“YOUR APPLE DEVICE HAS A VIRUS” virus (Removal Instructions) - Free Instructions

by Linas Kiguolis - - | Type: Malware

“YOUR APPLE DEVICE HAS A VIRUS” virus Removal Guide

What is “YOUR APPLE DEVICE HAS A VIRUS” virus?

“Your Apple Device Has a Virus” scam targets the “invincible” Mac OS

“Your Apple Device Has a Virus" scam samples

“Your Apple Device Has a Virus” virus spreads as a tech support scam targeting Mac and iOS community. This browser-based scam frightens users with Pegasus spyware. In order to save the data from theft, the message urges users to call +1-8333-370-777. Here is an extract from the message:

*YOUR APPLE DEVICE HAS A VIRUS*

Apple iOS Alert!!

PEGASUS (SPYWARE) ACTIVATED

System might be infected due to unexpected error!
Please Contact Apple Care +1-8333-370-777 Immediately!
for assistance regarding how to remove it.

According to the message, the following data is under risk:

  • credit card details and banking credentials
  • email account passwords
  • Facebook, Skype, AIM, ICQ and other social network accounts
  • private photos

“Your Apple Device Has a Virus” tech support scam: fake or genuine?

The scam developers indeed did a good job. They tied in legitimate information which might persuade Apple and iPhone users that indeed their computers might have been corrupted. They mention two things: Pegasus spyware and Apple Care, which is the genuine Apple support center.

But first things first, let us assure that this notification is fake. Whether you see such notification on Windows or Mac, note that such alerts do not pop up in random pages. Secondly, genuine notifications do not include a phone number.

Thus, what you have to do is exit the page or force shut down via Activity Monitor. However, it is recommended to remove “Your Apple Device Has a Virus” scam elements by clearing the browsing data or scanning the system with the Mac version of Malwarebytes. The picture displaying “Your Apple Device Has a Virus" alertThe image displaying “Your Apple Device Has a Virus" pop-up alert. It attempts to persuade users that their devices have been compromised with Pegasus spyware.

What is this Pegasus spyware?

If you have been familiar with Pegasus spyware, you might indeed get paranoid about the security of your Apple device.
As a matter of fact, Pegasus malware, which feeds on three zero-day vulnerabilities, was devised specifically for MacOS and iOS, though it has its Android counterpart as well[1].

In 2016, United Arab Emirates citizen Ahmed Mansoor discovered an exquisite malware campaign targeting iOS. He got a couple of SMS messages with shady links.[2] They were the harbingers of the main malware payload.

Clicking on the link would download Pegasus malware which would, later on, download remaining necessary files which would allow the malware to fully monitor’s users private messages. Keylogging features enable the malware to read encrypted content as well.

Another problem is that Pegasus enables to hide its tracks professionally. It is able to self-destruct if it is deprived of connection to Command and Control server within 60 days. Interestingly, the malware only targets specific users as it was designed by an Israeli company to belong to NSO group.

If you are wondering whether you have been infected with Pegasus via “Your Apple Device Has a Virus” scam, let us assure that there is no relation between these two. As discussed below, only selected users have been affected by the original malware.

Tech support scams wander on the cyber space

“Your Apple Device Has a Virus” hijack is carried with the assistance of web scripts. In other words, if you have been browsing movie streaming sites or torrent sharing domains, you were likely to encounter “Your Apple Device Has a Virus” alerts. On the other hand, legitimate apps might also divert you to such fake sites.[3]

You only need to cancel the window to exit the web page. If you cannot do so, close the browser via the Activity Monitor. Let us move on “Your Apple Device Has a Virus” scam removal methods.

Delete “Your Apple Device Has a Virus” tech support scam scripts

If you noticed these alerts on iPhone, all you can do is exit the page, as IOS does not support security applications.
Though Apple products are hostile towards security utilities, in fact, you can install certain malware elimination tools on MacOS. Above-mentioned sample functions on the Mac as well. Thus, it will help you remove “Your Apple Device Has a Virus” web scripts.

Alternatively, below you will find guidelines which instruct how to eliminate the scripts on major browsers. If you use other than Safari browser, you will find them useful. Resetting the browser contributes to “Your Apple Device Has a Virus” removal as well.

On the final note, a widely-spread opinion that MacOS is fully immune to malware might turn out to be perilous as felons find ways to penetrate even most unbreakable systems. Other than English, Russian, French, Turkish[3] users should be vigilant of the scam.

You may remove virus damage with a help of ReimageIntego. SpyHunter 5Combo Cleaner and Malwarebytes are recommended to detect potentially unwanted programs and viruses with all their files and registry entries that are related to them.

