Okay,
I have located the hacker to own the facebook website called Geonomis, that talks about crypto mainly, what now? Passed the info onto the police but I dont think they will help, anyone know How I can contact Interpol?
Also the Log from malwarebytes:
Malwarebytes
www.malwarebytes.com-Log Details-
Scan Date: 20/12/2018
Scan Time: 18:36
Log File: 259f95f8-0486-11e9-ac20-309c2360b97e.json
-Software Information-
Version: 3.6.1.2711
Components Version: 1.0.508
Update Package Version: 1.0.8413
Licence: Trial
-System Information-
OS: Windows 10 (Build 17134.472)
CPU: x64
File System: NTFS
User: DESKTOP-BH2FIJ9\Jaro PC
-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 313462
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 1 min, 29 sec
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect
-Scan Details-
Process: 0
(No malicious items detected)
Module: 0
(No malicious items detected)
Registry Key: 0
(No malicious items detected)
Registry Value: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Data Stream: 0
(No malicious items detected)
Folder: 0
(No malicious items detected)
File: 0
(No malicious items detected)
Physical Sector: 0
(No malicious items detected)
WMI: 0
(No malicious items detected)
(end)
BULLGUARD LOG SKIPPED FILES:
appdata\local\google\chrome\user data\default\cache\f_01218b
appdata\local\google\chrome\user data\default\cache\f_01218c
appdata\local\google\chrome\user data\default\cache\f_01218d
appdata\local\google\chrome\user data\default\cache\f_01218e
\appdata\local\packages\microsoft.windows.cortana_cw5n1h2txyewy\localstate\constraintindex\apps_{432e426d-c922-4e9e-985e-95806603debf}\
appdata\local\packages\microsoft.windows.cortana_cw5n1h2txyewy\localstate\constraintindex\apps_{bd9d1a26-0373-468c-96af-4f551010da35}\
c:\program files (x86)\microsoft visual studio\2017\enterprise\common7\ide\commonextensions\microsoft\nodejs\node_modules\node-gyp\node_modules\tar\test\cb-never-called-1.0.1.tgz
c:\programdata\bullguard\sentrytemp\googleupdate.exe.f01fd5f945645906a32d88d3f9cb6397
c:\programdata\bullguard\alertreports\alertmetadata2\71c66a0b1e714f8bfbf9e201cc5cfdac.7z
c:\windows\system32\wbem\performance\wmiaprpl_new.ini
Are these skipped files viruses?
Both returned scans as negative, no viruses found except the skipped files on bullguard