Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer hacked? Suspicious activity in the Event Viewer


  • Please log in to reply
4 replies to this topic

#1 Arvet51

Arvet51

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:16 PM

Posted 11 August 2017 - 03:06 AM

Hello,

 

I noticed that the event logs of my Dell XPS 15 running Windows 10 were active during a time in which my computer was asleep and I was away from it.  The logs were inactive for about 2 hours from the time I put my computer to sleep.  The logs then became active for a period and then went dormant again until I reopened my computer.  When I reopened it, I noticed the fan became extremely loud even though I had minimal applications open.  Do these logs suggest anything suspicious?  

 

Information 8/9/2017 12:40:55 AM MsiInstaller 1035 None
Information 8/8/2017 11:24:23 PM VSS 8224 None
Information 8/8/2017 10:49:20 PM VSS 8224 None
Error 8/8/2017 10:48:55 PM SideBySide 78 None
Information 8/8/2017 10:46:40 PM Security-SPP 903 None
Information 8/8/2017 10:46:40 PM Security-SPP 16384 None
Information 8/8/2017 10:46:24 PM System-Restore 8302 None
Information 8/8/2017 10:46:24 PM System-Restore 8301 None
Information 8/8/2017 10:46:21 PM System-Restore 8300 None
Information 8/8/2017 10:46:10 PM Security-SPP 902 None
Information 8/8/2017 10:46:10 PM Security-SPP 1003 None
Information 8/8/2017 10:46:10 PM Security-SPP 1066 None
Information 8/8/2017 10:46:10 PM Security-SPP 900 None
Information 8/8/2017 10:46:10 PM System Restore 8194 None
Error 8/8/2017 10:46:04 PM CAPI2 513 None
Error 8/8/2017 10:46:02 PM VSS 8194 None
Information 8/8/2017 10:44:56 PM Security-SPP 903 None
Information 8/8/2017 10:44:56 PM Security-SPP 16384 None
Error 8/8/2017 10:44:51 PM SideBySide 78 None
Information 8/8/2017 10:44:24 PM igfxCUIService2.0.0.0 0 None
Information 8/8/2017 10:44:24 PM Winlogon 6000 None
Information 8/8/2017 10:44:24 PM igfxCUIService2.0.0.0 0 None
Information 8/8/2017 10:44:24 PM igfxCUIService2.0.0.0 0 None
Information 8/8/2017 10:44:24 PM Winlogon 6003 None
Information 8/8/2017 10:44:15 PM Security-SPP 902 None
Information 8/8/2017 10:44:15 PM Security-SPP 1003 None
Information 8/8/2017 10:44:14 PM Security-SPP 1066 None
Information 8/8/2017 10:44:14 PM Security-SPP 900 None
Information 8/8/2017 10:41:56 PM LoadPerf 1000 None
Error 8/8/2017 10:41:56 PM Perflib 1008 None
Warning 8/8/2017 10:40:33 PM ESENT 636 General
Warning 8/8/2017 10:40:33 PM ESENT 640 General
Information 8/8/2017 10:40:06 PM Security-SPP 903 None
Information 8/8/2017 10:40:06 PM Security-SPP 16384 None
Information 8/8/2017 10:39:38 PM DDVCollectorSvcApi 0 None
Information 8/8/2017 10:39:38 PM SecurityCenter 15 None
Information 8/8/2017 10:39:38 PM SecurityCenter 15 None
Information 8/8/2017 10:39:38 PM SecurityCenter 15 None
Information 8/8/2017 10:39:37 PM Search 1003 Search service
Information 8/8/2017 10:39:37 PM ESENT 326 General
Information 8/8/2017 10:39:37 PM ESENT 105 General
Information 8/8/2017 10:39:37 PM ESENT 102 General
Information 8/8/2017 10:39:37 PM SecurityCenter 1 None
Information 8/8/2017 10:39:36 PM Security-SPP 902 None
Information 8/8/2017 10:39:36 PM Security-SPP 1003 None
Information 8/8/2017 10:39:36 PM Security-SPP 1066 None
Information 8/8/2017 10:39:36 PM Security-SPP 900 None
Information 8/8/2017 10:39:35 PM LMS 2000 LMS
Information 8/8/2017 10:39:34 PM IntelDalJhi 0 None
Information 8/8/2017 10:39:34 PM IAStorDataMgrSvc 0 None
Information 8/8/2017 10:39:34 PM IAStorDataMgrSvc 7303 None
Information 8/8/2017 10:38:22 PM Security-SPP 903 None
Information 8/8/2017 10:38:22 PM Security-SPP 16384 None
Information 8/8/2017 10:38:09 PM .NET Runtime Optimization Service 1130 None
