Experts say it been tampered with...

My wifes i mac pro (2009)-black keys OSX-Lion has had many strange thing happening to her settings display mail system and network connections to Verizon. She has also had duplicate issues on her iphone.
This is the 3rd "apple experts analysis:
Maria and I spent time restoring her music and photos, working on organizing her photos by creating a good workflow, removing confusing duplicates, cleaning up unnecessary files an folders on her computer, recovering emails, talking about how things are synced and some more general tutoring.
We talked about security, talked more about her situation which she explained in further detail, explored her computer and checked many settings and spots for foul play or erroneous settings.
The end result and diagnosis: 100%, her computer is being tampered with by someone other than herself. There is no way for Maria to secure her computer and she should stop trying to spend money and time to do so. It's become clear that her computer is being tampered with either remotely or in person or both. It's become clear that the attacker is someone who knows Maria as they are not after financial gain nor after stealing anything off the computer.  I believe they are only doing this to toy with her.  Because this is the case, and because the attacker has personal knowledge or access to her computer, there is truly no way to secure her computer.  It's unfortunate.
Please note, none of this is certain, it is only my professional opinion. At this point, backing up consistently is her only course of action until she discovers the person that is tampering with her computer and solves the problem by solving the issue with that person.
Regarding your question about your home router, I think it is a non issue. Your home router is not the problem. It is certainly an access point for someone to take control of the computer, but so is being on the internet anywhere. For this reason, the router is inconsequential.
My response:
BUT, when a conclussion to an issue is the following statements "The end result and diagnosis: 100%, her computer is being tampered with by someone other than herself." and "until she discovers the person that is tampering with her computer and solves the problem by solving the issue with that person.
1. It not me
2. Its not my son
3. Its not my daughter
4. IT MAY BE REMOTELY. "not really sure"
I've been in business for over 30 years and when I give a person a document that they are paying good money I have my t's crossed and i's dotted.
This isn't!
If in fact you are 100 % sure it is tampering then HOW, what device, what program, what techniques is this "hacker" accessing her computer even after she has change all pass words and security setting?
And how good of a hacker does this person have to be to do all that is done on the computer?
Any help would be helpful. Spent way to much for thes answers and no solutions

The "analysis" contains nothing to suggest that the computer has been tampered with; that's merely a conclusion, without any supporting evidence. It also contains the nonsensical statement, "There is no way for Maria to secure her computer and she should stop trying to spend money and time to do so," which could not have been written by anyone who knows anything about IT security. That strongly suggests to me that the "analysis" is completely worthless.
To secure the computer, take the following steps:
1. Back up all data using Time Machine.
2. Erase the boot volume and reinstall Lion.
3. Go through the initial setup process, importing only user data and settings, not applications or other files.
4. Install only trustworthy third-party software from original media, by download from the developer's own file server, or by purchase from the Mac App Store.
5. Activate FileVault and choose a secure login password. Never write down this password, and never disclose it to anyone, including Apple. Keep in mind that if you forget the password, your data will be lost beyond any hope of recovery (unless you have unencrypted backups, which somewhat defeats the purpose.)
6. Do not activate Remote Login or Screen Sharing.
7. Do not connect unknown peripherals, such as USB devices, that might contain a hardware keylogger.
You'll then have something close to military- or diplomatic-grade security for your data.

Similar Messages

  • I downloaded lion but it wont install, it says that the software has been tampered with. But i downloaded from the app store.

    I downloaded lion but it wont install, it says that the software has been tampered with. But i downloaded from the app store.

    I have been through the same process three times now. The downloaded file is 4.07GB. I deleted it and re-downloaded and I get the same error.

  • HT200006 Apple wont fix Iphone because 'been tampered with'

    Im really struggling with what or where to go from here... And it seems a lot of people are having the same problem... My iphone 5c is still under warranty and after taking it to the Apple shop 3 hours of waiting the man comes back and says sorry I cant replace the phone as its been tampered with... I was given no proof or written evidence to tell me why/how or anything... What am I to do now? Is this apple just trying to pass my warranty on? It seems apple are very good at selling there products but not taking responsibility afterwards? Anyone had this issue and what was done? Ive been told I need to have it collected and taken in for testing... Im unsure whether this is just a waste of time to have my phone returned and be told again its been tampered with.... Well yes by your staff!!

