{"id":772,"date":"2024-06-12T09:57:04","date_gmt":"2024-06-12T09:57:04","guid":{"rendered":"https:\/\/blog.gridinsoft.com\/?p=772"},"modified":"2025-07-09T01:20:20","modified_gmt":"2025-07-09T01:20:20","slug":"your-computer-is-infected-scam","status":"publish","type":"post","link":"https:\/\/gridinsoft.com\/blogs\/your-computer-is-infected-scam\/","title":{"rendered":"Your Computer is Infected"},"content":{"rendered":"

Your computer is infected is a campaign of scam pop-up notifications<\/strong>, that aims at tricking users into downloading unwanted programs. Key purpose of the popups is to intimidate people, making them think their system is infected. Let\u2019s debunk this scam by going through each of its steps, and see how to avoid it in future.<\/p>\n

What Is \u201cYour computer is infected\u201d Notification?<\/h2>\n

The “Your computer is infected” pop-up notification is a scam that aims at intimidating the user<\/strong> and forcing them into further fraudulent actions. These notifications usually appear as pop-up windows or alerts that can look like legitimate system messages, antivirus alerts, or browser notifications. In fact they are totally fake, designed to scare or trick users into taking a particular action, often by making them believe their computer is infected with a virus or other malware.<\/p>\n

\"Your
Your computer is infected notification<\/figcaption><\/figure>\n

This usually results from visiting websites with pirated content<\/a>, such as movies or games, as well as adult content sites. These websites often embed malicious code, so any interaction with the site, whether it’s clicking a link or pressing the play button, can lead to redirects and, eventually, pop-up notifications or a flood of ad banners.<\/p>\n

How Does This Scam Work?<\/h2>\n

Let\u2019s go through the entire course of action to understand the source of fake notifications. As I mentioned earlier, in most cases, the first step is about the user visiting dubious websites<\/strong>. The issue lies in the fact that the owner of a pirated site usually adds hidden redirect links to everything on the site: buttons, images, links, etc. With such traps, any click on these elements automatically triggers a redirection, and the user finds themselves on another site, the one that offers to allow pop-up notifications.<\/p>\n

From the user\u2019s perspective, this looks like anti-DDoS<\/a> or anti-bot protection. They allow pop-ups, willing to keep watching. But that is what allows for the rest of this scam.<\/p>\n

Flood Of Notifications & Fake Scan<\/h3>\n

Typically, right after clicking “Allow,” nothing seems to happen, so the user doesn’t pay much attention to it. However, after a while, the websites start sending a huge number of notifications<\/strong>. Although these notifications come from the web browser, they look like system alerts and can contain various messages.<\/p>\n

This is where “Your computer is infected” pop-ups hove into view. Appearing in dozens, they confuse people due to excessive usage of capital letters and alarming wording. When the user clicks on this notification, it throws them to a fraudulent website. The site then performs a fake scan, finds numerous issues, and suggests installing a \u201cfix tool” to resolve these problems.<\/p>\n

Obviously, all these “issues” and detected malware are fake because no website can scan a device for viruses<\/strong> \u2013 it is just technically impossible. These actions aim to trick the user into installing unwanted software, particularly rogue antiviruses<\/a> or pseudo-effective apps.<\/p>\n

Fake Support Page<\/h3>\n

An alternative scenario involves redirecting the user to a fake tech support page<\/a>. In this case, the user lands on a webpage that mimics an official Microsoft support site. Typically, this page displays banners or notifications claiming issues with the computer and urges the user to call a specified number for assistance.<\/p>\n

\"Fake
Fake tech support scam<\/figcaption><\/figure>\n

If the user calls the provided number, they reach scammers posing as legitimate support staff. These fraudsters may attempt to obtain personal information or credit card details, trick the user into paying for “fixing” nonexistent issues, or gain remote access to their computer through a remote connection. The latter is particularly dangerous as it grants the scammers full control over the device.<\/p>\n

Is Your Computer Infected?<\/h2>\n

It is possible to manually remove the pop-up source through the browser interface. To do this, go to your browser settings, find notification settings, and remove all the sites listed as ones that can send notifications. Reload the browser to apply the changes.<\/p>\n