Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Re: I have been hacked... what now?
by
Jaro13
on 20/12/2018, 18:49:22 UTC
Okay,

I have located the hacker to own the facebook website called Geonomis, that talks about crypto mainly, what now? Passed the info onto the police but I dont think they will help, anyone know How I can contact Interpol?

Also the Log from malwarebytes:
Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 20/12/2018
Scan Time: 18:36
Log File: 259f95f8-0486-11e9-ac20-309c2360b97e.json

-Software Information-
Version: 3.6.1.2711
Components Version: 1.0.508
Update Package Version: 1.0.8413
Licence: Trial

-System Information-
OS: Windows 10 (Build 17134.472)
CPU: x64
File System: NTFS
User: DESKTOP-BH2FIJ9\Jaro PC

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 313462
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 1 min, 29 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 0
(No malicious items detected)

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)
(end)


BULLGUARD LOG SKIPPED FILES:

appdata\local\google\chrome\user data\default\cache\f_01218b
appdata\local\google\chrome\user data\default\cache\f_01218c
appdata\local\google\chrome\user data\default\cache\f_01218d
appdata\local\google\chrome\user data\default\cache\f_01218e


\appdata\local\packages\microsoft.windows.cortana_cw5n1h2txyewy\localstate\constraintindex\apps_{432e426d-c922-4e9e-985e-95806603debf}\
appdata\local\packages\microsoft.windows.cortana_cw5n1h2txyewy\localstate\constraintindex\apps_{bd9d1a26-0373-468c-96af-4f551010da35}\
c:\program files (x86)\microsoft visual studio\2017\enterprise\common7\ide\commonextensions\microsoft\nodejs\node_modules\node-gyp\node_modules\tar\test\cb-never-called-1.0.1.tgz
c:\programdata\bullguard\sentrytemp\googleupdate.exe.f01fd5f945645906a32d88d3f9cb6397
c:\programdata\bullguard\alertreports\alertmetadata2\71c66a0b1e714f8bfbf9e201cc5cfdac.7z
c:\windows\system32\wbem\performance\wmiaprpl_new.ini

Are these skipped files viruses?

Both returned scans as negative, no viruses found except the skipped files on bullguard