Severity scale:  
  (13/100)

Remove “Microsoft has detected suspicious activity” Tech support scam (Tech Support Scam) - updated Jun 2019

removal by Gabriel E. Hall - - | Type: Malware

“Microsoft has detected suspicious activity” is a tech support scam that shows false system messages about alleged malware

“Microsoft has detected suspicious activity” Tech support scam
Microsoft has detected suspicious activity is the virus that shows various fake alerts stating that your device is in danger due to malware detection.
 

“Microsoft has detected suspicious activity” scam is the web browser redirects causing program that focuses on tricking users into displaying warnings and notifications about system issues. This is a social engineering attack that suggests people call the support number, so the problems get fixed by technicians. Unfortunately, these warnings are fake and caused by the adware-type intruder installed on the computer behind your back, and people on the other side are scammers.

When you encounter Microsoft has detected suspicious activity tech support scam message, it can be exited as a browser window, but the continuous appearance of the fake alerts indicate the additional intruder and possible risk. There is nothing wrong with your machine, and viruses are not targeting credentials or logins. However, calling the provided number and installing promoted software can lead to such problems like stolen data.

Questions about “Microsoft has detected suspicious activity” Tech support scam

Remember that Microsoft or any other company, a software developer does not send messages about PC issues, especially such alerts with contact information or phone numbers. Microsoft has detected suspicious activity is nothing but a pop-up, so don't provide your personal data for the scammers and clean the machine as soon as possible.

Name “Microsoft has detected suspicious activity” 
Type  Scam
Tactics  Technical support scam attack, social engineering tactics
Danger  Tricks people into revealing their personal information
Distribution  Deceptive websites, questionable software, potentially unwanted programs
Elimination Get Reimage clean the system from PUPs and other fake alerts causing applications. Remove “Microsoft has detected suspicious activity” scam with anti-malware tools

The free app management program TSS MoboPlay is nothing else but a brand new cyber threat that is known as “Microsoft has detected suspicious activity” Tech support scam[1]. The scammers[2] try to trick users into calling to fake Microsoft technician.

Victims receive a screen where they are informed about some suspicious activities on their computers. Well, this message itself proves that the computer has been infected with malware. Scammers try to scare victims that some “attackers” might try to steal their personal information such as banking details, email credentials, or passwords.

To protect their privacy and computer, people are asked to call 1-800-603-5246 or a similar “toll-free” number. We want to discourage you from doing that[3]. This call might be charged a lot, and you might be unpleasantly surprised when you receive the next phone bill.

However, it’s not the biggest problem. People hiding behind “Microsoft has detected suspicious activity” virus might try to convince you to reveal personal details or trick to purchase some bogus software that is supposed to clean and fix the computer. Not only this software might include malware[4], but also scammers might trick you installing some remote access tools.

“Microsoft has detected suspicious activity” scam delivers various messages and alerts with warnings on the screen. These pop-ups depend on the victim, but the initial note shows the following:

Microsoft has detected some suspicious activity on this computer. All access to this device has been revoked due to a network security breach. Attackers might attempt to steal personal information, banking details, emails, passwords and other files on this system. Please contact a Microsoft certified technician on 1-800-603-5246.

In this case, you will give full access to for cybercriminals. Hence, if you are one of those people who received this message, do not think about calling the provided number. Just start Microsoft has detected suspicious activity removal. Scan your computer with Reimage or other reputable malware removal tools, but before that have a look our prepared instructions at the end of the article.

The screen delivered by the TSS MoboPlay has a window where victims should type an activation key. People are supposed to get this key after calling the provided phone number. What happens if you try to enter a random activation key? The program delivers a message saying, “Your key seems to have been expired. Please call at 1-800-603-5246 to get a new one.” As you already know the consequences of this call might be serious; so, remove “Microsoft has detected suspicious activity” immediately!

“Microsoft has detected suspicious activity” virus
“Microsoft has detected suspicious activity” message states about detected hacking. However, these alerts are caused by a cyber intruder and the message is false.

Scammers rely on potentially unwanted programs

Cybercriminals use many distribution ways how to spread tech support scams. However, the primary distribution method is via free app management program or a potentially unwanted program of the adware type. Therefore, you should be careful with installing new software.

