This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
→ 🚀What's New? Join Us for the Fall Product Launch! Register Now !
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Lansweeper Community
- Forums
- General Discussions
- Re: Intruder Alert
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Register to ask a question, start a topic or share an idea
Join the Community
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎10-24-2011 11:58 AM
The users on my network aren’t what you would call trustworthy and over the weekend some one connected something they shouldn’t. All lansweeper has given me is this:
Cannot resolve hostname to an IP address (MEDIACENTRE) 10/22/2011 4:29:19 PM
The RPC server is unavailable 0x800706BA (MEDIACENTRE) 10/22/2011 4:29:19 PM
Is there anyway I can get more information and catch the miscreant who by the looks of it is watching films while getting paid over time at work.
Finding the ipaddress or the MAC address would help!
This isnt the first time this has happened.
Cannot resolve hostname to an IP address (MEDIACENTRE) 10/22/2011 4:29:19 PM
The RPC server is unavailable 0x800706BA (MEDIACENTRE) 10/22/2011 4:29:19 PM
Is there anyway I can get more information and catch the miscreant who by the looks of it is watching films while getting paid over time at work.
Finding the ipaddress or the MAC address would help!
This isnt the first time this has happened.
Labels:
- Labels:
-
General Discussion
4 REPLIES 4
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎10-21-2016 08:49 PM
Typically if I want to track something down I can't seem to find, start with the DHCP server . Usually it will show the names of the computers. find the one you don't recognize. then goto the switches in that area and search it's ARP table to find the ip , or PING the Ip and get the MAC from your pc and search that in the arp tables..
that gets you to a switch and port.
then walk over and slap the person.
If the person plugs and unplugs it then the timing may be off so it's hard to find then but just takes time.
that gets you to a switch and port.
then walk over and slap the person.
If the person plugs and unplugs it then the timing may be off so it's hard to find then but just takes time.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎01-16-2015 08:01 PM
The only other thing you could do is lock down your connections by MAC address. LanSweeper does have the ability to pull out the MAC addresses of connected machines as well. Maybe block that one from getting on your network?
If it isn't yours, then they cannot get on. If it is wireless and they are removing it and joining a public Wi-Fi, then use the following DOS commands to stop that. It will not allow them to connect to it, and will hide it from them even being able to see it.
run command prompt as administrator from administrator account (right click, run as admin)
netsh wlan add filter permission=block ssid=%PYOUR-PUBLIC-WIFI-NAME% networktype=infrastructure
netsh wlan set blockednetworks display=hide
If it isn't yours, then they cannot get on. If it is wireless and they are removing it and joining a public Wi-Fi, then use the following DOS commands to stop that. It will not allow them to connect to it, and will hide it from them even being able to see it.
run command prompt as administrator from administrator account (right click, run as admin)
netsh wlan add filter permission=block ssid=%PYOUR-PUBLIC-WIFI-NAME% networktype=infrastructure
netsh wlan set blockednetworks display=hide
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎03-29-2012 08:52 PM
Richard, review the custom actions folder, Bullgates posted a script for internet history of a user. That's how I've been catching my users. Also, I have a batch file that takes down the users firewall so that you would be able to see the machine, I'll have to find it, I made a custom action of it a long time go. Once I find it, I'll post it.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎10-24-2011 06:04 PM
If this machine is firewalled, Lansweeper won't be able to retrieve more information from it. (There would have to be an agent present on the machine.)
New to Lansweeper?
Try Lansweeper For Free
Experience Lansweeper with your own data. Sign up now for a 14-day free trial.
Try Now
Related Content
- Datacenter management in Product Discussions
- Cross-Site Scripting Attack vulnerability in General Discussions
- Lansweeper performing Remote PS when scanning targets in General Discussions
- Email Alerts Do Not Send after v11.4.0.4 and higher. in General Discussions
- Possibility of adding Expire Date for Purchased Licences in General Discussions
