Hello all, creating this topic in the hopes of quelling some paranoia or to eradicate some malware. Either outcome is alright by me.
Some time ago I needed a file patch and (probably) clicked one of the dozen or so fake "download" buttons on the webpage. Went ahead and downloaded the file even after it told me there would be other files bundled in. Immediately after the download my internet security blew a gasket, quarantined a bunch of files as a live response, and I thought that was the end of it. Then I started getting a bunch of ads appearing out of nowhere on my browser screen. New tabs would just open and there'd be an ad. Ran MBAM, discovered a bunch of extra stuff my security software missed, and deleted. A week later, my credit cards were being used in different states around the country.
So, after handling all the fraud mess, I ran a system restore on my PC and hoped for a clean slate. I didn't choose the "Save personal files" option, I went with the "Nuke everything to oblivion" option. Now my PC is getting weird again. When I turned it some days ago, my internet was disconnected and all my anti-malware programs were disabled. Fixed those without issue, but now every time I log in my anti-malware programs are disabled and I have to enable them manually. When I look under my security and maintenance tab in the control panel, it says everything is still turned off despite my programs appearing to be working as normal. And the ads are back, but nowhere near as frequent as before.
Downloaded rkill, nothing but there were about a dozen or so notes under the Miscellaneous tab in the report file.
Downloaded MBAM again, search came up with nothing.
Downloaded MB Anti-Rootkit, nothing.
Downloaded AdwCleaner, nothing.
Like before my system restore, these programs like to be active in my background processes. If I open my task manager they will disappear within seconds. If I close it, they'll come back until I open it again. They both trace back to my system32 folder.
I'm running Win10. I'm hoping it's just some bugs in windows 10, I need some expert advice on this because I'd rather be safe than sorry. FRST logs are attached below.