Offer
do it now!
Download
Reimage Happiness
Guarantee Download
Intego Happiness
Guarantee
Compatible with Microsoft Windows Compatible with macOS
What to do if failed?
If you failed to fix virus damage using Reimage Intego, submit a question to our support team and provide as much details as possible.
Reimage Intego has a free limited scanner. Reimage Intego offers more through scan when you purchase its full version. When free scanner detects issues, you can fix them using free manual repairs or you can decide to purchase the full version in order to fix them automatically.
Press mentions on Reimage
press
Reimage review | Terms of Use | Privacy policy | Refund Policy | Press | Uninstall guide
Alternative Software
Different software has a different purpose. If you didn’t succeed in fixing corrupted files with Reimage, try running SpyHunter 5.
Download SpyHunter 5 Review »
Privacy policy | Terms of Use | Product Refund Policy | Uninstall Instructions
Malwarebytes
Download | Review | Privacy policy | Terms of Use | Product Refund Policy | Uninstall Instructions
Alternative Software
Different software has a different purpose. If you didn’t succeed in fixing corrupted files with Intego, try running Combo Cleaner.
Download Combo Cleaner Review »
Privacy policy | Terms of Use | Product Refund Policy | Uninstall Instructions

Getting rid of “YOUR APPLE DEVICE HAS A VIRUS” virus. Follow these steps

Delete from macOS

Do not get alarmed by “Your Apple Device Has a Virus” alerts. Close the web page. If you have security tool, scan the browser.

Remove items from Applications folder:

  1. From the menu bar, select Go > Applications.
  2. In the Applications folder, look for all related entries.
  3. Click on the app and drag it to Trash (or right-click and pick Move to Trash) Uninstall from Mac 1

To fully remove an unwanted app, you need to access Application Support, LaunchAgents, and LaunchDaemons folders and delete relevant files:

  1. Select Go > Go to Folder.
  2. Enter /Library/Application Support and click Go or press Enter.
  3. In the Application Support folder, look for any dubious entries and then delete them.
  4. Now enter /Library/LaunchAgents and /Library/LaunchDaemons folders the same way and terminate all the related .plist files. Uninstall from Mac 2

Remove from Microsoft Edge

Delete unwanted extensions from MS Edge:

  1. Select Menu (three horizontal dots at the top-right of the browser window) and pick Extensions.
  2. From the list, pick the extension and click on the Gear icon.
  3. Click on Uninstall at the bottom. Remove extensions from Edge

Clear cookies and other browser data:

  1. Click on the Menu (three horizontal dots at the top-right of the browser window) and select Privacy & security.
  2. Under Clear browsing data, pick Choose what to clear.
  3. Select everything (apart from passwords, although you might want to include Media licenses as well, if applicable) and click on Clear. Clear Edge browsing data

Restore new tab and homepage settings:

  1. Click the menu icon and choose Settings.
  2. Then find On startup section.
  3. Click Disable if you found any suspicious domain.

Reset MS Edge if the above steps did not work:

  1. Press on Ctrl + Shift + Esc to open Task Manager.
  2. Click on More details arrow at the bottom of the window.
  3. Select Details tab.
  4. Now scroll down and locate every entry with Microsoft Edge name in it. Right-click on each of them and select End Task to stop MS Edge from running. Reset MS Edge

If this solution failed to help you, you need to use an advanced Edge reset method. Note that you need to backup your data before proceeding.

  1. Find the following folder on your computer: C:\\Users\\%username%\\AppData\\Local\\Packages\\Microsoft.MicrosoftEdge_8wekyb3d8bbwe.
  2. Press Ctrl + A on your keyboard to select all folders.
  3. Right-click on them and pick Delete Advanced MS Edge reset 1
  4. Now right-click on the Start button and pick Windows PowerShell (Admin).
  5. When the new window opens, copy and paste the following command, and then press Enter:

    Get-AppXPackage -AllUsers -Name Microsoft.MicrosoftEdge | Foreach {Add-AppxPackage -DisableDevelopmentMode -Register “$($_.InstallLocation)\\AppXManifest.xml” -Verbose Advanced MS Edge reset 2

Instructions for Chromium-based Edge

Delete extensions from MS Edge (Chromium):

  1. Open Edge and click select Settings > Extensions.
  2. Delete unwanted extensions by clicking Remove. Remove extensions from Chromium Edge

Clear cache and site data:

  1. Click on Menu and go to Settings.
  2. Select Privacy and services.
  3. Under Clear browsing data, pick Choose what to clear.
  4. Under Time range, pick All time.
  5. Select Clear now. Clear browser data from Chroum Edge

Reset Chromium-based MS Edge:

  1. Click on Menu and select Settings.
  2. On the left side, pick Reset settings.
  3. Select Restore settings to their default values.
  4. Confirm with Reset. Reset Chromium Edge

Remove from Mozilla Firefox (FF)

Remove dangerous extensions:

  1. Open Mozilla Firefox browser and click on the Menu (three horizontal lines at the top-right of the window).
  2. Select Add-ons.
  3. In here, select unwanted plugin and click Remove. Remove extensions from Firefox

Reset the homepage:

  1. Click three horizontal lines at the top right corner to open the menu.
  2. Choose Options.
  3. Under Home options, enter your preferred site that will open every time you newly open the Mozilla Firefox.