    . Well yes by your staff!!
    Not by my or any one elses here
    This is a user to user community .Apple do not read or respond here ,suporised you did not realise when you read and agreed the ToU of the Community

  • Re: 0176 System Security. You Machine has been tampered with

    I have a IBM ThinkCentre M51 8141-Y6Y. It keeps bringing up
    0176 System Security. You Machine has been tampered with
    I always open my PCs, desktops and ThinkPads to clean all the dust out and also to clean and applies new Thermal Paste on the CPU "ArticSilver5" if the PC is in need of it. I have 2 ThinkPads 570 and A22m that are doing the same thing. All the others have not done this. Also was going to max the RAM out on this M51.

    discussions about bypassing passwords are not allowed in the forum. you'll need to contact support for assistance.
    locking this thread.

  • HT1222 Security update has been tampered with or is corrupted.. Can't update/download

    Hi,
    I did an update and the security update could not be updated, it said something like - Security update has been tampered with or is corrupted.. Can't update/download.
    Please help.

    unslaved wrote:
    Hi,
    I did an update and the security update could not be updated, it said something like - Security update has been tampered with or is corrupted.. Can't update/download.
    Please help.
    You will need to post the exact message, although I would guess that the download was corrupted during download. Did you do it over a wireless network? It may be better to connect straight to the ethernet port and download from there or try going to
    http://support.apple.com/kb/DL1643
    and download directly from there.
    Cheers
    Pete

  • The selected signed file could not be authenticated. The file might have been tampered with or an error might have occured during download. Please verify the MD5 hash value against the Cisco Systems web site

    I am trying to load any 9.0.3 firmware on my UCM 5.0.4.2000-1 server. Every newer firmware I load throws the following error. I have verified the MD5 is correct and also downloaded the file several times with the same result. I can load the same firmware file on another UCM server and it loads fine. Any ideas?
    Thanks in advance!
    Error Message:
    The selected signed file could not be authenticated. The file might have been  tampered with or an error might have occured during download. Please verify the  MD5 hash value against the Cisco Systems web site:  9b:b6:31:09:18:15:e7:c0:97:9f:e6:fe:9a:19:94:99
    Firmware File: cmterm-7970_7971-sccp.9-0-3.cop.sgn
    UCM version: 5.0.4.2000-1

    Thanks for your reply. We have a lab environment where I maintain  UCM 5.0, 5.1, 6.0, 6.1, 7.0, 7.1 and 8.0 servers each running the latest released firmware for our QA testing team. I have downloaded and installed the latest device packages but find that if I try to install any firmware newer then 8.3.1 on either 5.0.4 or 6.0 i start getting MD5 hash authentication errors. It looks like 9.0.3 firmware should work on UCM 5.0 and 6.0 so I am lost as to why I can't seem to update any firmware for any model phone if it is newer then version 8.3.1 on either 5.0 or 6.0. while 5.1 and 6.1 work without issues. Maybe it is just a bug. I mostly wanted to see if anyone else has experienced this or if it is just me.

  • Task image is corrupted or has been tampered with

    The task image is corrupted or has been tampered with. User_Feed_Synchronization-(9A770841-307B-4428-BD89-CB31640FBEC4). 
    I have trouble trying to download any files from the internet and my coputer is very slow.  Not sure what the problem is. 
    I tired the solution you gave for the RSS feed but did not work.
    Doug Hetherly

    1. Could you give more information on your configuration and problem.
    2. From internet:
    · Do you remember any recent changes made on the computer prior to the issue?
    · When do you receive this error message?
    Try the below method:
    a.     Open the Task Scheduler.
    b.     On the View Menu, select the 'Show Hidden Tasks' option.
    c.     In the left side menu, select 'Task Scheduler Library'.
    d.     In the Center section, right click the  
    'User_Feed_Synchronization'   task and select Delete.
    e.     Exit the Task Scheduler.
    Next, select Start / Accessories. Right click 'Command Prompt' and select the 'Run As Administrator' option.
    a.     Click 'Continue' on the UAC prompt.
    b.     In the command window, type the following command: msfeedssync enable
    c.     Press ENTER.
    Note: This command will replace and refresh the 'User_Feed_Synchronization' task. This will not affect the RSS Feeds you are subscribed to
    M.

