Around 3 days ago, I was on my administrator account and went on a shaddy blogspot and download what they toldme to to get Microsoft office 2016 and crack it using kmsauto or something like that,
I got warning from chrome and defender to not download those but I did anyway, Then shortly after chrome was hijacked trying to get extensions, ads were popping all over my screen and popups saying to upgrade antivirus or get virus help etc, my computer was going crazy. I could scan with Malwarebytes premium that I just downloaded while having the virus and I scanned, and tried to get rid of the virus by deleting the downloads and trying to uninstall anything that seemed shady.
In malware bytes the logs said something like Hijack 50 times and Rootkit.Komodia or something like that. There was like 100-200 detections in total and many viruses and malware/adware. I tried to clean it with Malwarebytes and I think the popups stopped and chrome reset losing my bookmarks, extensions, etc.
I shutdown my computer and went to sleep.
Then I woke up next day and tried going in safe mode, using Rkill, then using Malwarebytes, then scanning with Avira, HitmanPro, TDSSkiller and It seemed I was fine. I reset my pc ( delete files and start over) and then I also tried to do a clean reinstall of windows using a usb. The thing is when I got the virus and malware I had the usb plugged in so I don't know if it was infected and after that I also plugged in the usb to 2 other computers. After reinstalling windows 10, I did all the steps again, using Rkill, Malwarebytes, Avira,Hitmanpro, and TDSSkiller. They didn't seem to find any threats.
I also then used Malwarebytes anti rootkit, Sophos Virus removal tool, Junkware removal tool, and adwcleaner. adwcleaner keeps finding Chrome things, 4 things that keep coming even after I clean and restart, I scan again and they are not cleaned The values are 2 search providers, ask.com and aol.com which are web data and a weird extension whos data is fkjlohfdjcjhmfcabomglnciodlnplhk which is secure preferences and 4th one is homepage they are all in users/pinfo/appdata/local/google/chrome/User Data/Default. I will have a picture of it attached.
If I had reinstalled windows, is it possible I still have malware and how is it possible that adwcleaner is finding malicious things that aren't being cleaned and are still there after restarting?
I think I have a rootkit and adware/malware still on my computer.
I will also have attached FRST.txt and Addition.txt