Fake Virus Warnings and Tech Support Scams: Don't Get Fooled

About 11 min read

A fake virus warning is a fraudulent screen that suddenly fills your browser, claiming "Your computer is infected" while playing a loud alarm sound and displaying a phone number for "Microsoft Support." The goal is not to infect your PC but to make you panic and call that number, where an operator talks you into installing remote-control software and paying for fake repairs. This scheme is called a tech support scam. In Japan, the Information-technology Promotion Agency (IPA) reports that tech support scams are among the most frequent categories of consultations at its security help desk, and the majority of victims are elderly. This article explains how to tell a fake warning from a genuine OS or browser notification, the correct way to close the screen, what you must never do, and how to recover with passtsuku.com if you have already been deceived.

What You Should Do

Even if the screen says "Your computer is infected" and an alarm sounds, it is a lie. A genuine OS or security software will never ask you to make a phone call or keep blaring a loud warning sound. First, stay calm and never call the displayed phone number. If the screen is stuck in full-screen mode and will not close, press and hold the Esc key to make a close button appear. If it still will not close, on Windows open Task Manager with Ctrl + Alt + Delete and quit the browser; on Mac, force quit with Command + Option + Esc. If you have already called or installed remote-control software, disconnect from the internet immediately and regenerate all important account passwords on passtsuku.com from a separate, safe device.

How Tech Support Scams Work

Tech support scams begin with a fake warning screen that suddenly appears while you are browsing a website. It is not limited to adult sites or piracy sites; it also originates from malicious ads (malvertising) slipped into legitimate sites. The warning screen is nothing more than HTML and JavaScript running in your browser, and at this point your PC is not actually infected. The attacker's real aim is to lead you to the phone number shown on screen, have you install remote-control software over the phone, and pressure you into a paid support contract or payment via electronic money.

In that it lures victims from an on-screen fake warning into a phone call and remote control, this scheme differs from spam and scam messages, which involves tapping a link in an email or SMS. Because it works by cornering victims psychologically to strip away their judgment, it is a form of social engineering.

Telling Genuine Notifications from Fake Warnings

The biggest clue is the combination of a phone number and a sense of urgency. Windows security features, Microsoft, Apple, and legitimate security software never display a phone number inside a warning and tell you to "call now." If even one of the following traits applies, it is almost certainly a fake warning.

• A phone number is shown and you are urged to "call support now"
• An alarm, beeping, or synthetic voice keeps playing
• The browser goes full-screen and no close button is visible
• It stokes fear with official-looking logos and numbers like "Microsoft" or "N viruses detected"
• It threatens with a countdown or "leaving this page will erase your data"

A genuine security software notification appears quietly inside the software's own window, and you handle it with a "quarantine" or "delete" button entirely within the software. OS update notices and battery warnings are the same; they never ask you to make an external phone call. If you are unsure, do not use the contact shown on the screen; instead, go to the product's official website yourself and check the support contact.

How to Close the Warning Screen Correctly

Because a fake warning is only an on-screen effect, it disappears once you close the browser. Try the following steps in order.

1. If the screen is full-screen, press and hold the Esc key to exit full-screen, then close the tab with the close button that appears (the method recommended by IPA)
2. If you can close the tab or window, just close it. Even if a confirmation dialog appears, you can calmly dismiss it
3. Close the window with Alt + F4 (Windows). If it will not close, right-click the browser on the taskbar and choose "Close window"
4. If it still will not close, on Windows open Task Manager via Ctrl + Alt + Delete and choose "End task" on the browser; on Mac, force quit with Command + Option + Esc
5. As a last resort, restart the PC. Do not choose "Restore previous pages" in the browser; start from a new tab

After closing it, clearing your browser cache and history and checking your browser settings for abused notification permissions adds peace of mind. The alarm sound is merely coming from your device's speaker, so lowering the volume stops it.

What You Must Never Do

Damage occurs the moment the victim takes action themselves. Avoid the following two things at all costs. First, do not call the phone number shown on the screen. It connects to the scam group's call center, where they fluently stoke your anxiety and steer you toward remote control. Second, do not install remote-control software such as AnyDesk, TeamViewer, or UltraViewer at the phone operator's direction. The software itself is legitimate, but in an attacker's hands it hands over control of your screen operations, files, and online banking exactly as they are.

Likewise, never follow the on-screen instructions to buy electronic money (prepaid cards) at a convenience store and tell them the code, read out gift card numbers, or enter your bank account or credit card number. The moment they ask for payment via electronic money or gift cards, it is a scam, not legitimate support.

What to Do After Allowing a Call or Remote Access

If you installed remote-control software and let them operate your PC, the attacker may have seen passwords shown on your screen or credentials saved in your browser. Prioritizing stopping the spread of damage, take the following steps in order.