  • Genius says my numbers don't match and the phone has been tampered with. Can anybody help?

    I have an iPhone4S 64Gb, which I bought from the Apple Store in Covent Garden in December 2011. Recently it developed a problem where it won't shut down (it restarts itself) and the battery life has deteriorated significantly. Having read about this in this Forum, this seems to be a known issue, and a replacement is needed.
    Sure enough, the Genius Bar at Covent Garden took one look at it and wanted to replace it. But then there was a problem. Apparently, one of the serial numbers on the phone (the chassis) does not match the ones on sim tray and software. The Genius (Barry) and his manager (Adam) both said that this could only be a result of tampering or non-Apple servicing. They say the chassis part comes from a batch which originated in Bulgaria.
    What??!!
    My phone has not been touched by anybody but me since I bought it in December. There's no way I would let a non-authorised dealer touch it - I know full well that it would void the warranty, wouldn't trust it, and anyway I've always had a really good Genius Bar experience. More importantly, it's been fine - no need.
    So, what then? Their hypothesis is that somebody has tampered with my phone without my knowledge. As is probably true for many iPhone users, my phone is not far behind my wedding tackle in the extent to which I am attached to it, indeed it spends a lot more time in my hand and line of sight. The idea that somebody could have had access to my phone for long enough to have opened it up and resealed it, having changed parts, without my knowing, is completely absurd. I just don't believe it.
    And why would they? If you're going to steal a phone, then steal it. Barry's theory is that some people steal legitimate serial numbers in order to qualify for Apple servicing. Really? Wouldn't they still have a phone with mismatched serial numbers that Apple then wouldn't touch? It seems utterly far-fetched.
    In short, I have no idea how Apple managed to supply me with what appears to be a dodgy handset. Supply chain failure, admin failure, I don't know. I know that it hasn't been 'serviced' by anybody, but I can tell that Barry and Adam don't believe me. They believe that the fact of mismatched serial numbers are incontrovertible evidence of tampering. (I'm minded to point out that they opened up the phone out of my sight, hence becoming the only people with the opportunity - and expertise - to do exactly what they're alleging has been done).
    The issue is now with Corporate Customer Servcies. I'm not hugely optimistic.
    Has anybody out there experienced anything similar? Can anybody offer any theories (preferably without straying into corporate conspiracy fantasies) as to how the numbers may have become mismatched?
    Grateful for any help.

    I'm still in "recovery mode" after a huge fight with our local Applestore.
    About 6 weeks ago, my wife's 13 month old iPhone 4S developed the "won't turn off" fault and was replaced, out of warranty, for a fee of £139 and with a 90 day warranty.
    About two weeks after that we realised that there was a sound problem when trying to use Facetime (the person on the other end couldn't hear us) but as we have ipads in the household, we didn't immediately persue it and assumed it was down to some setting problem.
    Two weeks ago my wife was shooting some video with the phone, something we hadn't done before and on playback there was no sound.  We realised then that the phone probably had hardware issues and arranged to take it back to the store for repair or replacement.
    I wasn't anticipating any problem when they said that it was a hardware issue and assumed that a replacement would be supplied.
    They looked inside an found that a dozen screws were missing and all the EM shielding that's normally screwed in place was also missing.  On this basis, they refused to repair or replace.  Things got a little tense after that.
    I KNOW that we didn't remove any parts.  I find it impossible to believe that even if a third party had obtained access to my wife's phone, that they would have opened the phone, removed the screws and EM screens (including the one that has the QR code serial number), put it back together and then returned it to its original position.
    As I repeated ad nauseum to the manager of the store, the only possible other option was that the phone was supplied in that condition.  After an hour and a half of arguing, sometimes quite loudly and refusing to leave the store until they replaced the handset, they caved in.
    I don't believe that Apple quality control is 100% accurate.  In fact I'm sure that no manufacturer's QC is.  How our handset slipped through the net I don't know but it did.
    I don't know whether this story will help you in any way but I hope you get your problem resolved

  • ATT says my 3G MicroCell has been tampered with!!

