A Microsoft or Telstra pop-up says your computer is infected — call this Australian number
A full-screen pop-up locks your browser and plays a loud alarm claiming Microsoft, Telstra, or Windows Defender found a virus. It gives an Australian 1800 or 1300 number. The person who answers asks you to install AnyDesk, then drains your bank or charges hundreds for a fake "support subscription".
Also known as: fake Microsoft support popup AU, Telstra security warning scam, fake Windows Defender alert, 1800 tech support scam
Already happened to you? Do this in the next few minutes
- 1 Call your bank or card's fraud line right now. Use the number on the back of your card — not any number from the message or caller. Ask them to stop or reverse the payment and freeze the account.
- 2 If you paid by gift card, wire, or an app (Zelle, Venmo, Cash App): contact that company immediately and report it as fraud. Acting fast sometimes recovers the money.
- 3 Report to the FBI at ic3.gov and the FTC at reportfraud.ftc.gov. The sooner, the better.
- ! If you installed any "support", "server", "refund", or remote-access app at their request (AnyDesk, TeamViewer, Quick Support, etc.): disconnect the internet now, then run free SeraphSecure (https://www.seraphsecure.com) to detect and remove it.
What to do right now
- 1 Close the browser tab. If it won't close, force-quit the browser: Ctrl+Shift+Esc (Windows) or Cmd+Option+Esc (Mac)
- 2 Never call a phone number shown in a browser pop-up — no legitimate tech support ever appears this way
- 3 If you already called and installed remote-access software: disconnect from the internet immediately, uninstall AnyDesk / TeamViewer / Quick Support, then run a full antivirus scan
- 4 If you gave any bank details or logged into online banking while they watched, call your bank straight away — money moved during the call may be recoverable if reported within hours
- 5 Change all important passwords from a separate, clean device
- 6 If you installed any 'support' or 'server' or 'refund app' or remote-access app at the scammer's request (AnyDesk, TeamViewer, Quick Support, etc.), run free SeraphSecure (https://www.seraphsecure.com) to detect and remove it.
- 7 Report to Scamwatch at https://www.scamwatch.gov.au/report-a-scam or ReportCyber at https://www.cyber.gov.au/report.
Was remote-access software installed?
If a scammer asked you to install AnyDesk, TeamViewer, Quick Support, or any remote-access app, your device may still be compromised.
Run SeraphSecure to detect and remove it →Red flags
- ⚠ A browser pop-up that fills the screen and cannot be closed normally — real virus alerts come from the operating system, not a browser window
- ⚠ Loud alarm sound or robotic voice reading a warning aloud — Microsoft, Telstra, and antivirus software never do this
- ⚠ An Australian 1800 or 1300 number, or a fake Sydney (02) / Melbourne (03) number that claims to be Microsoft or Telstra — real companies never provide phone numbers via browser pop-ups
- ⚠ You are asked to install AnyDesk, TeamViewer, LogMeIn, Quick Support, or Supremo so 'a technician can fix your PC'
- ⚠ The technician asks for your bank login to 'verify a refund' or asks you to move money to a 'safe account' while you watch
Known variants
-
'Refund' variant: the same 'support company' calls back weeks later offering a refund. They ask you to log into online banking to 'process it', pretend to accidentally deposit $5,000 too much, then pressure you to send the difference back — the balance was just moved between your own accounts.
Last seen: 4/10/2026