POP Up Fastidioso

[AGORMUSIC]

Buongiorno, grazie ai vostri suggerimenti sono riuscito ad eliminare un malware che mi costringeva ad uso obbligato di yahoo search ho eliminato il problema con DetectX Swift, e successivamente ho "sanificato Chrome" usando il Terminale come da voi indicato in un post di questa sezione.
L'unica cosa che mi è rimasta è il POP UP che allego che compare all'Avvio del PC dopo di che una volta dato l'OK sparisce sino al prox riavvio.
Avete qlch suggerimento per eliminarlo?

Grazie in anticipo
Agor

Schermata 2020-04-04 alle 18.00.27.png (60.96 KiB) Visto 554 volte

_________________________________
MacBook Pro (Retina, 15-inch, Mid 2015)
Processore 2,2 GHz Intel Core i7 quad-core
Memoria 16 GB 1600 MHz DDR3
Scheda Grafica Intel Iris Pro 1536 MB
Aggiornato macOS Catalina 10.15.3 (19D76)
Cache L2 (per Core): 256 KB
Cache L3: 6 MB
Tecnologia Hyper-Threading: Abilitato
Versione Boot ROM: 196.0.0.0.0
Versione SMC (sistema): 2.29f24

[RickS]

Se ne parlava nell'altra discussione, hai provato a segure queste istruzioni di faxus

Codice: Seleziona tutto

https://www.imaccanici.org/forum/viewtopic.php?t=46574#p512920

[AGORMUSIC]

Se ne parlava nell'altra discussione, hai provato a segure queste istruzioni di faxus

Codice: Seleziona tutto

https://www.imaccanici.org/forum/viewtopic.php?t=46574#p512920

ho eliminato CleanMyMac X
e fatto pulizia con DetectX Swift

... tuttavia rimane

[faxus]

... ho eliminato CleanMyMac X...

CleanMyMac è un software spazzatura, difficile da eliminare.
Per farlo correttamente si trovano difficoltà, anche dopo aver usato il suo Uninstaller.

Il tuo problema è stato generato da un altro problema non risolto di CleanUp.
Vedi questo posta nella discussione in cui sei entrato:
viewtopic.php?p=512920#p512920

Se non risolvi ancora posta anche tu la finestra Profile e vedremo come fare

[AGORMUSIC]

... ho eliminato CleanMyMac X...

CleanMyMac è un software spazzatura, difficile da eliminare.
Per farlo correttamente si trovano difficoltà, anche dopo aver usato il suo Uninstaller.

Il tuo problema è stato generato da un altro problema non risolto di CleanUp.
Vedi questo posta nella discussione in cui sei entrato:
viewtopic.php?p=512920#p512920

Se non risolvi ancora posta anche tu la finestra Profile e vedremo come fare

Forse prima non mi sono spiegato bene:
io avevo già tolto CleanMymac X
fatto le "pulizie" con DetectX Swift
fatto anche le attività di Onyx

Questa la Finestra PROFILE

Schermata 2020-04-05 alle 16.30.46.png (233.41 KiB) Visto 512 volte

(...ne avevo 24)

Grazie in anticipo per la disponibilità
Agor

[faxus]

DetectX Swift risolve i problemi funzionali.

Quindi i file che generano un'azione rilevabile come dannosa.
O invasiva delle funzionalità di sistema.

NON rimuove né risolve le installazioni di software che rigenerano il problema.
Questo è stato spiegato più volte.
E tra l'altro, a mio parere, sarebbe anche pericoloso.

Come è proprio ad altri software che io definisco spazzatura.
Perché intervengono appunto con una rimozione indiscriminata di elementi installati.

Sta all'utente di sapere cosa installa e perché.
Esattamente come sapere cosa disinstalla e perché, oltre che come.

Se adesso tu vuoi risolvere puoi postare il contenuto della finestra Profile, per favore come codice (</>)
Tutto ad esclusione dell'ultimo resoconto "Running Processes", per il momento

[AGORMUSIC]

Codice: Seleziona tutto

Timestamp (21): Sun Apr 05 17:01:23 2020
DetectX Swift v1.093

macOS: Version 10.15.3 (Build 19D76)
File System: apfs
Temp: The thermal state is within normal limits.

Boot time: Sun Apr 5 16:48:55 2020
Uptime: 12 mins, 1 user

Spotlight status for /:
	Indexing enabled. 
System Integrity Protection status: enabled.
Gatekeeper status: enabled for App Store and identified developers.
FileVault is On.

Internet:	Reachable


    Hardware Overview:

      Model Name: MacBook Pro
      Model Identifier: MacBookPro11,4
      Processor Name: Quad-Core Intel Core i7
      Processor Speed: 2,2 GHz
      Number of Processors: 1
      Total Number of Cores: 4
      L2 Cache (per Core): 256 KB
      L3 Cache: 6 MB
      Hyper-Threading Technology: Enabled
      Memory: 16 GB
      Boot ROM Version: 196.0.0.0.0
      SMC Version (system): 2.29f24



  Sharing Preferences:

	File Sharing:  Off
	Screen Sharing:  Off
	Remote Management:  Off
	Back To My Mac:  Off
	Remote Login:  Off
	Remote Apple Events:  Off


3rd Party Kexts (loaded):

	com.paragon-software.filesystems.ntfs


 $PATH:

PATH=/usr/bin:/bin:/usr/sbin:/sbin


/etc/paths:
	/usr/local/bin
	/usr/bin
	/bin
	/usr/sbin
	/sbin

/etc/paths.d/:

~/.bash_profile:
	
~/.bashrc:

~/.bash_login:

~/.profile:

~/.bash_logout:


 User Launchd processes:

PID	Status	Label
-	0	com.google.keystone.user.xpcservice
444	0	com.adobe.GC.AGM
-	78	com.paragon-software.NTFS.fsnotifyagent
-	0	com.openssh.ssh-agent
-	0	com.microsoft.update.agent
667	0	com.sqwarq.DetectX-Swift.2868
-	0	com.paragon-software.facebook.agent
-	0	com.adobe.AAM.Scheduler-1.0
-	78	com.paragon.updater
-	1	com.adobe.ccxprocess
-	0	com.google.keystone.user.agent
609	0	com.google.Chrome.2864


 System Launchd processes:

0      - 	com.adobe.acc.installer.v2
0      - 	com.vix.cron
0      - 	com.teamviewer.Helper
0      - 	com.microsoft.office.licensingV2.helper
0      0 	com.microsoft.autoupdate.helper
155      - 	Adobe_Genuine_Software_Integrity_Service
(dp)      0 	com.paragon.NTFS.launch
0      0 	org.cups.cupsd
0     78 	com.sec.faxdb
0      - 	com.microsoft.OneDriveUpdaterDaemon



 User Login Items:
 
	/Applications/CleanMyMac X.app
	/Applications/CleanMyMac X.app/Contents/Library/LoginItems/CleanMyMac X Menu.app/Contents/Library/LoginItems/CleanMyMac X HealthMonitor.app



