Main question is: How do I know if I have been hacked?

Detecting lateral movement using event logs:

Sysmon 6:  and how to use it:!2843&ithint=file%2cpptx&app=PowerPoint&authkey=!AMvCRTKB_V1J5ow

additional resources on this blog:

and some other links:,

The first step is to scan your computer with a Rootkit detector. Our download section has numerous Rootkit scanners available with some being listed below:

Toolkit to help you:

– Volatility:

– Crowdstrike:

– McAfee foundstone free tools:

– Powershell windows forensics:

– Powershell windows forensics:

– Powershell windows forensics:

-Powershell windows forensics:

– forensic toolkits:,

– online scanning:

-Windows event logs

– Windows safe mode ! (autoruns from sysinternals to detect not well known application/services)

– autoruns,procexp,procmon,tcpview,handles,psloggedon  (

– treesize pro (

– closethedoor (

– Wireshark ( or Microsoft Message Analyzer (

– nmap:

– traceroute: