Severity scale:  

Remove PEGASUS SPYWARE ACTIVATED scam (Tech Support Scam) - Virus Removal Guide

removal by Jake Doevan - - | Type: Malware

“PEGASUS SPYWARE ACTIVATED” scam baffles Mac OS X users


“PEGASUS SPYWARE ACTIVATED” is nothing but a scam which targets explicitly Mac OS users. If you keep getting these persistent pop ups, it is highly likely that you are affected by a PUP (potentially unwanted program).

After seeing “PEGASUS SPYWARE ACTIVATED” pop-up for the first time, users might think that they are at the high risk of exposing their personal data and, if no action is taken, all the information will be stolen.

“PEGASUS SPYWARE ACTIVATED” scam advises calling a specific number (which can vary since there are multiple versions of the malware like Error # 268d3 virus) to contact technical support, which will then charge a certain amount of money either for a lengthy phone call itself, or various unneeded services offered by scammers.

The following message is displayed in the popup:


Apple iOS Alert!!

Error # 268d3


The system might be infected due to unexpected error!

Please call Apple Care immediately at: +1-8333-370-777

Do not ignore this critical alert.

If you close this page, your Apple Device access will be disabled to prevent further damage to our network.

Your Apple Device has alerted us that it has been infected with a virus and spyware. The following information is being stolen…

> Facebook Login

> Credit Card Details

> Email Account Login

> Photos stored on this Device

You must contact us immediately so that our engineers can walk you through the removal process over the phone. Please call us within the next 5 minutes to prevent your Apple Device from being disabled.

"PEGASUS SPYWARE ACTIVATED" scam illustration"PEGASUS SPYWARE ACTIVATED" scam tries to trick users into believing that their computers are infected with spyware and urges to call +1-8333-370-777.

Adware[1] like “PEGASUS SPYWARE ACTIVATED” virus are technically more complicated than regular PUPs as they are designed to surpass firewall which is used to prevent such fake pop-ups from occurring. The complicated code helps scammers to deceive and scare regular users while trying to make some money.

Please be aware that “PEGASUS SPYWARE ACTIVATED” popup has nothing to do with Apple and people who pick up the phone call are not Apple employees. Additionally, fake technicians can ask for a remote access to your Mac. After connecting to your system, they pretend to find problems and malware that does not exist, and then ask for specific payments in exchange for assisting users with these “issues.”[2]

Quite often, scammers will attempt to install malware or change system settings and steal actual login information, such as your social media accounts, credit card accounts, etc. To protect yourself, make sure you remove “PEGASUS SPYWARE ACTIVATED” scam from your computer. The easiest way to do that is to run a full system scan with Reimage Reimage Cleaner Intego.

“PEGASUS SPYWARE ACTIVATED” virus has many similarities with various similar scam schemes, which all claim that user's system is damaged or infected with malware and that the only way of fixing the issue is by calling certain phone lines or by paying “a fine.”

Please, do NOT fall for them because PUPs like these are designed to scam the unaware persons and steal their money. You are highly recommended to take care of “PEGASUS SPYWARE ACTIVATED” removal by eliminating all adware hiding on your PC system.

Tech support scams can get into your Mac with the help of bundling, links in spam e-mails, intrusive ads and extracted suspicious files

To protect yourself from scams like this one, keep in mind that Bundling is used to get PUPs into your system. Usually, users tend to skip many steps and use Quick/Recommended settings when installing new software downloaded from the internet. It is highly advised to read all the installation instructions properly and opt out of any additions to the installation while in Advanced mode.

In addition, PUPs can be obtained while clicking on links in spam e-mails or clicking on intrusive ads, so make sure you are careful with them. It is also not recommended downloading and extracting files of an unknown origin. All these actions can lead to various infections of your machine, so it is essential to be wary at all times.

Uninstalling “PEGASUS SPYWARE ACTIVATED” pop up from the system

Acccording to[3] experts, in case you have already engaged with scammers, allowed them to access your Mac remotely and paid some money, please do the following:

  1. Do a full scan of your system using security application to remove “PEGASUS SPYWARE ACTIVATED” fake alert (even if Apple is not security utilities friendly, you can still install particular anti-malware tools on MacOS). You need to delete any suspicious software found on your system;
  2. Call your bank and revert all the payments that have been made;
  3. Change all your passwords;
  4. Update your Mac with the recent updates as soon as they are available;
  5. Reset browser settings to complete PEGASUS SPYWARE ACTIVATED removal from your computer.