 /Library/LaunchDaemons:

	com.adobe.agsservice.plist
		--> Program Arguments: /Library/Application Support/Adobe/AdobeGCClient/AGSService
	
	com.microsoft.OneDriveUpdaterDaemon.plist
	
	com.sec.faxdb.plist
		--> Program Arguments: /Library/Printers/Samsung/Fax/FaxDB/faxdbd
	
	com.teamviewer.Helper.plist
		-> Program: /Library/PrivilegedHelperTools/com.teamviewer.Helper
		--> Program Arguments: /Library/PrivilegedHelperTools/com.teamviewer.Helper
	
	com.adobe.acc.installer.v2.plist
		-> Program: /Library/PrivilegedHelperTools/com.adobe.acc.installer.v2
		--> Program Arguments: /Library/PrivilegedHelperTools/com.adobe.acc.installer.v2
	
	com.teamviewer.teamviewer_service.plist
		--> Program Arguments: /Applications/TeamViewer.app/Contents/MacOS/TeamViewer_Service
		--> Program Arguments: -Module
		--> Program Arguments: Full
	
	com.microsoft.office.licensingV2.helper.plist
		-> Program: /Library/PrivilegedHelperTools/com.microsoft.office.licensingV2.helper
		--> Program Arguments: /Library/PrivilegedHelperTools/com.microsoft.office.licensingV2.helper
	
	com.oracle.java.Helper-Tool.plist
	
	com.paragon.NTFS.launch.plist
		--> Program Arguments: /sbin/kextload
		--> Program Arguments: /Library/Extensions/ufsd_NTFS.kext
	
	com.microsoft.autoupdate.helper.plist
		-> Program: /Library/PrivilegedHelperTools/com.microsoft.autoupdate.helper
	



 /Library/LaunchAgents:

	com.teamviewer.teamviewer_desktop.plist
		--> Program Arguments: /Applications/TeamViewer.app/Contents/Helpers/TeamViewer_Desktop
		--> Program Arguments: -RunAsAgent
		--> Program Arguments: YES
		--> Program Arguments: -Module
		--> Program Arguments: Full
	
	com.paragon.updater.plist
		--> Program Arguments: /Library/Application Support/Paragon Updater/Paragon Updater.app/Contents/MacOS/Paragon Updater
		--> Program Arguments: --check
		--> Program Arguments: --delay=30
	
	com.adobe.GC.AGM.plist
		-> Program: /Library/Application Support/Adobe/AdobeGCClient/AGMService
		--> Program Arguments: /Library/Application Support/Adobe/AdobeGCClient/AGMService
		--> Program Arguments: -mode=logon
	
	com.paragon-software.facebook.agent.plist
		-> Program: /Library/Application Support/Paragon Software/Paragon Software Facebook Agent.app/Contents/MacOS/Paragon Software Facebook Agent
	
	com.teamviewer.teamviewer.plist
		--> Program Arguments: /Applications/TeamViewer.app/Contents/MacOS/TeamViewer
		--> Program Arguments: -RunAsAgent
		--> Program Arguments: YES
	
	com.adobe.AAM.Updater-1.0.plist
		-> Program: /Library/Application Support/Adobe/OOBE/PDApp/UWA/UpdaterStartupUtility
		--> Program Arguments: /Library/Application Support/Adobe/OOBE/PDApp/UWA/UpdaterStartupUtility
		--> Program Arguments: -mode=logon
	
	com.adobe.GC.Invoker-1.0.plist
		-> Program: /Library/Application Support/Adobe/AdobeGCClient/agcinvokerutility
		--> Program Arguments: /Library/Application Support/Adobe/AdobeGCClient/agcinvokerutility
		--> Program Arguments: -mode=logon
	
	com.paragon-software.NTFS.fsnotifyagent.plist
		-> Program: /Library/PreferencePanes/ParagonNTFS.prefPane/Contents/Resources/fsnotifyagent.app/Contents/MacOS/fsnotifyagent
	
	com.microsoft.update.agent.plist
		--> Program Arguments: /Library/Application Support/Microsoft/MAU2.0/Microsoft AutoUpdate.app/Contents/MacOS/Microsoft Update Assistant.app/Contents/MacOS/Microsoft Update Assistant
		--> Program Arguments: -checkForUpdates
	



 ~/Library/LaunchAgents:

	com.google.keystone.xpcservice.plist
		--> Program Arguments: /Users/AgorMusic/Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/Resources/GoogleSoftwareUpdateAgent.app/Contents/MacOS/GoogleSoftwareUpdateAgent
		--> Program Arguments: -runMode
		--> Program Arguments: xpchost
	
	com.google.keystone.agent.plist
		--> Program Arguments: /Users/AgorMusic/Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/Resources/GoogleSoftwareUpdateAgent.app/Contents/MacOS/GoogleSoftwareUpdateAgent
		--> Program Arguments: -runMode
		--> Program Arguments: ifneeded
	
	com.adobe.ccxprocess.plist
		--> Program Arguments: /usr/bin/open
		--> Program Arguments: -a
		--> Program Arguments: /Applications/Utilities/Adobe Creative Cloud Experience/CCXProcess/CCXProcess.app
	
	com.adobe.AAM.Updater-1.0.plist
		-> Program: /Library/Application Support/Adobe/OOBE/PDApp/UWA/UpdaterStartupUtility
		--> Program Arguments: /Library/Application Support/Adobe/OOBE/PDApp/UWA/UpdaterStartupUtility
		--> Program Arguments: -mode=scheduled
	
	com.adobe.GC.Invoker-1.0.plist
		-> Program: /Library/Application Support/Adobe/AdobeGCClient/agcinvokerutility
		--> Program Arguments: /Library/Application Support/Adobe/AdobeGCClient/agcinvokerutility
		--> Program Arguments: -mode=scheduled
	

 User Crontab:

	No cron jobs



 /etc:

	kcpassword
	rc.common
	bashrc_Apple_Terminal
	zshrc_Apple_Terminal
	bashrc
	zshrc
	rc.netboot
	efax.rc~previous
	php.ini.default-previous~orig
	aliases
	zprofile

 / $Root:

	Preboot / .. children: 1
	.file
	.VolumeIcon.icns
	opt / .. children: 0

 ~/ $Home:

	Music / .. children: 29
	iCloud Drive (Archivio) - 1 / .. children: 2
	.CFUserTextEncoding
	bin / .. children: 1
	iCloud Drive (Archivio) / .. children: 5
	.adobe / .. children: 1
	Creative Cloud Files / .. children: 4
	Pictures / .. children: 46
	Samsung / .. children: 2
	Desktop / .. children: 109
	Library / .. children: 88
	Parallels / .. children: 0
	.cups / .. children: 1
	.bash_sessions / .. children: 14
	Public / .. children: 3
	.cisco / .. children: 1
	Applications (Parallels) / .. children: 3
	Movies / .. children: 9
	Applications / .. children: 3
	.Trash / .. children: 11
	Documents / .. children: 55
	.HFSExtensions
	Downloads / .. children: 213
	.bash_history



