Finding a foreign device (sort of) and MAC address on my network

[Jamie Laguda]

Hello:

I've recently separated from an ex-spouse who was an IT manager. Lots of things has happened during the time we lived and were together (total of 2 long blissful months). He has gotten rid of my phone and replaced it with a new one. Luckily he ended up breaking it. But in addition to this, he had sole custody of my laptop many many times without me being present.

Long story short, him being an IT manager, a male and is in tech industry, his knowledge and expertise when it comes to networking and computer supersedes/surpasses mine. I am in Finance.

Here's the thing, I found this device. Below is the description:

Network: Blue_Advance_5_5_HD
Manufacturer: BLU
Model# BlueAdvance 5.5 HD
Mac Address: e4:c8:01:39:ef:1a

Can anyone explain this to me? Better yet, can you locate the MAC address? What city etc? Please direct your answer to by e-mailing me at: <email removed by moderator>
Thank you.

e4:c8:01:39:ef:1a

 

[kanewolf]

A Blue Advance is a smart phone -- http://www.gsm-specs.com/blu-advance-5-5-hd/ Usually you see things like this in router logs when a device attempts to connect to your WIFI but fails.

To ensure you have the highest security, change your WIFI password -- 12 - 15 characters with upper, lower, numbers and symbols. Change your router admin password -- same rules different password. Make sure you are using WPA2 encryption on your WIFI. Disable WPS and UPNP on your router.

That will give you the maximum WIFI protection.

 

[USAFRet]

In addition to the above, you can't pin down a MAC address to a 'location'.
If you see it in your router log, then at some point that device was in range of your router (100 yards?), and tried to connect.

As above, change your router WiFi and admin passwords.

And you might want to consider a full wipe and reinstall of your laptop.
" But in addition to this, he had sole custody of my laptop many many times without me being present."

Or, just buy a new one.

 

[johnbl]

connect to your router, go to the access control. find the mac address in the client list and put the device in the blacklist.
this will block the devices wireless connection to your router.

it is pretty easy to fake a mac address so I would not expect this to be very helpful overall.
Also, the device is likely to be in close wireless range (100 ft or so)

 

[Jamie Laguda]

Hello guys: thanks for all your help. I may end up ditching the laptop as soon as I am able to get another one. The device (BlueAdvancd) was a phone he had me used temporarily. So yes, it was close to me and my laptop for 2 months. But after moving out (two weeks ago), I am 20 miles away. And last night I found that device. My laptop has been acting weird.

My ex husband is able to wipe the device of his employee remotely( he told me). So he's got IT skills that I don't have.

Anyway, thanks for all the suggestions. I'll be following those steps.

 

[johnbl]

to wipe a device you have to have access by a router and have remote software unless you have direct access.
you can check to see if he created a local admin account on your machine.
start cmd.exe as an admin (windows key+x, then type A) then run
net.exe user <**** this will show the name of accounts on the local computer
net.exe localgroup administrators <**** this will show the name of admin accounts on the machine

you can delete any account or change its password if want.

you might want to disable remote desktop or any remote software like LogMeIn if find he has created an local account on your machine. I guess he could install keyloggers on the machine as well. just depends on how paranoid you want to get.
You can drive your self crazy about it.

Hello guys: thanks for all your help. I may end up ditching the laptop as soon as I am able to get another one. The device (BlueAdvancd) was a phone he had me used temporarily. So yes, it was close to me and my laptop for 2 months. But after moving out (two weeks ago), I am 20 miles away. And last night I found that device. My laptop has been acting weird.

My ex husband is able to wipe the device of his employee remotely( he told me). So he's got IT skills that I don't have.

Anyway, thanks for all the suggestions. I'll be following those steps.

 

[Jamie Laguda]

Thank you all. Got screen shot of the admin and it's set to guest. Listing as a guest. Oh well, feck it. I now atleast know to just get a new laptop.