-
×InformationNeed Windows 11 help?Check documents on compatibility, FAQs, upgrade information and available fixes.
Windows 11 Support Center. -
-
×InformationNeed Windows 11 help?Check documents on compatibility, FAQs, upgrade information and available fixes.
Windows 11 Support Center. -
Create an account on the HP Community to personalize your profile and ask a question
Your account also allows you to connect with HP support faster, access a personal dashboard to manage all of your devices in one place, view warranty information, case status and more.
1
0
0
HP Recommended
HP Recommended
Welcome to our HP Community forum!
In order to remove a malicious pop-up scam from your screen, you need to force-close the browser or process displaying it, and then clear the system settings that allowed it to appear. These pop-ups are almost always fake warnings designed to trick you into calling a phone number or downloading malware.
Follow this step-by-step guide to freeze the pop-up and clean your system.
Step 1: Force-Close the Scam Pop-Up:
Do not click "OK," "Cancel," or the "X" on the pop-up window itself, as scammers often hide malicious scripts behind those buttons.
- Press Ctrl + Shift + Esc on your keyboard to instantly open the Task Manager.
- Look at the list of open apps for your web browser (e.g., Google Chrome, Microsoft Edge, HP Support Assistant).
- Click on the browser name to highlight it, and then click End Task in the top-right corner to kill the process.
Step 2: Clear Browser Data (Crucial Step):
If you simply reopen your browser, it may automatically reload the malicious scam page.
- Reopen your web browser. If it asks you to "Restore Tabs", click NO or Close.
- Press Ctrl + Shift + Delete to open the clear browsing data window.
- Set the time range to All Time.
- Check the boxes for Browsing history, Cookies, and Cached images.
- Click Clear Data.
Step 3: Block Fake Site Notifications:
Many modern pop-up scams happen because a malicious website tricked you into clicking "Allow Notifications".
- In your browser, open the menu (three dots in the top-right) and go to Settings.
- Search for Notifications in the settings search bar.
- Look at the list of sites allowed to send notifications. If you see any unrecognized web addresses (especially strange domains ending in .xyz, .top, or mimicking antivirus brands), click the three dots next to them and select Remove or Block.
Step 4: Run an Antivirus and Adware Scan:
To ensure no background programs are feeding these pop-ups to your desktop, run a deep scan.
- Click the Windows Start menu, type Windows Security, and open it.
- Go to Virus & threat protection and click Quick Scan (or: Scan options -> Full Scan).
- For a thorough second opinion, download the free version of Malwarebytes to scan for and eliminate hidden adware that native antivirus tools sometimes miss.
Step 5: Check for Malicious Browser Extensions:
- In your browser menu, navigate to Extensions -> Manage Extensions.
- Review the list of active extensions.
- If you see anything you did not purposefully install (like rogue ad-blockers, search bars, or coupon finders), click Remove.
Btw, how did this pop-up appear on your computer? If you accidentally called the phone number listed on the scam, or if you allowed remote access to your device, let me know right away so I can give you steps to secure your personal data and bank accounts.
Kind Regards,
NonSequitur777
HP Recommended
And in case you did interact with a scammer (specifically called the number, clicked a link, or allowed remote access), take these high-priority security actions immediately:
1. Lock Down Your Financial Accounts:
- Call Your Banks: Contact your bank and credit card companies immediately via the phone number listed on the back of your physical card.
- Request Fraud Holds: Ask them to freeze your accounts, flag your profile for identity theft, and cancel any cards or pending transactions you did not authorize.
- Check Credit Reports: Place a free fraud alert or credit freeze on your credit files at the three major bureaus: Equifax, Experian, and TransUnion.
2. Revoke Remote Access Controls:
- Sever the Connection: If a technician is actively controlling your computer, physically turn off your Wi-Fi router or pull the ethernet cable to drop the connection.
- Uninstall Remote Software: Open Windows Settings, go to Apps > Installed Apps, and completely delete any remote access tools you were told to download (e.g., AnyDesk, TeamViewer, Zoho Assist, UltraViewer).
3. Secure Your Digital Identity:
- Update Master Passwords: Change the password for your primary email address, financial portals, and any account that shares the same password as your computer login.
- Enforce Multi-Factor Authentication (MFA): Turn on two-step verification across all major accounts, preferably using an authenticator app (like Google Authenticator) rather than SMS text codes.
4. Sanitize the Operating System:
- Run a Bootable Offline Scan: Scammers sometimes plant deep rootkits. Go to Windows Security > Virus & threat protection > Scan options, select Microsoft Defender Offline scan, and click: Scan Now to clean the system outside of the Windows environment.
- Check for Hidden Accounts: Right-click the Start menu, open Computer Management, check under Local Users and Groups > Users, and delete any new user profiles created by the scammer.
Kind Regards,
NonSequitur777
Be alert for scammers posting fake support phone numbers and/or email addresses on the community.
If you think you have received a fake HP Support message, please report it to us by clicking on "Flag Post".
Didn't find what you were looking for?
Ask the community