Using an ad-blocking DNS server solves most of those problems. Mullvad offers a public DNS server with no account required, but there are plenty of options out there.
You should still use a browser extension on top of that for pattern-based URL blocking, but a DNS-based blocker should be your first line of defense.
Just want to point out for anyone new that ProtonMail does not use E2EE for email headers. That means they CAN access your subject lines, to/from fields, and other email headers. That means they CAN be forced to hand it over to the government.
Source: https://proton.me/support/proton-mail-encryption-explained
Personally I am disappointed in a lot of Proton’s wording about this. They frequently promise they can’t access “your data” and “your messages” when they do, in fact, store potentially sensitive data in a format they CAN access.