 ~/Library:

	Receipts / .. children: 6
	Address Book Plug-Ins / .. children: 4
	studentd / .. children: 4
	PDF Services / .. children: 0
	HomeKit / .. children: 10
	DES / .. children: 2
	UIKitSystem / .. children: 1
	Google / .. children: 2
	Family / .. children: 1
	Cisco / .. children: 1
	Parallels / .. children: 5
	Personas / .. children: 3
	PhotoshopCrashes / .. children: 0
	FrontBoard / .. children: 3
	WebDriver / .. children: 1
	EQATEC Analytics / .. children: 3
	MediaStream / .. children: 8
	instance
	ApplicationaContents / .. children: 2
	Frameworks / .. children: 2
	PersonalizationPortrait / .. children: 5
	Accessibility / .. children: 3
	Reminders / .. children: 2



 ~/Library/Application Support:

	com.apple.sbd / .. children: 1
	com.apple.replayd / .. children: 0
	Propellerhead Software / .. children: 2
	SyncServices / .. children: 1
	MuseScore / .. children: 2
	com.apple.kvs / .. children: 1
	Mozilla / .. children: 1
	com.apple.transparencyd / .. children: 5
	com.apple.touristd / .. children: 19
	DiskImages / .. children: 1
	Microsoft AU Daemon / .. children: 2
	Steam / .. children: 0
	CoreParsec / .. children: 0
	BeLight Software / .. children: 1
	audacity / .. children: 4
	Skype Helper / .. children: 0
	MobileSync / .. children: 1
	Google / .. children: 2
	Microsoft / .. children: 2
	com.rcs-software.combocleaner / .. children: 2
	Oracle / .. children: 0
	dmd / .. children: 0
	Ableton / .. children: 2
	Java / .. children: 0
	T / .. children: 2
	CEF / .. children: 1
	.008A3F65-8607-4F54-96FE-7346A4B66F6A / .. children: 1
	VLC / .. children: 1
	TrustedPeersHelper / .. children: 0
	Adobe / .. children: 25
	.ACCC_Lock
	TeamViewer / .. children: 1
	com.sqwarq.DetectX-Swift / .. children: 4
	FileProvider / .. children: 2
	eTeks / .. children: 1
	com.apple.AMPLibraryAgent / .. children: 2
	Preview / .. children: 0
	DVD Player / .. children: 1
	MakeMusic / .. children: 2
	wondershare / .. children: 3
	Skype / .. children: 9
	com.apple.siri.inference / .. children: 1
	Microsoft Update Assistant / .. children: 2
	transparencyd / .. children: 0
	Helper / .. children: 2
	com.3891610675484414453 / .. children: 1
	Microsoft AutoUpdate / .. children: 2
	DetectX Swift / .. children: 3
	syncdefaultsd / .. children: 0
	JREInstaller / .. children: 1
	.ADCS_Lock



 ~/Library/Safari/Extensions:

	*-- Could not read Folder --*



 ~/Library/Internet Plug-Ins:

	



 /Users/Shared:

	Previously Relocated Items 1 / .. children: 3
	adi / .. children: 4
	SC Info / .. children: 2
	Combo Cleaner / .. children: 0
	.Wondershare.dat
	Cakewalk / .. children: 2
	AdobeInstalledCodecs / .. children: 0
	Parallels / .. children: 0
	Relocated Items / .. children: 3
	Previously Relocated Items 2 / .. children: 3
	Adobe / .. children: 3
	Previously Relocated Items 3 / .. children: 3
	sf.plist
	Wondershare.plist
	Previously Relocated Items / .. children: 4
	.HFSExtensions
	AdobeGCData / .. children: 2
	Paragon Software / .. children: 0



 /Applications:

	Publisher Plus.app
	WinZip 2.app
	Adobe Photoshop CC 2019 / .. children: 8
	TeamViewer.app
	Adobe Audition CC 2015.2 / .. children: 2
	Google Chrome.app
	Audacity / .. children: 10
	PDF Reader Pro Lite.app
	Parallels Desktop.app
	OnyX.app
	OneDrive.app
	DetectX Swift.app
	Media Player.app
	Microsoft Word.app
	Samsung / .. children: 4
	Total Video Converter Pro.app
	VirtualDJ 8.app
	Ableton Live 9 Lite.app
	Microsoft Excel.app
	WhatsApp.app
	Microsoft Outlook.app
	Finale.app
	Combo Cleaner.app
	MuseScore 2.app
	Microsoft OneNote.app
	MuseScore 3.app
	Adobe Audition CC 2019 / .. children: 3
	Adobe Photoshop CC 2015.5 / .. children: 8
	Skype.app
	Adobe Audition CC 2018 / .. children: 3
	WinZip.app
	Microsoft PowerPoint.app
	QMidi Pro.app



 /Library:

	Apple / .. children: 3
	OSAnalytics / .. children: 2
	StagedDriverExtensions / .. children: 0
	Google / .. children: 1
	InstallerSandboxes / .. children: 2
	Parallels / .. children: 1
	DriverExtensions / .. children: 0
	User Template / .. children: 41
	bit4id / .. children: 1
	SystemExtensions / .. children: 1
	Managed Preferences / .. children: 0



 /Library/Application Support:

	Propellerhead Software / .. children: 2
	Avid / .. children: 1
	audacity / .. children: 1
	Paragon Updater / .. children: 1
	Roxio / .. children: 3
	Macromedia / .. children: 1
	Mica / .. children: 1
	Google / .. children: 1
	Microsoft / .. children: 1
	Oracle / .. children: 0
	Plogue / .. children: 1
	Samsung / .. children: 1
	Adobe / .. children: 31
	MakeMusic / .. children: 3
	regid.1986-12.com.adobe / .. children: 2
	Paragon Software / .. children: 3



 /Library/Extensions:

	ufsd_NTFS.kext
	AppleMobileDevice.kext
	RoxioBluRaySupport.kext



 /Library/Internet Plug-Ins:

	Flash Player.plugin
	flashplayer.xpt



 /Library/Managed Preferences:

	



 /Library/PrivilegedHelperTools:

	com.jdi.ss.SSHelper
	com.teamviewer.Helper
	com.microsoft.autoupdate.helper
	com.microsoft.office.licensingV2.helper
	com.adobe.acc.installer.v2



 /Library/ScriptingAdditions:

	Adobe Unit Types.osax



 /Library/StartupItems:

	



 /Library/Updates:

	ProductMetadata.plist
	PPDVersions.plist
	index.plist



Top Processes: 

%CPU	PID	COMMAND	
11.7 	278		WindowServer 
11.3 	414		Skype Helper (Re 
9.1		0		kernel_task 
5.3		667		DetectX Swift 
4.2		404		Skype Helper (GP 
2.0		624		Skype Helper (Re 
1.3		307		AppleUserHIDDriv 
1.0		310		AppleUserHIDDriv 
1.0		182		hidd 
0.7		218		coreaudiod 

Ecco fatto.
Grazie

[faxus]

