My sister came to me today and told me that she had called a support number that popped up on her computer and did what they told her to do. I believe it looked similar to this: (I didn't see it)
I ran scans with Malwarebytes and Windows Defender. Both came up empty. I also ran rkill, and will post the log file. Malwarebytes did not find anything post rkill, nor has Windows Defender. I found the install file that she downloaded in downloads, but can't find a program by that name. It is "Advanced Identity Protector" by Systweak. They didn't ask for any credit card info or passwords, though they did take control of her screen and show her all the services that had stopped in Task Manager. I assume that there is some kind of malware on her computer, but I am not sure how to find them or if they are there. What can I do to make sure her system is not compromised? I am going to have her change all her passwords.
Additionally, could someone explain why these things keep popping up? As far as I can tell, I don't do anything to cause them to pop up.
rkill log file