Windows

Why not lock the IP address out of your firewall? And while you're at it, you could contact the system administrator and ask him/her to find out and stop whoever is doing this (ipadmin@qwest.com, 1-877-866-6515).

you could try this. Reserve the IP address of all your users machines in DHCP that way they will always have the same IP address when the log on.

This wouldn't be through a wireless hub would it?

If that is the case your system is under attack and eventually who ever is responsible will manage to break in and do what ever it is that they are wanting to do.

I would at the very least attempt to make it harder for them by changing to WEP protocols and locking the system down as hard as possible while still allowing the valid end users access.

Just one other thing here if you do not have any known wireless access points go through your building with a Wireless scanner looking for one or more I've found several Wireless hubs mounted in suspended ceilings by workers who thought they knew better than the Sys Admin and wanted free Internet access. You should be able to pick up a cheap Wireless scanner for about $20 US around the place they are small fit on a key ring and only have 4 LEDs that will turn solid when their is a wireless access point near by they are also directional so you should be able to track down any rouge wireless hubs easily.

The ones that I use are called WIFI Seeker try

www.wifiseeker.com

Col

Do you have any offices or network ports that this person could be accessing?

Maybe log into your switch and turn off any ports not in use, or even better have a close watch on these ports or use a monitoring program to E-mail you if one of them "lights up". Then get security down there right away.

It looks like you have a very serious security problem on your hands, you may want to contact the FBI if you are in the USA.