How can I trace someone stealing ADSL username and password?
How can I trace someone stealing ADSL username and password?
Im sure that this question has popped up a few times before. So im sorry for the double post, but this is quite urgent.
ISP is one of our company's services, and one of our clients is threatening to sue us over this issue. So what would be the quickest and most efficient way of tracing the unauthorized usage of our ADSL usernames? Can this only be done through telkom?
*stealing for heaven sake! - jee*
ISP is one of our company's services, and one of our clients is threatening to sue us over this issue. So what would be the quickest and most efficient way of tracing the unauthorized usage of our ADSL usernames? Can this only be done through telkom?
*stealing for heaven sake! - jee*
ASUS P6T | Core I7 920 @ 3.4 |MSI 6950 Unlocked | 3x2048 Corsair Dominator @ 1600 8 8 8 24 (Corsair CMXAF1 Cooler) | Coolermaster HAF932 | Corsair TX850W | Logitech Z5500 | Logitech MX518 | X-FI Platinum | Samsung T260 | 8.5TB Storage
I have the IP addresses assigned to the person on every sessions he used. Obviously the IPs change
ASUS P6T | Core I7 920 @ 3.4 |MSI 6950 Unlocked | 3x2048 Corsair Dominator @ 1600 8 8 8 24 (Corsair CMXAF1 Cooler) | Coolermaster HAF932 | Corsair TX850W | Logitech Z5500 | Logitech MX518 | X-FI Platinum | Samsung T260 | 8.5TB Storage
Hmm, so your company is an ISP and now your clinet is having someone stealing his bandwidth and is complaining to sue your company.
It might be his fault as he might now have changed the default password on his router.
But I think the only way to trace the people would be through Telkom or IS (depending on whos bandwidth you are reselling).
It might be his fault as he might now have changed the default password on his router.
But I think the only way to trace the people would be through Telkom or IS (depending on whos bandwidth you are reselling).
“The true bare of any man is his willingness to accept the consequences of his actions.” - iser0073
- Spoiler (show)
-
- Moderator Emeritus
- Posts: 2338
- Joined: 30 May 2002, 02:00
- Location: Out there somewhere
Im not to worried about him suing us, we spoke to the client again and he just wants justice, cuz he paying for 5GB every month and this person is raping all the bandwidth. We just want to stop the abuse of our client's usernames, because this issue is beginning to blow up in our faces
ASUS P6T | Core I7 920 @ 3.4 |MSI 6950 Unlocked | 3x2048 Corsair Dominator @ 1600 8 8 8 24 (Corsair CMXAF1 Cooler) | Coolermaster HAF932 | Corsair TX850W | Logitech Z5500 | Logitech MX518 | X-FI Platinum | Samsung T260 | 8.5TB Storage
Hmmm.
Your client says he's/shes bandwidth is being used by some-one else. Then It should def. come up on your systems(that is there IP address).
NB: This person doesnt necessarily need a Username and Password, they could be using the WiFi of this person which has nothing to do with your ISP.
Phone your client again ask them a few questions more.
Im with Webafrica and If there is more than one person logged in at any time the IPs come up. So if the IPs are not coming up, then its defnitely through Wifi or your client just uses up alot of bandwidth
Your client says he's/shes bandwidth is being used by some-one else. Then It should def. come up on your systems(that is there IP address).
NB: This person doesnt necessarily need a Username and Password, they could be using the WiFi of this person which has nothing to do with your ISP.
Phone your client again ask them a few questions more.
Im with Webafrica and If there is more than one person logged in at any time the IPs come up. So if the IPs are not coming up, then its defnitely through Wifi or your client just uses up alot of bandwidth
Well, change the username and password of your client and send it to him/her. If this does not immediately stop this bandwidth you know it is not via username but via wlan.
Did the client change the default username/password?
Also, changing should stop the access. Either you have someone in your company selling usernames or you was hacked in the database if the guy's network is secure and he did not give it out. Any other clients give complaints?
Did the client change the default username/password?
Also, changing should stop the access. Either you have someone in your company selling usernames or you was hacked in the database if the guy's network is secure and he did not give it out. Any other clients give complaints?
My BF2142 Stats:
Slasher : Former member of www.PCFormat.co.za
I have reached the end of my near 5 year forum life. Farewell good days...
slasher (at) webmail (dot) co (dot) za
Slasher : Former member of www.PCFormat.co.za
I have reached the end of my near 5 year forum life. Farewell good days...
slasher (at) webmail (dot) co (dot) za
My thoughts exactly. If someone is using his username and password, change said username and password, and tell him to protect the new details better.Slasher wrote:Well, change the username and password of your client and send it to him/her. If this does not immediately stop this bandwidth you know it is not via username but via wlan.
