← All guides
June 9, 2026 · 6 min read

Tech Support Pop-Up Scams: The Fake Virus Warning

A full-screen warning says your computer is infected and to call Microsoft or Apple right now. It's a scam. Here's how the fake virus pop-up works, how to close it safely, and what to do if you called.

Short answer: a pop-up that says your computer is infected and tells you to call a number for Microsoft, Apple, or "Windows Support" is a scam. Real security software and operating systems never lock your screen and demand you phone a support line.

The warning is designed to scare you into calling, then to talk you into paying for fake "repairs" or handing over remote control of your machine. Nothing is actually wrong with your computer until you let them in.

Quick version: Don't call the number. Don't let anyone connect remotely. Close the browser, and if it won't close, restart the computer.

In this guide

What the pop-up looks like

It usually fills the screen, sometimes with a loud alarm sound and a frozen page you can't seem to close:

** WARNING: YOUR COMPUTER HAS BEEN BLOCKED **
Error # 0x80072EE7
Your computer has alerted us that it is infected with a virus
and spyware. Your bank details, Facebook login and personal
files are at risk. Call Microsoft Support immediately:
1-800-XXX-XXXX. Do not restart your computer.

It leans on logos, fake error codes, a phone number, and a "do not turn off your computer" instruction. The countdown timers and blaring sound are pure pressure.

How the scam plays out

  1. The scare. A pop-up or webpage claims infection, often after you visit a sketchy site, click a bad ad, or mistype a web address.
  2. The call. You phone the number. A "technician" answers and sounds professional.
  3. The remote-access ask. They have you install remote-control software (AnyDesk, TeamViewer, etc.) so they can "fix" it.
  4. The fake diagnosis. They open normal system logs and point to harmless entries as "viruses" or "hackers."
  5. The charge. They demand payment for a "support plan" or one-time fix — often by gift cards, bank transfer, or card — and sometimes snoop for banking details while connected.

The whole thing manufactures a problem and then sells you the cure.

Why it's so convincing

It hits people who are already a little anxious about viruses and hackers. The branding looks real, the error codes look technical, and the "don't turn off your computer or you'll lose everything" line stops the one action that would end it. For someone less comfortable with technology — which is exactly who's targeted — it feels safer to call than to risk it.

That instinct is the trap. The safe move is the opposite of what the pop-up tells you.

The red flags

  • A pop-up tells you to call a phone number. Real antivirus and OS warnings never do this.
  • It claims to be Microsoft, Apple, or "Windows Defender" by phone. These companies don't put support numbers in alarm pop-ups.
  • It won't let you close it or plays a sound and a countdown.
  • Anyone asks to remotely connect to fix a virus they "detected."
  • Payment in gift cards or bank transfer for support — a flat sign of fraud (see the gift card payment scam).

How to close it safely

The pop-up is just a webpage. It can't actually harm your machine on its own — the danger only starts if you call and let someone in.

  1. Don't call the number and don't enter anything.
  2. Close the browser tab or window. On Windows, press Ctrl+W, or open Task Manager (Ctrl+Shift+Esc) and end the browser. On a Mac, press Cmd+W, or Force Quit (Cmd+Option+Esc) the browser.
  3. If it won't close, restart the computer. Ignore the "do not turn off" warning — that instruction only protects the scam.
  4. Reopen your browser without restoring tabs so the page doesn't reload. Clear recent history if needed.
  5. Run a scan with your real, already-installed antivirus for peace of mind.

If you never called and never installed anything, you're almost certainly fine.

If you already called or paid

  1. Disconnect from the internet (unplug ethernet or turn off Wi-Fi) if someone is, or was, remotely connected.
  2. Uninstall any remote-access software they had you install (AnyDesk, TeamViewer, etc.).
  3. Run a full antivirus scan, and if you're unsure the machine is clean, have a trusted local technician check it.
  4. Change passwords for important accounts — email and banking first — from a different, trusted device.
  5. Call your bank if you paid by card or shared financial details, and report fraud. If you paid by gift card, contact the card issuer to try to freeze it.
  6. Report it to the FTC at reportfraud.ftc.gov.

Get a second opinion

These pop-ups are built to panic you in the moment, and the people they hit hardest often aren't sure what's safe to click. If one has you rattled — or a "technician" is mid-call — step away and check first. Describe what happened to FraudRoom at check@fraudroom.com for a calm, plain read on whether it's a scam and what to do next. If you're setting up protection for a parent who's vulnerable to these, our Family plan is built for exactly that.

FAQ

Is my computer really infected if I see this pop-up?

Almost never. The pop-up is just a webpage designed to scare you. Real infections don't announce themselves with a support phone number. Close the browser and run your own antivirus to confirm.

I called the number but didn't let them in or pay. Am I okay?

Likely yes. The risk comes from giving remote access or money. If you only called and hung up, you're probably fine — but don't call back, and watch for follow-up calls, since your number is now flagged as responsive.

They had remote access to my computer. What now?

Disconnect from the internet, uninstall any remote-access app they installed, run a full antivirus scan (or get it checked by a trusted technician), and change your important passwords from a different device. Call your bank if any financial info was exposed.

Will restarting my computer delete my files like the pop-up warns?

No. That warning is fake and only exists to stop you from closing the scam. Restarting is safe and is often the quickest way to clear a stuck pop-up.

Key takeaways

  • A pop-up telling you to call a number about a virus is always a scam.
  • Real antivirus and operating systems never lock your screen and demand a phone call.
  • Don't call and never grant remote access — just close the browser or restart.
  • If you let someone in or paid, disconnect, scan, change passwords, and call your bank.

Keep reading

The Puppy Scam: How Fake Pet Sellers Operate5 min readThe Jury Duty Scam Call: Why 'You Missed Court' Is Fake5 min readThe 'Hi Mom' Text Scam: Fake Family, New Number6 min readThe Google Voice Verification Code Scam, Explained6 min read

Not sure about a message?

Forward it to check@fraudroom.com and get a plain-English scam check in minutes.

Try it free — 2 checks, no card