A detailed guide is provided below:

You may remove virus damage with a help of Reimage Reimage Cleaner Intego. SpyHunter 5Combo Cleaner and Malwarebytes are recommended to detect potentially unwanted programs and viruses with all their files and registry entries that are related to them.

do it now!
Reimage Happiness
Intego Happiness
Compatible with Microsoft Windows Supported versions Compatible with OS X Supported versions
What to do if failed?
If you failed to remove virus damage using Reimage Intego, submit a question to our support team and provide as much details as possible.
Reimage Intego has a free limited scanner. Reimage Intego offers more through scan when you purchase its full version. When free scanner detects issues, you can fix them using free manual repairs or you can decide to purchase the full version in order to fix them automatically.
Alternative Software
Different software has a different purpose. If you didn’t succeed in fixing corrupted files with Reimage, try running SpyHunter 5.
Alternative Software
Different software has a different purpose. If you didn’t succeed in fixing corrupted files with Intego, try running Combo Cleaner.

To remove PEGASUS SPYWARE ACTIVATED scam, follow these steps:

Delete PEGASUS SPYWARE ACTIVATED scam from Windows systems

To remove PEGASUS SPYWARE ACTIVATED scam from Windows 10/8  machines, please follow these steps:

  1. Enter Control Panel into Windows search box and hit Enter or click on the search result.
  2. Under Programs, select Uninstall a program.Uninstall from Windows 1
  3. From the list, find entries related to PEGASUS SPYWARE ACTIVATED scam (or any other recently installed suspicious program).
  4. Right-click on the application and select Uninstall.
  5. If User Account Control shows up, click Yes.
  6. Wait till uninstallation process is complete and click OK.Uninstall from Windows 2

If you are Windows 7/XP user, proceed with the following instructions:

  1. Click on Windows Start > Control Panel located on the right pane (if you are Windows XP user, click on Add/Remove Programs).
  2. In Control Panel, select Programs > Uninstall a program.Uninstall from Windows 7/XP
  3. Pick the unwanted application by clicking on it once.
  4. At the top, click Uninstall/Change.
  5. In the confirmation prompt, pick Yes.
  6. Click OK once the removal process is finished.

Erase PEGASUS SPYWARE ACTIVATED scam from Mac OS X system

If you have encountered a scam message, immediately remove the adware from Mac:

If your macOS is displaying some infection symptoms, proceed with the following guide:

Remove PEGASUS SPYWARE ACTIVATED scam from Applications folder:

  1. From the menu bar, select Go > Applications.
  2. In the Applications folder, look for PEGASUS SPYWARE ACTIVATED scam-related entries.
  3. Click on the app and drag it to Trash (or right-click and pick Move to Trash)Uninstall from Mac 1

To fully remove PEGASUS SPYWARE ACTIVATED scam, you need to access Application Support, LaunchAgents, and LaunchDaemons folders and delete relevant files:

  1. Select Go > Go to Folder.
  2. Enter /Library/Application Support and click Go or press Enter.
  3. In the Application Support folder, look for any dubious entries related to PEGASUS SPYWARE ACTIVATED scam and then delete them.
  4. Now enter /Library/LaunchAgents and /Library/LaunchDaemons folders the same way and terminate all the PEGASUS SPYWARE ACTIVATED scam-related entries.Uninstall from Mac 2

Uninstall PEGASUS SPYWARE ACTIVATED scam from Internet Explorer (IE)

Remove dangerous add-ons:

  1. Open Internet Explorer, click on the Gear icon (IE menu) on the top-right corner of the browser
  2. Pick Manage Add-ons.
  3. You will see a Manage Add-ons window. Here, look for PEGASUS SPYWARE ACTIVATED scam and other suspicious plugins. Click on these entries and select Disable.Remove add-ons from Internet Explorer

Change your homepage if it was altered:

