From a different device (her phone), she changed her email, banking, and social media passwords. The scam pop-up hadn’t stolen anything yet, but the hijacker could have logged keystrokes.
She knew the cursor was trapped inside the browser window. On a Mac, she held Command + Q . On Windows, Ctrl + Shift + Esc to bring up Task Manager—but her mouse was fake-locked. So she tried Alt + F4 repeatedly. Nothing. Then she remembered: the nuclear option. how to get rid of scam pop ups
She let her hand hover, then pulled it back. The scammer’s goal was fear—get her to dial that number so they could charge $400 to “fix” nothing or install real malware. From a different device (her phone), she changed
The pop-up was a perfect clone of a real Windows alert—spinning circle, fake progress bar, even a timer counting down from 300 seconds. Her cursor vanished. Every key press was ignored. Her heart pounded. “No, no, no,” she whispered, thinking of her client invoices, her portfolio, everything on this machine. On a Mac, she held Command + Q
She turned Wi-Fi back on, downloaded Malwarebytes (free version) from a legitimate site, and ran a full scan. It found two adware extensions and one “browser hijacker”—the culprit that had redirected her from the client’s fake email.