Cancella /System/Library/LaunchDaemons/com.sec.faxdb.plist

Non riesco a capire come possa, in Catalina, essersi installato lì senza permessi di amministrazione.
Tra l’altro non so neanche se lo potrai disinstallare facilmente.
Prova con Terminale
Sudo rm -rf /System/Library/LaunchDaemons/com.sec.faxdb.plist

Trovo assolutamente sospetta ~/Library/Application Support/CEF
Ed anche
~/Library/Application Support/.008A3F65-8607-4F54-96FE-7346A4B66F6A
~/Library/Applications Support/Helper
~/Library/Applications Support/T
Indaga su cosa sono e cosa contengono, se non è chiaro, cancella

Lo stesso fai in /Users/Shared, per
SC Info
Combo Cleaner
.Wondershare.dat
sf.plist
Wondershare

Pare che tu abbia un antivirus o qualcosa di simile.
Dal nome ComboCleaner, con la mirabolante caratteristica di essere un antivirus ed anche un pulitore di sistema…
Tutta roba inutile quanto pericolosa, disinstallata nel modo migliore dopo esserti informato correttamente.

Noto che hai ancora residui di CleanMyMac.
Due in Preferenze di Sistema > Utenti e gruppi > Elementi del login.

Se non usi spessissimo TeamViewer devi disinstallarlo, e all’occasione rimetterlo.
È pericoloso tenerlo, soprattutto attivo.

Cancella anche qualsiasi cosa di Wondershare, probabilmente Total Video Coverter.
Software non adeguato ed invasivo, anche della “privacy”
A dimostrazione sarà molto difficile eliminarlo bene

Conservare documenti in Download è un uso pessimo e pericoloso (in stile Windows).
Sembrerebbe che tu ne abbia più di 200.

Esegui anche le azioni standard consigliate da OnyX in menù Manutenzione
http://www.titanium.free.fr/onyx.html
Alla fine riavvia

[AGORMUSIC]

Ho eseguito tutte le tue indicazioni,
ma nonostante tutto il Pop up al riavvio compare ancora.

Unico file che nn sono riuscito ad individuare in modo da poterlo togliere
è questo: ~/Library/Application Support/.008A3F65-8607-4F54-96FE-7346A4B66F6A
(infatti risulta ancora nel profilo) che dovrebbe contenere: .7F2868C3-CC11-4094-8C5A-CDF2FDDF6412

Ti ringrazio per i consigli in merito a quei software da te indicati come "sospetti"
che ho disinstallato (cercando anche le eventuali tracce in giro pra le varie cartelle)
anche se li ho sempre tenuto senza avere mai avuto problemi.

Questo il Profilo attuale:

Codice: Seleziona tutto

Timestamp (34): Sun Apr 05 21:50:28 2020
DetectX Swift v1.093

macOS: Version 10.15.3 (Build 19D76)
File System: apfs
Temp: The thermal state is within normal limits.

Boot time: Sun Apr 5 20:45:02 2020
Uptime:  1:05, 2 users

Spotlight status for /:
	Indexing enabled. 
System Integrity Protection status: enabled.
Gatekeeper status: enabled for App Store and identified developers.
FileVault is On.

Internet:	Reachable


    Hardware Overview:

      Model Name: MacBook Pro
      Model Identifier: MacBookPro11,4
      Processor Name: Quad-Core Intel Core i7
      Processor Speed: 2,2 GHz
      Number of Processors: 1
      Total Number of Cores: 4
      L2 Cache (per Core): 256 KB
      L3 Cache: 6 MB
      Hyper-Threading Technology: Enabled
      Memory: 16 GB
      Boot ROM Version: 196.0.0.0.0
      SMC Version (system): 2.29f24



  Sharing Preferences:

	File Sharing:  Off
	Screen Sharing:  Off
	Remote Management:  Off
	Back To My Mac:  Off
	Remote Login:  Off
	Remote Apple Events:  Off


3rd Party Kexts (loaded):

	com.paragon-software.filesystems.ntfs


 $PATH:

PATH=/usr/bin:/bin:/usr/sbin:/sbin


/etc/paths:
	/usr/local/bin
	/usr/bin
	/bin
	/usr/sbin
	/sbin

/etc/paths.d/:

~/.bash_profile:
	
~/.bashrc:

~/.bash_login:

~/.profile:

~/.bash_logout:


 User Launchd processes:

PID	Status	Label
-	0	com.google.keystone.user.xpcservice
420	0	com.adobe.GC.AGM
-	78	com.paragon-software.NTFS.fsnotifyagent
613	0	com.skype.skype.3760
-	0	com.openssh.ssh-agent
681	0	com.sqwarq.DetectX-Swift.3712
-	0	com.microsoft.update.agent
-	0	com.paragon-software.facebook.agent
567	0	com.google.Chrome.3756
-	78	com.paragon.updater
-	1	com.adobe.ccxprocess
-	0	com.google.keystone.user.agent


 System Launchd processes:

0      - 	com.adobe.acc.installer.v2
0      - 	com.vix.cron
0      - 	com.microsoft.office.licensingV2.helper
0      0 	com.microsoft.autoupdate.helper
(dp)      0 	Adobe_Genuine_Software_Integrity_Service
(dp)      0 	com.paragon.NTFS.launch
0      0 	org.cups.cupsd
0      - 	com.microsoft.OneDriveUpdaterDaemon



 User Login Items:
 
	/Applications/CleanMyMac X.app
	/Applications/CleanMyMac X.app/Contents/Library/LoginItems/CleanMyMac X Menu.app/Contents/Library/LoginItems/CleanMyMac X HealthMonitor.app



 /Library/LaunchDaemons:

	com.adobe.agsservice.plist
		--> Program Arguments: /Library/Application Support/Adobe/AdobeGCClient/AGSService
	
	com.microsoft.OneDriveUpdaterDaemon.plist
	
	com.adobe.acc.installer.v2.plist
		-> Program: /Library/PrivilegedHelperTools/com.adobe.acc.installer.v2
		--> Program Arguments: /Library/PrivilegedHelperTools/com.adobe.acc.installer.v2
	
	com.microsoft.office.licensingV2.helper.plist
		-> Program: /Library/PrivilegedHelperTools/com.microsoft.office.licensingV2.helper
		--> Program Arguments: /Library/PrivilegedHelperTools/com.microsoft.office.licensingV2.helper
	
	com.oracle.java.Helper-Tool.plist
	
	com.paragon.NTFS.launch.plist
		--> Program Arguments: /sbin/kextload
		--> Program Arguments: /Library/Extensions/ufsd_NTFS.kext
	
	com.microsoft.autoupdate.helper.plist
		-> Program: /Library/PrivilegedHelperTools/com.microsoft.autoupdate.helper
	



