You can make a difference in the Apple Support Community!
When you sign up with your Apple Account, you can provide valuable feedback to other community members by upvoting helpful replies and User Tips.
When you sign up with your Apple Account, you can provide valuable feedback to other community members by upvoting helpful replies and User Tips.
I have a rogue process running from my IP address - my MacBook - that is making bogus login attempts to a remote server and causing the failed attempts to lock up the account.
I have the bogus credentials, but cannot find out where they are stored or being used, and the various logs I've looked at have no records of these attempts. However, logs from the mail server show tons.
Ideas?
MacBook Pro 15″, macOS 10.15
There is a free Malwarebytes which may take care of it...
https://www.malwarebytes.com/mac/
Safe Boot, (holding Shift key down at startup), does the problem occur in Safe Mode? Could take 10 minutes.
Safe mode attempts to repair Disks & clears lots of caches & loads safe Drivers, & prevents loading of 3rd party extensions, so if Safe Mode works try again in regular boot.
EtreCheck is a FREE simple little diagnostic tool to display the important details of your system configuration and allow you to copy that information to the Clipboard. It is meant to be used with Apple Support Communities to help people help you with your Mac. It will not display any personal info.
Pastebin is a good place to paste the whole report if you capture the URL while there…
Whew, they've changed pastebin & made it harder, but after pasting in, click Create new paste button, then Embed button, then copy the URL...
<script src="https://pastebin.com/embed_js/KuvnghqA"></script>
The important part of the above is between the quote marks...
https://pastebin.com/embed_js/KuvnghqA
Workable but harder for me to work with...the Note tool on the bottom of this editor's toolbar, as shown in the image, to copy and paste the output from EtreCheck. In a Reply before you click post, look for this to add longer texts...
There is a free Malwarebytes which may take care of it...
https://www.malwarebytes.com/mac/
Safe Boot, (holding Shift key down at startup), does the problem occur in Safe Mode? Could take 10 minutes.
Safe mode attempts to repair Disks & clears lots of caches & loads safe Drivers, & prevents loading of 3rd party extensions, so if Safe Mode works try again in regular boot.
EtreCheck is a FREE simple little diagnostic tool to display the important details of your system configuration and allow you to copy that information to the Clipboard. It is meant to be used with Apple Support Communities to help people help you with your Mac. It will not display any personal info.
Pastebin is a good place to paste the whole report if you capture the URL while there…
Whew, they've changed pastebin & made it harder, but after pasting in, click Create new paste button, then Embed button, then copy the URL...
<script src="https://pastebin.com/embed_js/KuvnghqA"></script>
The important part of the above is between the quote marks...
https://pastebin.com/embed_js/KuvnghqA
Workable but harder for me to work with...the Note tool on the bottom of this editor's toolbar, as shown in the image, to copy and paste the output from EtreCheck. In a Reply before you click post, look for this to add longer texts...
Okay, folks, the problem is solved. Thanks to everyone who provided all that useful information on how to track down stuff like this. After not finding the problem on my MacBook, I called Apple, and Vicky, who is quite knowledgable on all things Apple directed me to that rogue process. And yes, I had not realized that my devices are all on the same network and therefore appear to the outside as the same IP address, and it was my iPhone pinging the mail server with the bogus credentials. Boy do I feel stupid.
Thanks for the reply.
rogue process logging into mail server