1. Disconnect from the internet immediately. Turn off Wi-Fi, and if wired, unplug the LAN cable. This stops the remote control from continuing
2. Uninstall the remote-control software you were made to install (such as AnyDesk). Also remove its settings and any auto-start registration
3. Run a full scan with security software to check whether the attacker planted additional malware
4. If doubts remain, resetting the PC (a clean install of the OS) is the most reliable option. Back up important data to a scanned external medium beforehand
5. From a separate, safe device, regenerate all important account passwords on passtsuku.com and change them by pasting with the copy feature. Do not change them on the suspect device
6. Set up two-factor authentication on important accounts so that even if a password leaked, unauthorized login is blocked

For more detailed steps on handling a compromised device and protecting accounts, see personal incident response.

If You Disclosed a Card Number or Password

If you entered or verbally gave your credit card number, contact your card issuer without hesitation. Call the number on the back of the card or the contact listed on the official website yourself, report the possibility of unauthorized use, and request that the card be suspended and reissued. It is important to check your statement for unfamiliar charges, both at that time and over the following months. In Japan, confirmed unauthorized use is in many cases covered by the card issuer's compensation, but prompt reporting is a condition, so contacting them as soon as you notice is the key to limiting the damage.

If you disclosed a password, change it immediately on every service that uses it. If you reused the same password, the damage will not stop at one account. Regenerate a strong, unique password for each service on passtsuku.com and set it by pasting directly with the copy feature. In addition, keep screenshots and notes as evidence of suspicious operations or transfers, and consulting the police (#9110 or your local police station's cybercrime desk) or a consumer affairs center (consumer hotline 188 in Japan) helps with subsequent procedures.

Protecting Family and Elderly Members in Advance

Many tech support scam victims are elderly. To protect family members who live apart, preparation before damage occurs is effective. As technical measures, enable settings that block browser pop-ups and notifications, and install reliable security software to shut out malicious ads and scam sites. To make it easier to cut off phone-based manipulation, introducing a landline phone or device with a feature that automatically warns about and blocks nuisance calls is also effective.

Even more important is regular communication. Writing down a concrete rule such as "If a phone number appears on screen and rushes you to call, it is a scam. If you are asked for money or to operate the PC, always hang up once and contact me (your family)" on paper and posting it near the phone or PC is effective. Conveying in advance that you will not blame them for being deceived makes it easier for them to consult you when they notice damage, preventing it from spreading.

For a comprehensive approach to protecting elderly family members, see internet safety for the elderly. To block malicious ads and scam sites, comprehensive security software (Amazon) is also worth considering.

Tech Support Scam Self-Checklist

• Have you decided never to call a phone number that appears on screen?
• Do you know how to close a warning screen (hold Esc, Task Manager)?
• Have you decided not to install remote-control software even if instructed?
• Have you set your browser to block pop-ups and notifications?
• Are you blocking scam sites and malicious ads with security software?
• Have you agreed with family to "hang up once and consult if rushed to call"?
• Have you set up two-factor authentication on important accounts just in case?

What You Can Do Right Now

1. Enable pop-up and notification blocking in your browser settings
2. Practice closing the browser with the hold-Esc and Task Manager steps once
3. Install reliable security software and enable blocking of scam sites and malicious ads
4. Agree on a rule with family that "if rushed to call, hang up once," write it on paper, and post it
5. Regenerate your email and financial service passwords on passtsuku.com and set up two-factor authentication

Frequently Asked Questions

How do I get rid of a fake virus warning?

A fake warning is only a display in the browser, so it disappears once you close the browser. In full-screen mode, hold the Esc key to make a close button appear, then close the window with Alt + F4. If it will not close, on Windows quit the browser via Task Manager (Ctrl + Alt + Delete); on Mac, force quit with Command + Option + Esc. The last resort is to restart, and start from a new tab without restoring pages.

I called the tech support scam number. What should I do?

If you have not yet installed remote-control software, simply hanging up causes almost no real harm. If you allowed remote access, immediately disconnect from the internet, delete the software you were made to install, and run a full scan with security software. If you are anxious, a reset is the surest option. Afterward, regenerate your important account passwords on passtsuku.com from a separate, safe device and set up two-factor authentication. If you paid money, consult your card issuer, the police, or a consumer affairs center (188 in Japan).

Is the "Your computer is infected" message true?

In most cases, it is a lie. Treat anything that displays a phone number and rushes you to call, keeps playing an alarm, or traps you in full-screen as a fake warning. A genuine OS or security software never asks you to call, and handling is completed within the software's own screen. If unsure, check the support contact from the product's official website, not the contact on the screen.