Solo3.biz?

My wife's Windows 7 computer at work (a Lenovo ThinkCentre) has started throwing up fake Norton expiration ad popups (no Norton products are installed) on the desktop that can't be dismissed, as shown in the attached screenshot.

It says 'solo3.biz' in the popup itself, and that's a malware thing, but it might be misdirection, since none of the typical things described in the online descriptions of how to remove solo3.biz show up.

Preliminary checks with Malwarebytes and Bitdefender found nothing.

I've run the checks as instructed. I did forget to reboot after the (newly installed on top of the existing installation) Malwarebytes finished scanning (it found nothing) but did reboot after Roguekiller. Sorry. Also neglected to turn off UAC until after Roguekiller finished, because I assumed she had Windows 10 but it's Windows 7. Please let me know if I need to repeat any steps due to these mistakes on my part.

All the logs are attached, except that the MGTools log is in a reply message below because I couldn't attach 6 logs to the first message. Nothing was detected by any of the scans.

Thanks so much for your help and support.

 

MGTools log

 

It's a company computer but she basically *is* the company and we own the computer: we have full admin permissions to make changes.

We're at home now but I'll probably head in to her office early tomorrow morning and run MGTools again for the full scan and send the log.

 

Mostly Vivaldi (offshoot of Opera), although Chrome is also on the machine. We checked for .exe hijacks for both but they looked OK.

 

Thanks, Tim. We needed to update her Vivaldi from 2.5 to 3.0 for those instructions to work and then it worked, but the popups came back after a little while.

What's next? (It might be a matter of bringing her computer home so I'm not trying to work on it around office hours and my work and her work, 20 minutes drive from home.)

Thanks very much.