The present paper aims to propose an intelligent system for identification of compromised Internet of Things (IoT) devices due to cyberattack, using Wavelet transformation and Haar filter. Monitoring is being made and the state is identified through time-synchronized series of indexes for usage of processor, memory and network interface card. Using system monitor the time-synchronized indexes of non-compromised IoT devices are saved as well as indexes of compromised IoT devices due to some well-known cyberattacks in Internet of Things are saved. The parameters of the proposed system are being specified in order to distinguish (filter) the two states of the IoT devices (non-compromised or compromised) by these indexes.