Did someone access my computer?

BCAdmin1 Comment on Did someone access my computer?

Has My Computer Been Compromised? A Personal Experience

In the digital age, we often take the safety of our devices for granted. Recently, I encountered a troubling situation that has left me questioning the security of my own computer. Here’s what happened.

A few days ago, I downloaded a program, and initially, everything seemed normal. Fast forward to today: while enjoying a YouTube video, I noticed my browser tab unusually moving around. To my surprise, it shifted from my primary monitor to a space between my two screens, subsequently opening a Google tab and typing in random website addresses. Without hesitating, I unplugged my computer to prevent any further anomalies, not even catching a glimpse of what those websites could be.

Once I powered my device back on, I conducted a quick security scan and discovered a suspicious program. After removing it, I was taken aback to see a new program install itself automatically during the scan. Alarmed by this uninvited presence, I deleted it immediately as well. My concerns grew when I checked the Event Viewer, revealing a staggering 33,660 recorded events. Admittedly, I’m not well-versed in the inner workings of this application, and I couldn’t discern whether this number was typical or indicative of a more significant issue.

The majority of these entries flagged an Event ID: 5379, which is noted to occur when a user undertakes a read operation on stored credentials in the Credential Manager. This raised two pivotal questions in my mind:

  1. Has someone gained access to my computer without my knowledge?

  2. If they indeed still have access, what steps do I need to take to ensure my privacy and security are restored?

As I navigate through this unsettling experience, I’m seeking insights from fellow tech enthusiasts and experts. Have you faced similar issues? What measures should I consider for safeguarding my system from potential intrusions? It’s essential to take proactive steps to protect our digital lives in this increasingly connected world.

Share this content:

Related Posts

One Comment

  1. Hi, thanks for sharing your detailed experience. Based on your description, it’s understandable to be concerned about potential unauthorized access. The Event ID 5379 indicates that your Credential Manager has been accessed, which could be normal if legitimate applications or system processes are performing credential reads. However, if this activity is unexpected or excessive, it’s wise to proceed with caution.

    To enhance your security and investigate further, consider the following steps:

    • Run a comprehensive malware scan using reputable tools such as Malwarebytes or Windows Defender. Make sure your virus definitions are up to date.
    • Check for any unfamiliar programs or processes running in Task Manager and review startup items using MSConfig or Task Manager.
    • Review your Credential Manager entries explicitly through Control Panel > Credential Manager to see if there are any suspicious stored credentials.
    • Ensure your Windows OS is updated with the latest security patches (Settings > Update & Security).
    • Change your passwords, especially for sensitive accounts, and consider enabling two-factor authentication where available.
    • Enable System Restore points before making significant changes, so you can revert if needed.
    • In the case of ongoing unusual activity, consider consulting a cybersecurity professional for a thorough assessment.

      Always backup important data regularly, and

    Reply

Leave a Reply to [email protected] Cancel reply

Your email address will not be published. Required fields are marked *