  1. Open IE and click on the Gear icon.
  2. Select Internet Options.
  3. In the General tab, delete the Home page address and replace it by your preferred one (for example,
  4. Click Apply and then select OK.Reset IE homepage

Delete temporary files:

  1. Press on the Gear icon and select Internet Options.
  2. Under Browsing history, click Delete…
  3. Select relevant fields and press Delete.Clear temporary files from Internet Explorer

Reset Internet Explorer:

  1. Click on Gear icon > Internet options and select Advanced tab.
  2. Select Reset.
  3. In the new window, check Delete personal settings and select Reset again to complete PEGASUS SPYWARE ACTIVATED scam removal.Reset Internet Explorer

Get rid of PEGASUS SPYWARE ACTIVATED scam from Microsoft Edge

Delete unwanted extensions from MS Edge:

  1. Select Menu (three horizontal dots at the top-right of the browser window) and pick Extensions.
  2. From the list, pick the PEGASUS SPYWARE ACTIVATED scam-related extension and click on the Gear icon.
  3. Click on Uninstall at the bottom.Remove extensions from Edge

Clear cookies and other browser data:

  1. Click on the Menu (three horizontal dots at the top-right of the browser window) and select Privacy & security.
  2. Under Clear browsing data, pick Choose what to clear.
  3. Select everything (apart from passwords, although you might want to include Media licenses as well, if applicable) and click on Clear.Clear Edge browsing data

Reset MS Edge if that above steps did not work:

  1. Press on Ctrl + Shift + Esc to open Task Manager.
  2. Click on More details arrow at the bottom of the window.
  3. Select Details tab.
  4. Now scroll down and locate every entry with Microsoft Edge name in it. Right-click on each of them and select End Task to stop MS Edge from running.Reset MS Edge

If this solution failed to help you, you need to use an advanced Edge reset method. Note that you need to backup your data before proceeding.

  1. Find the following folder on your computer: C:\\Users\\%username%\\AppData\\Local\\Packages\\Microsoft.MicrosoftEdge_8wekyb3d8bbwe.
  2. Press Ctrl + A on your keyboard to select all folders.
  3. Right-click on them and pick DeleteAdvanced MS Edge reset 1
  4. Now right-click on the Start button and pick Windows PowerShell (Admin).
  5. When the new window opens, copy and paste the following command, and then press Enter:

    Get-AppXPackage -AllUsers -Name Microsoft.MicrosoftEdge | Foreach {Add-AppxPackage -DisableDevelopmentMode -Register “$($_.InstallLocation)\\AppXManifest.xml” -VerboseAdvanced MS Edge reset 2

Instructions for Chromium-based Edge

Delete extensions from MS Edge (Chromium):

  1. Open Edge and click select Settings > Extensions.
  2. Delete unwanted extensions by clicking Remove.Remove extensions from Chromium Edge

Clear cache and site data:

  1. Click on Menu and go to Settings.
  2. Select Privacy and services.
  3. Under Clear browsing data, pick Choose what to clear.
  4. Under Time range, pick All time.
  5. Select Clear now.Clear browser data from Chroum Edge

Reset Chromium-based MS Edge:

  1. Click on Menu and select Settings.
  2. On the left side, pick Reset settings.
  3. Select Restore settings to their default values.
  4. Confirm with Reset.Reset Chromium Edge

Remove PEGASUS SPYWARE ACTIVATED scam from Mozilla Firefox (FF)

Remove dangerous extensions:

  1. Open Mozilla Firefox browser and click on the Menu (three horizontal lines at the top-right of the window).
  2. Select Add-ons.
  3. In here, select plugins that are related to PEGASUS SPYWARE ACTIVATED scam and click Remove.Remove extensions from Firefox

Clear cookies and site data:

  1. Click Menu and pick Options.
  2. Go to Privacy & Security section.
  3. Scroll down to locate Cookies and Site Data.
  4. Click on Clear Data…
  5. Select Cookies and Site Data, as well as Cached Web Content and press Clear.Clear cookies and site data from Firefox

In case PEGASUS SPYWARE ACTIVATED scam did not get removed after following the instructions above, reset Mozilla Firefox:

  1. Open Mozilla Firefox browser and click the Menu.
  2. Go to Help and then choose Troubleshooting Information.Reset Firefox 1
  3. Under Give Firefox a tune up section, click on Refresh Firefox…
  4. Once the pop-up shows up, confirm the action by pressing on Refresh Firefox – this should complete PEGASUS SPYWARE ACTIVATED scam removal.Reset Firefox 2

Eliminate PEGASUS SPYWARE ACTIVATED scam from Google Chrome

Uninstall all suspicious entries and reset Chrome to get rid of the annoying pop-up.