Did the client change the default username/password?
Also, changing should stop the access.
-
- G3AR Staff Member
- Posts: 5790
- Joined: 08 Mar 2003, 02:00
- Location: PCFormat HQ
- Contact:
- Ron2K
- Forum Technical Administrator
- Posts: 9050
- Joined: 04 Jul 2006, 16:45
- Location: Upper Hutt, New Zealand
- Contact:
That's odd - I'm sure I replied to SBSP's post; no idea where it is. Must have navigated away from the page before I pressed "Submit".
It's entirely possible, given that most users don't have the full picture as to what their PC is doing. There could well be some sort of nasty on the client's PC that's causing excess bandwidth usage. Of course, it's also just as likely that a legitimate update process is responsible.
Given the circumstances of this case, bandwidth theft seems more likely than an app hogging the bandwidth, but that's not to say it's not a possibility.
EDIT: Sojourn, it probably wouldn't help much, given how easily a MAC address can be spoofed.
It's entirely possible, given that most users don't have the full picture as to what their PC is doing. There could well be some sort of nasty on the client's PC that's causing excess bandwidth usage. Of course, it's also just as likely that a legitimate update process is responsible.
Given the circumstances of this case, bandwidth theft seems more likely than an app hogging the bandwidth, but that's not to say it's not a possibility.
EDIT: Sojourn, it probably wouldn't help much, given how easily a MAC address can be spoofed.
Kia kaha, Kia māia, Kia manawanui.
Someone ban this fool plz.KillerByte wrote:this is why people should have their AP's encrypted using WPA. Or else you get Wardrivers getting your cap and your files. Believe me, I know, cause I am one.
You 'wardriver', you probably don't even know the first thing when it comes to accessing other people's routers etc, you just use a program and you think you are so clever and cool.
You are nothing more than a script-kiddie, and a criminal one at that.
You're lucky you are leaving soon, or i'd have you beaten at the next Uberlan/fraglan/etc.
Last edited by zerubabel on 23 Aug 2007, 18:13, edited 1 time in total.
Fut Fut Fut Freestailo!
@ Colin69, phone telscum and tell them you think someone is stealing bandwidth from this user.
They have a service to check this out... You just need to give them the username/email of the user, and which ISP it is, and they have a database to see who accessed that username when.
If they find its someone else, criminal charges can and will be pressed, otherwise it's your client who is having his internet raped via wi-lan.
They have a service to check this out... You just need to give them the username/email of the user, and which ISP it is, and they have a database to see who accessed that username when.
If they find its someone else, criminal charges can and will be pressed, otherwise it's your client who is having his internet raped via wi-lan.
Fut Fut Fut Freestailo!
-
- Registered User
- Posts: 1210
- Joined: 04 Dec 2006, 02:00
- Location: Durbz!
- Contact:
-
- Moderator Emeritus
- Posts: 5547
- Joined: 21 Dec 2002, 02:00
- Processor: i7 3770k
- Motherboard: ASUS P8P67-Pro
- Graphics card: 2xNvidia GTX670
- Memory: 16 GB Gskill Sniper
- Location: In SQL Space inserting 'null' on purpose
- Contact:
Killerbyte your are SUCH a **** - you need to seriously rethink posting stuff like "I wardrive.." - but I dont steal bandwidth - I only warn them
Owning yourself on Gmail is also not neccesary mmkay ?
Saying stuff like "Hacked into M&B wireless network" as a Gmail status is just incriminating.
So why dont you take that carrot up your bottom and leave ?
Owning yourself on Gmail is also not neccesary mmkay ?
Saying stuff like "Hacked into M&B wireless network" as a Gmail status is just incriminating.
So why dont you take that carrot up your bottom and leave ?
Temporary Absence
I definitely think a long chat with the client is needed. You need to make sure his wlan (if he has one running) is either disabled (doesn't need it) or properly encrypted.
Once that is assured then give the client a new password (make it a good one) to login.
Ensure that he/she tells no one else the password and see if the bandwidth consuming continues - if it does then you will know that there is an evil app running on his pc(s) or he is lying and is trying to leech as much content as possible and claim it wasn't him.
Once that is assured then give the client a new password (make it a good one) to login.
Ensure that he/she tells no one else the password and see if the bandwidth consuming continues - if it does then you will know that there is an evil app running on his pc(s) or he is lying and is trying to leech as much content as possible and claim it wasn't him.
There are 10 types of people in this world.
Those who understand binary and those who do not.
Those who understand binary and those who do not.