Skip to main content
a pop up from Microsoft told me to call the number, there was a possible threat...then I scanned my cimpute with Webroot, which was installed from Best-buy, no threats came up...what should I do?
@ wrote:

a pop up from Microsoft told me to call the number, there was a possible threat...then I scanned my cimpute with Webroot, which was installed from Best-buy, no threats came up...what should I do?

Hello bobbob1963.

 

Welcome to the Community!

 

This is a SCAM!! Do not and I repeat do not respond to this Scam!! Please ignore and do not Call this number whatever you do!!

 

You might also want to check for PUAs..

 

What you are seeing and describing sounds like it may be what we on the Community refer to as a PUA. (Potentially Unwanted Application) These are very annoying at best in that they cause pop-us, redirect your browser home page, and other behavior that may slow down the computer and direct ads your way, but they are not actually doing anything bad like damaging files or stealing information. Often they are installed intentionally by you the user as browser add-ons for various tasks such as quick search tools.. but they also come with the result of added annoying pop-ups and ads. Other times they 'piggy back' with other software that you installed, or try to 'sneak' onto your system entirely.

 

WSA does detect and remove many PUA's, and more are being added, but WSA does not detect all of them. A simple browser add-on with PUA behavior that is easy to identify and easy to remove is not likely to be detected and removed by WSA. Those that are intentionally difficult to locate and remove are. Please see THIS LINK for more information regarding Webroot's stance on these annoying programs.

 

For those that are not detected by WSA, please see this KB Article. It has some easy to follow directions on locating and removing PUA's. You may also want to submit a Trouble Ticket, especially if you cannot remove it easily from the directions in the KB Article.

 

For those that ARE detected by WSA, but cannot be removed automatically, you can submit a Trouble Ticket.  Webroot Support will help you get these annoying 'crapware' off your computer at no extra charge, and the additional examples may help to better automatic removal of that particular PUA for all users in the future.

 

To make sure that your WSA is checking for PUA's with the best proficiently, it sometimes helps to reset the PUA detection within WSA's settings. For PUA's that had previously been scanned and determined to be OK, but have since been added to detection/removal, you may want to complete the following steps:

 


  • Open Webroot SecureAnywhere
  • Click on ‘Advanced Settings’ from the top right
  • Select ‘Scan Settings’ from the left side
  • Unselect the option “Detect Potentially Unwanted Applications”
  • Click on the Save button (you may have to enter in a CAPTCHA)
  • Reselect the option to “Detect Potentially Unwanted Applications”
  • Click on the Save button
  • Run another scan with Webroot and remove any items that get detected.
To help avoid PUA's in the future, remember to read all of the information when installing or updating software (Adobe downloads often have those "extra special offers"attached... PUA'S!: often the PUA included will be mentioned, and you can opt out of installing it.  Those check boxes you see? Usually only one of them is for the User Agreement of the software you want, the others are for the junk you don't.

 

 I hope this helps you both understand, and resolve the problem and if not please let us know!

 

Best Regards
Hi bobbob1963

 

Welcome to the Community Forums.

 

If WSA is coming up clean and the popup appears to be unsolicited (I have never ever heard MS operating like this) then I would treat it as a scam and would certainly NOT respond to this in anyway whatsoever.

 

If the popup persists or you are at all worried then I would Open a Support Ticket and let the Webroot Support professionals take a look at this for you.

 

Regards, Baldrick
Also to add from this post at the bottom of it: https://community.webroot.com/t5/Security-Industry-News/Microsoft-Security-Bulletin-Minor-Revisions-Issued-September-19/td-p/151179

 

And I would add Pop-ups as well!

 

Other Information

=================

Recognize and avoid fraudulent email to Microsoft customers:

=============================================================

If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email.

 

Thanks,

 

Daniel 😉

Reply