 /Library/LaunchAgents:

	com.teamviewer.teamviewer_desktop.plist
		--> Program Arguments: /Applications/TeamViewer.app/Contents/Helpers/TeamViewer_Desktop
		--> Program Arguments: -RunAsAgent
		--> Program Arguments: YES
		--> Program Arguments: -Module
		--> Program Arguments: Full
	
	com.paragon.updater.plist
		--> Program Arguments: /Library/Application Support/Paragon Updater/Paragon Updater.app/Contents/MacOS/Paragon Updater
		--> Program Arguments: --check
		--> Program Arguments: --delay=30
	
	com.adobe.GC.AGM.plist
		-> Program: /Library/Application Support/Adobe/AdobeGCClient/AGMService
		--> Program Arguments: /Library/Application Support/Adobe/AdobeGCClient/AGMService
		--> Program Arguments: -mode=logon
	
	com.paragon-software.facebook.agent.plist
		-> Program: /Library/Application Support/Paragon Software/Paragon Software Facebook Agent.app/Contents/MacOS/Paragon Software Facebook Agent
	
	com.teamviewer.teamviewer.plist
		--> Program Arguments: /Applications/TeamViewer.app/Contents/MacOS/TeamViewer
		--> Program Arguments: -RunAsAgent
		--> Program Arguments: YES
	
	com.adobe.AAM.Updater-1.0.plist
		-> Program: /Library/Application Support/Adobe/OOBE/PDApp/UWA/UpdaterStartupUtility
		--> Program Arguments: /Library/Application Support/Adobe/OOBE/PDApp/UWA/UpdaterStartupUtility
		--> Program Arguments: -mode=logon
	
	com.adobe.GC.Invoker-1.0.plist
		-> Program: /Library/Application Support/Adobe/AdobeGCClient/agcinvokerutility
		--> Program Arguments: /Library/Application Support/Adobe/AdobeGCClient/agcinvokerutility
		--> Program Arguments: -mode=logon
	
	com.paragon-software.NTFS.fsnotifyagent.plist
		-> Program: /Library/PreferencePanes/ParagonNTFS.prefPane/Contents/Resources/fsnotifyagent.app/Contents/MacOS/fsnotifyagent
	
	com.microsoft.update.agent.plist
		--> Program Arguments: /Library/Application Support/Microsoft/MAU2.0/Microsoft AutoUpdate.app/Contents/MacOS/Microsoft Update Assistant.app/Contents/MacOS/Microsoft Update Assistant
		--> Program Arguments: -checkForUpdates
	



 ~/Library/LaunchAgents:

	com.google.keystone.xpcservice.plist
		--> Program Arguments: /Users/AgorMusic/Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/Resources/GoogleSoftwareUpdateAgent.app/Contents/MacOS/GoogleSoftwareUpdateAgent
		--> Program Arguments: -runMode
		--> Program Arguments: xpchost
	
	com.google.keystone.agent.plist
		--> Program Arguments: /Users/AgorMusic/Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/Resources/GoogleSoftwareUpdateAgent.app/Contents/MacOS/GoogleSoftwareUpdateAgent
		--> Program Arguments: -runMode
		--> Program Arguments: ifneeded
	
	com.adobe.ccxprocess.plist
		--> Program Arguments: /usr/bin/open
		--> Program Arguments: -a
		--> Program Arguments: /Applications/Utilities/Adobe Creative Cloud Experience/CCXProcess/CCXProcess.app
	
	com.adobe.GC.Invoker-1.0.plist
		-> Program: /Library/Application Support/Adobe/AdobeGCClient/agcinvokerutility
		--> Program Arguments: /Library/Application Support/Adobe/AdobeGCClient/agcinvokerutility
		--> Program Arguments: -mode=scheduled
	

 User Crontab:

	No cron jobs



 /etc:

	kcpassword
	rc.common
	bashrc_Apple_Terminal
	zshrc_Apple_Terminal
	bashrc
	zshrc
	rc.netboot
	efax.rc~previous
	php.ini.default-previous~orig
	aliases
	zprofile

 / $Root:

	Preboot / .. children: 1
	.file
	.VolumeIcon.icns
	opt / .. children: 0

 ~/ $Home:

	Music / .. children: 29
	iCloud Drive (Archivio) - 1 / .. children: 2
	.CFUserTextEncoding
	bin / .. children: 1
	iCloud Drive (Archivio) / .. children: 5
	.adobe / .. children: 1
	Creative Cloud Files / .. children: 4
	Pictures / .. children: 46
	Samsung / .. children: 2
	Desktop / .. children: 91
	Library / .. children: 88
	Parallels / .. children: 0
	.cups / .. children: 1
	.bash_sessions / .. children: 18
	Public / .. children: 3
	.cisco / .. children: 1
	Applications (Parallels) / .. children: 3
	Movies / .. children: 8
	Applications / .. children: 3
	.Trash / .. children: 0
	Documents / .. children: 56
	.HFSExtensions
	Downloads / .. children: 198
	.bash_history



 ~/Library:

	Receipts / .. children: 6
	Address Book Plug-Ins / .. children: 4
	studentd / .. children: 4
	PDF Services / .. children: 0
	HomeKit / .. children: 10
	DES / .. children: 2
	UIKitSystem / .. children: 1
	Google / .. children: 2
	Family / .. children: 1
	Cisco / .. children: 1
	Parallels / .. children: 5
	Personas / .. children: 3
	PhotoshopCrashes / .. children: 0
	FrontBoard / .. children: 3
	WebDriver / .. children: 1
	EQATEC Analytics / .. children: 3
	MediaStream / .. children: 8
	instance
	ApplicationaContents / .. children: 2
	Frameworks / .. children: 2
	PersonalizationPortrait / .. children: 5
	Accessibility / .. children: 3
	Reminders / .. children: 2



 ~/Library/Application Support:

	com.apple.sbd / .. children: 1
	com.apple.replayd / .. children: 0
	Propellerhead Software / .. children: 3
	SyncServices / .. children: 2
	MuseScore / .. children: 2
	com.apple.kvs / .. children: 1
	Mozilla / .. children: 1
	com.apple.transparencyd / .. children: 5
	com.apple.touristd / .. children: 19
	DiskImages / .. children: 1
	Microsoft AU Daemon / .. children: 2
	Steam / .. children: 0
	CoreParsec / .. children: 0
	BeLight Software / .. children: 2
	Skype Helper / .. children: 0
	MobileSync / .. children: 2
	Google / .. children: 2
	Microsoft / .. children: 2
	Oracle / .. children: 0
	dmd / .. children: 0
	Ableton / .. children: 3
	Java / .. children: 0
	.008A3F65-8607-4F54-96FE-7346A4B66F6A / .. children: 1
	VLC / .. children: 1
	TrustedPeersHelper / .. children: 0
	Adobe / .. children: 25
	.ACCC_Lock
	com.sqwarq.DetectX-Swift / .. children: 5
	FileProvider / .. children: 2
	com.apple.AMPLibraryAgent / .. children: 2
	Preview / .. children: 0
	DVD Player / .. children: 1
	MakeMusic / .. children: 2
	Skype / .. children: 9
	com.apple.siri.inference / .. children: 1
	Microsoft Update Assistant / .. children: 2
	transparencyd / .. children: 0
	Microsoft AutoUpdate / .. children: 2
	DetectX Swift / .. children: 3
	syncdefaultsd / .. children: 0
	JREInstaller / .. children: 1
	.ADCS_Lock



