easier protect the network, rather than trying to track down the perpetrator after the fact. The exception is if it's a serious crime (for example, distributing illegal content via your IP address).

FAQ: Frequently Asked Questions about Wi-Fi Connections

Is it possible to find out what websites have been visited via my Wi-Fi?

Yes, but to do this you need to analyze the traffic using programs like Wireshark or set up a proxy server. A regular router doesn't keep track of the websites you've visited. Also, keep in mind that if you're using HTTPS (which is 99% of websites), you will only see the domain (for example, vk.com), but not specific pages.

How to block a device by MAC address?

Go to your router settings and find the section Wireless Network → MAC Filter (or Wireless MAC Filtering). Add the MAC address to the blacklist and save the settings. The device will not be able to connect even if it knows the password. On some routers (for example, Keenetic) blocking can be done directly from the client list.

Can my neighbor connect to my Wi-Fi if I hide the SSID?

Yes. Hiding the network name (SSID) doesn't protect you from connecting—an experienced user can manually enter the SSID and password. This only makes it more difficult for random people to connect. For true protection, use WPA3, complex password and MAC filtering.

How can I check if my router has been hacked?

Signs of hacking:

  • Unknown devices on the network even after changing the password.
  • Changed router settings (e.g. DNS forwarding).
  • The router reboots itself or slows down.
  • Suspicious entries appear in the logs (for example, attempts to access Telnet).

If you notice any of these, reset your router to factory settings and update the firmware.

Is it possible to find out who connected to my Wi-Fi a month ago through my router?

Most likely not. Most home routers store connection logs for anywhere from a few hours to a couple of days (depending on the model). Long-term logging requires special settings or third-party software (for example, Pi-hole on Raspberry Pi).