    I have had this unit for 3 months.  It worked for the first two months and then stopped working.  I called ATT to troubleshoot or replace unit and they said it was tampered with and that there was nothing they could do.   MY UNIT IS BRAND NEW. AND NEVER USED OTHER THAN PLUGGING IT IN AND UNPLUGGING IT.   I read that 6 pins come flying out to set this tamper alarm off.  My unit is in perfect condition.   If ATT thinks they can use this as an excuse to not return a device I am literally appallled.  I have been a customer for over 10 years.   David 

    Yeah something is not quite right. By brand new, did you buy it directly from AT&T or did you purchase it "new" off of eBay?
    The anti-tamper clips are inside and set in such a way so that if the unit is opened, it is very difficult to reseat them which renders the unit useless. The clips (at least on the white models) can come loose if the unit is dropped on the floor or knocked over (the cat knocked it over for example).
    So.....
    New from AT&T? IF so, which model (white or black)
    Does it rattle if you shake it gently?
    How did it stop working? (what is the problem).
    I believe the warranty on brand new, purchased from AT&T is one year so you would certainly qualify for a warranty replacement if it is a defective unit.

  • Mail has been tampered with and I don't know where to look

    I have a client who is going through a divorce and her soon to be ex-husband has tampered with her email on her Apple computer. She is running 10.5.2 and using the standard mail client. She noticed when she opens an email the email is forwarded automatically. No rules have been setup. There are no traces of the mail in the outbox or the sent messages folder yet she recieved some bounce messages saying emails weren't accepted due to virus/spam blocks. Where can I look to stop this forwarding action or what software would do this ? What logs can I look at ?

    I see two possibilities here:
    1. The situation is incidental. Do the messages she's getting the supposed bounce notifications for match ones she's actually received? The reason I put this first is that it wouldn't make sense to forward email to an address that's going to bounce, if the point is to spy on the emails. That would bring such activity to someone's attention immediately. If it doesn't seem to be happening to all messages, its likely this is actually the result of a spamming or phishing operation of some sort. Spammer spoof known valid email addresses, and thus you get bounces for messages you've never sent. A phishing tactic to harvest email accounts to use for spam has you get a supposed bounce notification, then you are offered a link to log in. The link of course does not lead to the actual mail site, and you provide your credentials to access the account which are then stolen.
    2. If the mail is being forwarded, it has been set up at the provider end, and not at the local computer. Most webmail providers now offer forwarding service, especially Gmail. If one were to have access to the account credentials, or even just one time were able to access the account from the person's computer, they could set up the forwarding with the email provider. Nothing would be required on the target's computer, and nothing there would be changed.

  • Why does my computer say that the software update has been tampered with and cannot download?

    I recently wiped my computer's hard drive and was updating my software when it told me that. What does it mean? Is there anyway to bypass it?

    Hello, are you really still on 10.5.6?
    Which exact SW or update is this, & do you have a link?

  • 0176 Security - The system has been tampered with

    So the machine is a T40. It hasnt had any passwords for atleast the 2 years ive had it. The main battery has been bad and the cmos battery died recently (id assume the bad main battery helped it along).
    After replacing the cmos battery (tested it with v-meter and it shows 3.23v) Im getting this error message. When I click ok to goto setup it asks for a password. But when I hit enter it lets me in without any problems. Its also never done this before the cmos battery died. 
    Under security it says lock bios setting disabled. Power on and hard disk 1 also disabled. 
    I thought to try to reset to defaults but when i press f9 it doesnt work. No idea if that key is broken, ive never used it. 
    Bios info 3.21 (1RETDPWW)
    Embedded version 3.04
    Anybody have any ideas what to try? I know toshiba had a similar problem with some of there models but they included a cmos reset jumper pad on there motherboards to reset bios defaults. 
    Ive seen thinkpads with all 0's on the UUID before when the boards were going but this one has a correct number in it. 
    Anybody have any ideas on what I can do? Its a older machine so motherboard isnt really worth doing. 
    Solved!
    Go to Solution.