 ~/Library/Safari/Extensions:

	*-- Could not read Folder --*



 ~/Library/Internet Plug-Ins:

	



 /Users/Shared:

	Previously Relocated Items 1 / .. children: 3
	adi / .. children: 4
	Cakewalk / .. children: 2
	AdobeInstalledCodecs / .. children: 0
	Parallels / .. children: 0
	Relocated Items / .. children: 3
	Previously Relocated Items 2 / .. children: 3
	Adobe / .. children: 4
	Previously Relocated Items 3 / .. children: 3
	Previously Relocated Items / .. children: 4
	.HFSExtensions
	AdobeGCData / .. children: 2
	Paragon Software / .. children: 0



 /Applications:

	Publisher Plus.app
	WinZip 2.app
	Adobe Photoshop CC 2019 / .. children: 8
	Adobe Audition CC 2015.2 / .. children: 2
	Google Chrome.app
	PDF Reader Pro Lite.app
	Parallels Desktop.app
	OnyX.app
	OneDrive.app
	DetectX Swift.app
	Media Player.app
	Microsoft Word.app
	Samsung / .. children: 4
	Total Video Converter Pro.app
	VirtualDJ 8.app
	Ableton Live 9 Lite.app
	Microsoft Excel.app
	WhatsApp.app
	Microsoft Outlook.app
	Finale.app
	MuseScore 2.app
	Microsoft OneNote.app
	MuseScore 3.app
	Adobe Audition CC 2019 / .. children: 3
	Adobe Photoshop CC 2015.5 / .. children: 8
	Skype.app
	Adobe Audition CC 2018 / .. children: 3
	WinZip.app
	Microsoft PowerPoint.app
	QMidi Pro.app



 /Library:

	Apple / .. children: 3
	OSAnalytics / .. children: 2
	StagedDriverExtensions / .. children: 0
	Google / .. children: 1
	InstallerSandboxes / .. children: 2
	Parallels / .. children: 1
	DriverExtensions / .. children: 0
	User Template / .. children: 41
	bit4id / .. children: 1
	SystemExtensions / .. children: 1
	Managed Preferences / .. children: 0



 /Library/Application Support:

	Propellerhead Software / .. children: 2
	Avid / .. children: 1
	audacity / .. children: 1
	Paragon Updater / .. children: 1
	Roxio / .. children: 3
	Macromedia / .. children: 1
	Mica / .. children: 1
	Google / .. children: 1
	Microsoft / .. children: 1
	Oracle / .. children: 0
	Plogue / .. children: 1
	Samsung / .. children: 1
	com.apple.icloud.searchpartyd / .. children: 1
	Adobe / .. children: 31
	MakeMusic / .. children: 3
	regid.1986-12.com.adobe / .. children: 2
	Paragon Software / .. children: 3



 /Library/Extensions:

	ufsd_NTFS.kext
	AppleMobileDevice.kext
	RoxioBluRaySupport.kext



 /Library/Internet Plug-Ins:

	Flash Player.plugin
	flashplayer.xpt



 /Library/Managed Preferences:

	



 /Library/PrivilegedHelperTools:

	com.teamviewer.Helper
	com.microsoft.autoupdate.helper
	com.microsoft.office.licensingV2.helper
	com.adobe.acc.installer.v2



 /Library/ScriptingAdditions:

	Adobe Unit Types.osax



 /Library/StartupItems:

	



 /Library/Updates:

	ProductMetadata.plist
	PPDVersions.plist
	index.plist



Top Processes: 

%CPU	PID	COMMAND	
34.2 	620		Skype Helper (Re 
13.7 	277		WindowServer 
12.6 	0		kernel_task 
7.6		681		DetectX Swift 
4.7		214		coreaudiod 
3.6		588		Google Chrome He 
2.3		510		AppleCameraAssis 
2.0		660		Google Chrome He 
1.6		306		AppleUserHIDDriv 
1.4		181		hidd 

[faxus]

I file che hanno un punto iniziale sono invisibili.

Per vederli premi ⌘+⇧+. (punto)
Dopo aver operato ripeti per tornare alla vista normale.

Domani rileggo il resoconto di Profile.
Intanto vediamo se hai miglioramenti

[AGORMUSIC]

I file che hanno un punto iniziale sono invisibili.

Per vederli premi ⌘+⇧+. (punto)
Dopo aver operato ripeti per tornare alla vista normale.

Domani rileggo il resoconto di Profile.
Intanto vediamo se hai miglioramenti

Fatto.
Ho eliminato anche altri files che destavano sospetti o residuali dei programmi disinstallati.
Grazie per l'info sui File Invisibili,
purtroppo questa ulteriore pulizia non ha dato l'esito sperato.

PS In compenso adesso non ho più minacce rilevate da DetectX Swift
"Search complete. No threats or problems found."



Questa la Vers. finale del Profilo

Codice: Seleziona tutto

Timestamp (41): Sun Apr 05 22:50:56 2020
DetectX Swift v1.093

macOS: Version 10.15.3 (Build 19D76)
File System: apfs
Temp: The thermal state is within normal limits.

Boot time: Sun Apr 5 22:49:03 2020
Uptime: 2 mins, 1 user

Spotlight status for /:
	Indexing enabled. 
System Integrity Protection status: enabled.
Gatekeeper status: enabled for App Store and identified developers.
FileVault is On.

Internet:	Reachable


    Hardware Overview:

      Model Name: MacBook Pro
      Model Identifier: MacBookPro11,4
      Processor Name: Quad-Core Intel Core i7
      Processor Speed: 2,2 GHz
      Number of Processors: 1
      Total Number of Cores: 4
      L2 Cache (per Core): 256 KB
      L3 Cache: 6 MB
      Hyper-Threading Technology: Enabled
      Memory: 16 GB
      Boot ROM Version: 196.0.0.0.0
      SMC Version (system): 2.29f24



  Sharing Preferences:

	File Sharing:  Off
	Screen Sharing:  Off
	Remote Management:  Off
	Back To My Mac:  Off
	Remote Login:  Off
	Remote Apple Events:  Off


3rd Party Kexts (loaded):

	com.paragon-software.filesystems.ntfs


 $PATH:

PATH=/usr/bin:/bin:/usr/sbin:/sbin


/etc/paths:
	/usr/local/bin
	/usr/bin
	/bin
	/usr/sbin
	/sbin

/etc/paths.d/:

~/.bash_profile:
	
~/.bashrc:

~/.bash_login:

~/.profile:

~/.bash_logout:


 User Launchd processes:

PID	Status	Label
-	0	com.google.keystone.user.xpcservice
485	0	com.adobe.GC.AGM
-	78	com.paragon-software.NTFS.fsnotifyagent
612	0	com.sqwarq.DetectX-Swift.3832
-	0	com.openssh.ssh-agent
-	0	com.microsoft.update.agent
-	0	com.paragon-software.facebook.agent
-	78	com.paragon.updater
-	1	com.adobe.ccxprocess
-	0	com.google.keystone.user.agent