Delete malicious extensions from Google Chrome:

  1. Open Google Chrome, click on the Menu (three vertical dots at the top-right corner) and select More tools > Extensions.
  2. In the newly opened window, you will see all the installed extensions. Uninstall all the suspicious plugins that might be related to PEGASUS SPYWARE ACTIVATED scam by clicking Remove.Remove extensions from Chrome

Clear cache and web data from Chrome:

  1. Click on Menu and pick Settings.
  2. Under Privacy and security, select Clear browsing data.
  3. Select Browsing history, Cookies and other site data, as well as Cached images and files.
  4. Click Clear data.Clear cache and web data from Chrome

If the above-methods did not help you, reset Google Chrome to eliminate all the PEGASUS SPYWARE ACTIVATED scam-components:

  1. Click on Menu and select Settings.
  2. In the Settings, scroll down and click Advanced.
  3. Scroll down and locate Reset and clean up section.
  4. Now click Restore settings to their original defaults.
  5. Confirm with Reset settings to complete PEGASUS SPYWARE ACTIVATED scam removal.Reset Chrome 2


Fix Safari by deleting unknown extensions which might be linked to the adware. Afterward, do not forget to reset the browser.

Remove unwanted extensions from Safari:

  1. Click Safari > Preferences…
  2. In the new window, pick Extensions.
  3. Select the unwanted extension related to PEGASUS SPYWARE ACTIVATED scam and select Uninstall.Remove extensions from Safari

Clear cookies and other website data from Safari:

  1. Click Safari > Clear History…
  2. From the drop-down menu under Clear, pick all history.
  3. Confirm with Clear History.Clear cookies and website data from Safari

Reset Safari if the above-mentioned steps did not help you:

  1. Click Safari > Preferences…
  2. Go to Advanced tab.
  3. Tick the Show Develop menu in menu bar.
  4. From the menu bar, click Develop, and then select Empty Caches.Reset Safari

Access your website securely from any location

When you work on the domain, site, blog, or different project that requires constant management, content creation, or coding, you may need to connect to the server and content management service more often. It is a hassle when your website is protected from suspicious connections and unauthorized IP addresses.

The best solution for creating a tighter network could be a dedicated/fixed IP address. If you make your IP address static and set to your device, you can connect to the CMS from any location and do not create any additional issues for server or network manager that need to monitor connections and activities. This is how you bypass some of the authentications factors and can remotely use your banking accounts without triggering suspicious with each login. 

VPN software providers like Private Internet Access can help you with such settings and offer the option to control the online reputation and manage projects easily from any part of the world. It is better to clock the access to your website from different IP addresses. So you can keep the project safe and secure when you have the dedicated IP address VPN and protected access to the content management system.

Backup files for the later use, in case of the malware attack

Computer users can suffer from data losses due to cyber infections or their own faulty doings. Ransomware can encrypt and hold files hostage, while unforeseen power cuts might cause a loss of important documents. If you have proper up-to-date backups, you can easily recover after such an incident and get back to work. It is also equally important to update backups on a regular basis so that the newest information remains intact – you can set this process to be performed automatically.

When you have the previous version of every important document or project you can avoid frustration and breakdowns. It comes in handy when malware strikes out of nowhere. Use Data Recovery Pro for the data restoration process.

About the author
Jake Doevan
Jake Doevan - Computer technology expert

If this free removal guide helped you and you are satisfied with our service, please consider making a donation to keep this service alive. Even a smallest amount will be appreciated.

Contact Jake Doevan
About the company Esolutions


Your opinion regarding PEGASUS SPYWARE ACTIVATED scam