Always choose reliable and secure sources for software downloads or even updates, like official developers’ websites. Never install software from ads, file-sharing websites[5], promotional pop-ups, or unknown domains. However, choosing the right sources, it’s not enough because there can be hidden features still.

You should always read the Privacy Policy, EULA, and choose the safe installation mode. Always opt for Advanced/Custom installation because it allows seeing whether you install a single program or a software package.

The problem with software bundling is that it might include lots of PUPs or infected apps. If you choose Quick/Recommended setup, you won’t be able to stop the installation of unwanted additional applications. Meanwhile, Advanced/Custom configuration allows to monitor and adjust the installation process.

Remove “Microsoft has detected suspicious activity” virus

First of all, “Microsoft has detected suspicious activity” scam removal requires to follow the termination steps closely, so all the issues can be eliminated. The best tip we can give you is to rely on automatic tools and remove it that way because of all the programs and applications that such infection can add behind your back.

The elimination of potentially unwanted programs can be done manually, and you can remove “Microsoft has detected suspicious activity” scam from the machine by finding all associated files, related applications and deleting them one by one. This is a more difficult method.

It doesn’t matter which method of these two you have chosen, the second step is the same – you have to double-check if the system is clear. When you use anti-malware tools for the initial cleaning, this can be done using the same software. Only when you remove “Microsoft has detected suspicious activity” Tech support scam from your PC entirely the system can work as before.

You can remove virus damage automatically with a help of one of these programs: Reimage, SpyHunterCombo Cleaner, Malwarebytes Malwarebytes. We recommend these applications because they detect potentially unwanted programs and viruses with all their files and registry entries that are related to them.

Offer
do it now!
Download
Reimage (remover) Happiness
Guarantee
Download
Reimage (remover) Happiness
Guarantee
Compatible with Microsoft Windows Supported versions Compatible with OS X Supported versions
What to do if failed?
If you failed to remove virus damage using Reimage, submit a question to our support team and provide as much details as possible.
Reimage is recommended to remove virus damage. Free scanner allows you to check whether your PC is infected or not. If you need to remove malware, you have to purchase the licensed version of Reimage malware removal tool.
Alternative Software
Different security software includes different virus database. If you didn’t succeed in finding malware with Reimage, try running alternative scan with SpyHunter.
Alternative Software
Different security software includes different virus database. If you didn’t succeed in finding malware with Reimage, try running alternative scan with Combo Cleaner.

To remove “Microsoft has detected suspicious activity” Tech support scam, follow these steps:

Delete “Microsoft has detected suspicious activity” Tech support scam from Windows systems

“Microsoft has detected suspicious activity” scam removal requires close attention

  1. Click Start Control Panel Programs and Features (if you are Windows XP user, click on Add/Remove Programs). Click 'Start -> Control Panel -> Programs and Features' (if you are 'Windows XP' user, click on 'Add/Remove Programs').
  2. If you are Windows 10 / Windows 8 user, then right-click in the lower left corner of the screen. Once Quick Access Menu shows up, select Control Panel and Uninstall a Program. If you are 'Windows 10 / Windows 8' user, then right-click in the lower left corner of the screen. Once 'Quick Access Menu' shows up, select 'Control Panel' and 'Uninstall a Program'.
  3. Uninstall “Microsoft has detected suspicious activity” Tech support scam and related programs
    Here, look for “Microsoft has detected suspicious activity” Tech support scam or any other recently installed suspicious programs.
  4. Uninstall them and click OK to save these changes. Right click on each of suspicious entries and select 'Uninstall'

About the author

Gabriel E. Hall
Gabriel E. Hall - Passionate web researcher

If this free removal guide helped you and you are satisfied with our service, please consider making a donation to keep this service alive. Even a smallest amount will be appreciated.

Contact Gabriel E. Hall
About the company Esolutions

References


  1. laura says:
    January 13th, 2017 at 9:09 am

    Oh, its a nasty computer infection…

  2. not a victim says:
    January 13th, 2017 at 9:10 am

    I wonder how many people are tricked by this scam. Its horrible.

Your opinion regarding “Microsoft has detected suspicious activity” Tech support scam