 System Launchd processes:

0      - 	com.adobe.acc.installer.v2
0      - 	com.vix.cron
0      - 	com.microsoft.office.licensingV2.helper
0      0 	com.microsoft.autoupdate.helper
155      - 	Adobe_Genuine_Software_Integrity_Service
(dp)      0 	com.paragon.NTFS.launch
0      0 	org.cups.cupsd
0      - 	com.microsoft.OneDriveUpdaterDaemon



 User Login Items:
 
	/Applications/CleanMyMac X.app
	/Applications/CleanMyMac X.app/Contents/Library/LoginItems/CleanMyMac X Menu.app/Contents/Library/LoginItems/CleanMyMac X HealthMonitor.app



 /Library/LaunchDaemons:

	com.adobe.agsservice.plist
		--> Program Arguments: /Library/Application Support/Adobe/AdobeGCClient/AGSService
	
	com.microsoft.OneDriveUpdaterDaemon.plist
	
	com.adobe.acc.installer.v2.plist
		-> Program: /Library/PrivilegedHelperTools/com.adobe.acc.installer.v2
		--> Program Arguments: /Library/PrivilegedHelperTools/com.adobe.acc.installer.v2
	
	com.microsoft.office.licensingV2.helper.plist
		-> Program: /Library/PrivilegedHelperTools/com.microsoft.office.licensingV2.helper
		--> Program Arguments: /Library/PrivilegedHelperTools/com.microsoft.office.licensingV2.helper
	
	com.oracle.java.Helper-Tool.plist
	
	com.paragon.NTFS.launch.plist
		--> Program Arguments: /sbin/kextload
		--> Program Arguments: /Library/Extensions/ufsd_NTFS.kext
	
	com.microsoft.autoupdate.helper.plist
		-> Program: /Library/PrivilegedHelperTools/com.microsoft.autoupdate.helper
	



 /Library/LaunchAgents:

	com.teamviewer.teamviewer_desktop.plist
		--> Program Arguments: /Applications/TeamViewer.app/Contents/Helpers/TeamViewer_Desktop
		--> Program Arguments: -RunAsAgent
		--> Program Arguments: YES
		--> Program Arguments: -Module
		--> Program Arguments: Full
	
	com.paragon.updater.plist
		--> Program Arguments: /Library/Application Support/Paragon Updater/Paragon Updater.app/Contents/MacOS/Paragon Updater
		--> Program Arguments: --check
		--> Program Arguments: --delay=30
	
	com.adobe.GC.AGM.plist
		-> Program: /Library/Application Support/Adobe/AdobeGCClient/AGMService
		--> Program Arguments: /Library/Application Support/Adobe/AdobeGCClient/AGMService
		--> Program Arguments: -mode=logon
	
	com.paragon-software.facebook.agent.plist
		-> Program: /Library/Application Support/Paragon Software/Paragon Software Facebook Agent.app/Contents/MacOS/Paragon Software Facebook Agent
	
	com.teamviewer.teamviewer.plist
		--> Program Arguments: /Applications/TeamViewer.app/Contents/MacOS/TeamViewer
		--> Program Arguments: -RunAsAgent
		--> Program Arguments: YES
	
	com.adobe.AAM.Updater-1.0.plist
		-> Program: /Library/Application Support/Adobe/OOBE/PDApp/UWA/UpdaterStartupUtility
		--> Program Arguments: /Library/Application Support/Adobe/OOBE/PDApp/UWA/UpdaterStartupUtility
		--> Program Arguments: -mode=logon
	
	com.adobe.GC.Invoker-1.0.plist
		-> Program: /Library/Application Support/Adobe/AdobeGCClient/agcinvokerutility
		--> Program Arguments: /Library/Application Support/Adobe/AdobeGCClient/agcinvokerutility
		--> Program Arguments: -mode=logon
	
	com.paragon-software.NTFS.fsnotifyagent.plist
		-> Program: /Library/PreferencePanes/ParagonNTFS.prefPane/Contents/Resources/fsnotifyagent.app/Contents/MacOS/fsnotifyagent
	
	com.microsoft.update.agent.plist
		--> Program Arguments: /Library/Application Support/Microsoft/MAU2.0/Microsoft AutoUpdate.app/Contents/MacOS/Microsoft Update Assistant.app/Contents/MacOS/Microsoft Update Assistant
		--> Program Arguments: -checkForUpdates
	



 ~/Library/LaunchAgents:

	com.google.keystone.xpcservice.plist
		--> Program Arguments: /Users/AgorMusic/Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/Resources/GoogleSoftwareUpdateAgent.app/Contents/MacOS/GoogleSoftwareUpdateAgent
		--> Program Arguments: -runMode
		--> Program Arguments: xpchost
	
	com.google.keystone.agent.plist
		--> Program Arguments: /Users/AgorMusic/Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/Resources/GoogleSoftwareUpdateAgent.app/Contents/MacOS/GoogleSoftwareUpdateAgent
		--> Program Arguments: -runMode
		--> Program Arguments: ifneeded
	
	com.adobe.ccxprocess.plist
		--> Program Arguments: /usr/bin/open
		--> Program Arguments: -a
		--> Program Arguments: /Applications/Utilities/Adobe Creative Cloud Experience/CCXProcess/CCXProcess.app
	
	com.adobe.GC.Invoker-1.0.plist
		-> Program: /Library/Application Support/Adobe/AdobeGCClient/agcinvokerutility
		--> Program Arguments: /Library/Application Support/Adobe/AdobeGCClient/agcinvokerutility
		--> Program Arguments: -mode=scheduled
	

 User Crontab:

	No cron jobs



 /etc:

	kcpassword
	rc.common
	bashrc_Apple_Terminal
	zshrc_Apple_Terminal
	bashrc
	zshrc
	rc.netboot
	efax.rc~previous
	php.ini.default-previous~orig
	aliases
	zprofile

 / $Root:

	Preboot / .. children: 1
	.file
	.VolumeIcon.icns
	opt / .. children: 0

 ~/ $Home:

	Music / .. children: 29
	iCloud Drive (Archivio) - 1 / .. children: 2
	.CFUserTextEncoding
	bin / .. children: 1
	iCloud Drive (Archivio) / .. children: 5
	.adobe / .. children: 1
	Creative Cloud Files / .. children: 4
	Pictures / .. children: 46
	Samsung / .. children: 2
	Desktop / .. children: 91
	Library / .. children: 87
	Parallels / .. children: 0
	.cups / .. children: 1
	.bash_sessions / .. children: 20
	Public / .. children: 3
	.cisco / .. children: 1
	Applications (Parallels) / .. children: 3
	Movies / .. children: 8
	Applications / .. children: 3
	.Trash / .. children: 0
	Documents / .. children: 56
	.HFSExtensions
	Downloads / .. children: 198
	.bash_history