    Your T40 has a Supervisor password on it, that's why you can't reset defaults etc.
    Dying of CMOS battery has brought that issue up, hence the error message.
    Use it as-is, not much you can do short of swapping the motherboard.
    Good luck.
    Cheers,
    George
    In daily use: R60F, R500F, T61, T410
    Collecting dust: T60
    Enjoying retirement: A31p, T42p,
    Non-ThinkPads: Panasonic CF-31 & CF-52, HP 8760W
    Starting Thursday, 08/14/2014 I'll be away from the forums until further notice. Please do NOT send private messages since I won't be able to read them. Thank you.

  • My Adobe site has been tampered with!

    Can anyone tell me how to establish which ulr address was used to do this damage to my site please? I would like to find out who did this as it is damaging my business and I suspect foul play.
    Many thanks

    In response to your private message to me.  I found the following code errors on your home page.
    The W3C Markup Validation Service
    Duplicate IDs
    A misplaced HTML tag
    2 instances of the jQuery core library.  You only need one.
    The 1st jQuery is on line 12 and it points to jQuery 1.8 script.  I would change that to the latest version which 1.11 and can be inserted from a link to the jQuery CDN.
    Replace this:
    <script type="text/javascript" src="/jscript/jquery.js"></script>
    With this:
    <!--Latest jQuery Core Library-->
    <script src="http://code.jquery.com/jquery-latest.min.js">
    </script>
    The 2nd instance is on line 31 and it points to jQuery 1.4 script which is sorely outdated.
    Remove this:
    <script src="jscript/jquery-1.4.2.min.js" type="text/javascript"></script>
    Once you fix those code errors, I think your carousel will work.
    Nancy O.

  • Is my iphone 4 fake or been tampered with?

    Hi guys,
    I just bought a "new" 32 gb Iphone 4 today October 16, 2011 here in our country the Philippines. Apparently the salesperson told me that my unit is new when it seems that it has been activated earlier.   I just have a few questions because I'm really worried. First, when i checked my warranty on Apple's website using my serial number it said my warranty is until January 9, 2012. That's just barely 3 months when it should be until October 16, 2012 right? Well I already submitted a complain on Apple's website and I'm still wating for a reply. Next is that I am not seeing any serial number at the back casing of my iphone. I am only seeing model number A1332 and no serial number. Is that normal?
    Third is  that when I connect my iphone on my computer, I am seeing that the internal storage space is 28.8 gb free out of 57.9 gb. Is that normal as well because i believe that i only bought 32gb? Please help me, do I need to return the item where I bought it? Is my Iphone fake?

    hey guys,
    Additional information: When I opened the box I was not able to find any apple sticker included. Is that a sign that the box was opened earlier?

  • I did not receive a serial number, not on box.  Believe box had been tampered with when I received it this date

    I ordered Adobe Photoshop Elements 13 from Amazon, received it this date, March 10th, 2015.  There is no serial number on the box at all, anywhere. 

    There is normally an inner box (white cardboard) and if you pull it out the serial number should be found. It will commence 1057-

Maybe you are looking for

  • Select option in Struts - problem

    Hi, I have a following problem. I have a collection of objects (TDOs) which I am displaying using <logic:iterate> tag. TDO contains property whose value is for example number 1 but instead I need to display some text value - for example "Some text fo

  • Video doesnt play audio

    i just uploaded a movie to my ipod, but when i played the movie on my ipod, the audio did not play. Does any one know how to fix this

  • How to set a consistent Framerate

    Hi, I'm making a top view racing game and I need to set the framerate to 30fps. I have tried the method in this game: http://homepage.ntlworld.com/pars/pacman/pac.zip Although I am successfully in getting a consistent 30fps, my game stalls for a very

  • What happens if you restart your ipod

    Well I want to restart my ipod 5g but my friends are like "No it's gonna get slower and it's gonna freeze" I don't know what to do. Is it bad if you restart your ipod 5g?

  • E4200 - Range is not good!

    I purchased this unit to upgrade my wireless home network to improve my signal range as well as speed. I also added a WET610N wireless bridge to the mix too. I orginally had a WAP54G and because of signal issues I had to add a range extender to the m