Information 8/8/2017 10:38:09 PM .NET Runtime Optimization Service 1130 None
Information 8/8/2017 10:37:52 PM Security-SPP 8230 None
Warning 8/8/2017 10:37:49 PM WMI 63 None
Warning 8/8/2017 10:37:49 PM WMI 63 None
Warning 8/8/2017 10:37:49 PM WMI 63 None
Warning 8/8/2017 10:37:49 PM WMI 63 None
Warning 8/8/2017 10:37:49 PM WMI 63 None
Warning 8/8/2017 10:37:49 PM WMI 63 None
Information 8/8/2017 10:37:50 PM Security-SPP 902 None
Information 8/8/2017 10:37:50 PM Security-SPP 1003 None
Information 8/8/2017 10:37:50 PM Security-SPP 1033 None
Information 8/8/2017 10:37:50 PM Security-SPP 1034 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1004 None
Information 8/8/2017 10:37:50 PM Security-SPP 1066 None
Information 8/8/2017 10:37:50 PM Security-SPP 900 None
Information 8/8/2017 10:37:33 PM WMI 5617 None
Information 8/8/2017 10:37:33 PM WMI 5615 None
Information 8/8/2017 10:37:32 PM User Profile Service 1531 None
Information 8/8/2017 10:37:33 PM NVNetworkService 0 None
Information 8/8/2017 10:37:33 PM NvStreamSvc 2003 None
Information 8/8/2017 10:37:33 PM DellPremierColorService 105 None
Information 8/8/2017 10:37:32 PM igfxCUIService2.0.0.0 0 None
Information 8/8/2017 10:36:57 PM User Profile Service 1532 None
Information 8/8/2017 10:36:57 PM NVNetworkService 0 None
Information 8/8/2017 10:36:57 PM IAStorDataMgrSvc 0 None
Information 8/8/2017 10:33:34 PM User Profile Service 1530 None
Information 8/8/2017 10:33:34 PM Winlogon 6000 None
Information 8/8/2017 10:33:34 PM igfxCUIService2.0.0.0 0 None
Information 8/8/2017 10:33:34 PM igfxCUIService2.0.0.0 0 None
Information 8/8/2017 10:32:46 PM Winlogon 4004 None
Error 8/8/2017 10:32:27 PM SideBySide 78 None
Information 8/8/2017 10:32:24 PM Winsrv 10001 None
Error 8/8/2017 10:31:04 PM SideBySide 78 None
Information 8/8/2017 10:31:01 PM System Restore 8196 None
Error 8/8/2017 10:29:09 PM SideBySide 78 None
Error 8/8/2017 10:28:25 PM SideBySide 78 None
Information 8/8/2017 10:23:50 PM Windows Error Reporting 1001 None
Information 8/8/2017 10:23:44 PM Windows Error Reporting 1001 None
Error 8/8/2017 10:23:40 PM Application Hang 1002 (101)
Information 8/8/2017 10:23:40 PM Windows Error Reporting 1001 None
Error 8/8/2017 10:17:10 PM SideBySide 78 None
Information 8/8/2017 10:02:56 PM VSS 8224 None
Information 8/8/2017 7:53:15 PM MsiInstaller 1035 None
Information 8/8/2017 7:53:15 PM MsiInstaller 1035 None

 

I also have the logs split into 6 screen shots which I can attach if the above is too difficult to read.  

 

Thank you for your help



BC AdBot (Login to Remove)

 


#2 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:06:16 PM

Posted 11 August 2017 - 09:28 AM

I wouldn't lose any sleep if there aren't any error or warning reports.  You will make yourself crazy if you try to make sense out of everything which is reported in the Event Viewer.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#3 Arvet51

Arvet51
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:16 PM

Posted 11 August 2017 - 11:59 AM

That's the thing - there are error and warning reports.  Do you mind taking another look at the logs?



#4 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:06:16 PM

Posted 11 August 2017 - 12:05 PM

I didn't see anything that would get me excited.  Hence my last post.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#5 opera

opera

  • Members
  • 981 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:16 AM

Posted 11 August 2017 - 11:59 PM

To set your mind at rest open the inbuilt Reliability Monitor and let it load. Look at any errors shown there. Click on them and it should show which app hung in your logs above.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users