Clear cookies and site data:

  1. Click Menu and pick Options.
  2. Go to Privacy & Security section.
  3. Scroll down to locate Cookies and Site Data.
  4. Click on Clear Data…
  5. Select Cookies and Site Data, as well as Cached Web Content and press Clear. Clear cookies and site data from Firefox

Reset Mozilla Firefox

If clearing the browser as explained above did not help, reset Mozilla Firefox:

  1. Open Mozilla Firefox browser and click the Menu.
  2. Go to Help and then choose Troubleshooting Information. Reset Firefox 1
  3. Under Give Firefox a tune up section, click on Refresh Firefox…
  4. Once the pop-up shows up, confirm the action by pressing on Refresh Firefox. Reset Firefox 2

Remove from Google Chrome

Delete malicious extensions from Google Chrome:

  1. Open Google Chrome, click on the Menu (three vertical dots at the top-right corner) and select More tools > Extensions.
  2. In the newly opened window, you will see all the installed extensions. Uninstall all the suspicious plugins that might be related to the unwanted program by clicking Remove. Remove extensions from Chrome

Clear cache and web data from Chrome:

  1. Click on Menu and pick Settings.
  2. Under Privacy and security, select Clear browsing data.
  3. Select Browsing history, Cookies and other site data, as well as Cached images and files.
  4. Click Clear data. Clear cache and web data from Chrome

Change your homepage:

  1. Click menu and choose Settings.
  2. Look for a suspicious site in the On startup section.
  3. Click on Open a specific or set of pages and click on three dots to find the Remove option.

Reset Google Chrome:

If the previous methods did not help you, reset Google Chrome to eliminate all the unwanted components:

  1. Click on Menu and select Settings.
  2. In the Settings, scroll down and click Advanced.
  3. Scroll down and locate Reset and clean up section.
  4. Now click Restore settings to their original defaults.
  5. Confirm with Reset settings. Reset Chrome 2

Delete from Safari

Remove unwanted extensions from Safari:

  1. Click Safari > Preferences…
  2. In the new window, pick Extensions.
  3. Select the unwanted extension and select Uninstall. Remove extensions from Safari

Clear cookies and other website data from Safari:

  1. Click Safari > Clear History…
  2. From the drop-down menu under Clear, pick all history.
  3. Confirm with Clear History. Clear cookies and website data from Safari

Reset Safari if the above-mentioned steps did not help you:

  1. Click Safari > Preferences…
  2. Go to Advanced tab.
  3. Tick the Show Develop menu in menu bar.
  4. From the menu bar, click Develop, and then select Empty Caches. Reset Safari

After uninstalling this potentially unwanted program (PUP) and fixing each of your web browsers, we recommend you to scan your PC system with a reputable anti-spyware. This will help you to get rid of “YOUR APPLE DEVICE HAS A VIRUS” registry traces and will also identify related parasites or possible malware infections on your computer. For that you can use our top-rated malware remover: ReimageIntego, SpyHunter 5Combo Cleaner or Malwarebytes.

How to prevent from getting malware

Stream videos without limitations, no matter where you are

There are multiple parties that could find out almost anything about you by checking your online activity. While this is highly unlikely, advertisers and tech companies are constantly tracking you online. The first step to privacy should be a secure browser that focuses on tracker reduction to a minimum.

Even if you employ a secure browser, you will not be able to access websites that are restricted due to local government laws or other reasons. In other words, you may not be able to stream Disney+ or US-based Netflix in some countries. To bypass these restrictions, you can employ a powerful Private Internet Access VPN, which provides dedicated servers for torrenting and streaming, not slowing you down in the process.

Data backups are important – recover your lost files

Ransomware is one of the biggest threats to personal data. Once it is executed on a machine, it launches a sophisticated encryption algorithm that locks all your files, although it does not destroy them. The most common misconception is that anti-malware software can return files to their previous states. This is not true, however, and data remains locked after the malicious payload is deleted.

While regular data backups are the only secure method to recover your files after a ransomware attack, tools such as Data Recovery Pro can also be effective and restore at least some of your lost data.

About the author
Linas Kiguolis
Linas Kiguolis - Expert in social media

If this free guide helped you and you are satisfied with our service, please consider making a donation to keep this service alive. Even a smallest amount will be appreciated.

Contact Linas Kiguolis
About the company Esolutions

References
Removal guides in other languages