 ~/Library:

	Receipts / .. children: 6
	Address Book Plug-Ins / .. children: 4
	studentd / .. children: 4
	PDF Services / .. children: 0
	HomeKit / .. children: 10
	DES / .. children: 2
	UIKitSystem / .. children: 1
	Google / .. children: 2
	Family / .. children: 1
	Cisco / .. children: 1
	Parallels / .. children: 5
	Personas / .. children: 3
	PhotoshopCrashes / .. children: 0
	FrontBoard / .. children: 3
	WebDriver / .. children: 1
	EQATEC Analytics / .. children: 3
	MediaStream / .. children: 8
	instance
	Frameworks / .. children: 2
	PersonalizationPortrait / .. children: 5
	Accessibility / .. children: 3
	Reminders / .. children: 2



 ~/Library/Application Support:

	com.apple.sbd / .. children: 1
	com.apple.replayd / .. children: 0
	Propellerhead Software / .. children: 3
	SyncServices / .. children: 2
	MuseScore / .. children: 2
	com.apple.kvs / .. children: 1
	Mozilla / .. children: 1
	com.apple.transparencyd / .. children: 5
	com.apple.touristd / .. children: 19
	DiskImages / .. children: 1
	Microsoft AU Daemon / .. children: 2
	Steam / .. children: 0
	CoreParsec / .. children: 0
	BeLight Software / .. children: 2
	Skype Helper / .. children: 0
	MobileSync / .. children: 2
	Google / .. children: 2
	Microsoft / .. children: 2
	Oracle / .. children: 0
	dmd / .. children: 0
	Ableton / .. children: 3
	Java / .. children: 0
	VLC / .. children: 1
	TrustedPeersHelper / .. children: 0
	Adobe / .. children: 25
	.ACCC_Lock
	com.sqwarq.DetectX-Swift / .. children: 5
	FileProvider / .. children: 2
	com.apple.AMPLibraryAgent / .. children: 2
	Preview / .. children: 0
	DVD Player / .. children: 1
	MakeMusic / .. children: 2
	Skype / .. children: 9
	com.apple.siri.inference / .. children: 1
	Microsoft Update Assistant / .. children: 2
	transparencyd / .. children: 0
	Microsoft AutoUpdate / .. children: 2
	DetectX Swift / .. children: 3
	syncdefaultsd / .. children: 0
	JREInstaller / .. children: 1
	.ADCS_Lock



 ~/Library/Safari/Extensions:

	*-- Could not read Folder --*



 ~/Library/Internet Plug-Ins:

	



 /Users/Shared:

	Previously Relocated Items 1 / .. children: 3
	adi / .. children: 4
	Cakewalk / .. children: 2
	AdobeInstalledCodecs / .. children: 0
	Parallels / .. children: 0
	Relocated Items / .. children: 3
	Previously Relocated Items 2 / .. children: 3
	Adobe / .. children: 4
	Previously Relocated Items 3 / .. children: 3
	Previously Relocated Items / .. children: 4
	.HFSExtensions
	AdobeGCData / .. children: 2
	Paragon Software / .. children: 0



 /Applications:

	Publisher Plus.app
	WinZip 2.app
	Adobe Photoshop CC 2019 / .. children: 8
	Adobe Audition CC 2015.2 / .. children: 2
	Google Chrome.app
	PDF Reader Pro Lite.app
	Parallels Desktop.app
	OnyX.app
	OneDrive.app
	DetectX Swift.app
	Media Player.app
	Microsoft Word.app
	Samsung / .. children: 4
	Total Video Converter Pro.app
	VirtualDJ 8.app
	Ableton Live 9 Lite.app
	Microsoft Excel.app
	WhatsApp.app
	Microsoft Outlook.app
	Finale.app
	MuseScore 2.app
	Microsoft OneNote.app
	MuseScore 3.app
	Adobe Audition CC 2019 / .. children: 3
	Adobe Photoshop CC 2015.5 / .. children: 8
	Skype.app
	Adobe Audition CC 2018 / .. children: 3
	WinZip.app
	Microsoft PowerPoint.app
	QMidi Pro.app



 /Library:

	Apple / .. children: 3
	OSAnalytics / .. children: 2
	StagedDriverExtensions / .. children: 0
	Google / .. children: 1
	InstallerSandboxes / .. children: 2
	Parallels / .. children: 1
	DriverExtensions / .. children: 0
	User Template / .. children: 41
	bit4id / .. children: 1
	SystemExtensions / .. children: 1
	Managed Preferences / .. children: 0



 /Library/Application Support:

	Propellerhead Software / .. children: 2
	Avid / .. children: 1
	Paragon Updater / .. children: 1
	Macromedia / .. children: 1
	Mica / .. children: 1
	Google / .. children: 1
	Microsoft / .. children: 1
	Plogue / .. children: 1
	Samsung / .. children: 1
	com.apple.icloud.searchpartyd / .. children: 1
	Adobe / .. children: 31
	MakeMusic / .. children: 3
	regid.1986-12.com.adobe / .. children: 2
	Paragon Software / .. children: 3



 /Library/Extensions:

	ufsd_NTFS.kext
	AppleMobileDevice.kext
	RoxioBluRaySupport.kext



 /Library/Internet Plug-Ins:

	Flash Player.plugin
	flashplayer.xpt



 /Library/Managed Preferences:

	



 /Library/PrivilegedHelperTools:

	com.teamviewer.Helper
	com.microsoft.autoupdate.helper
	com.microsoft.office.licensingV2.helper
	com.adobe.acc.installer.v2



 /Library/ScriptingAdditions:

	Adobe Unit Types.osax



 /Library/StartupItems:

	



 /Library/Updates:

	ProductMetadata.plist
	PPDVersions.plist
	index.plist



Top Processes: 

%CPU	PID	COMMAND	
8.4		277		WindowServer 
7.1		313		mds_stores 
3.3		612		DetectX Swift 
2.2		0		kernel_task 
0.7		149		mds 
0.6		135		configd 
0.6		815		AppleSpell 
0.3		278		mDNSResponder 
0.2		276		symptomsd 
0.2		373		syncdefaultsd 

[mattleega]

Hai però ancora residui di cleanmymac.

[faxus]

Hai però ancora residui di cleanmymac.

Quello perché non ha eseguito tutto quello che avevo consigliato

... Noto che hai ancora residui di CleanMyMac.
Due in Preferenze di Sistema > Utenti e gruppi > Elementi del login...

Il resto pare grosso modo fatto.
Adesso vedremo cosa altro può fare.

Perché non appare nei processi di lancio.
Né in /Library/Internet Plug-Ins né in ~/Library/Internet Plug-Ins.
Quindi è evidente che sia un'estensione dei browser.

Approfondisco perché non conosco il fatto specifico.
Quindi devo cercare la causa

[AGORMUSIC]

Hai però ancora residui di cleanmymac.

Quello perché non ha eseguito tutto quello che avevo consigliato

... Noto che hai ancora residui di CleanMyMac.
Due in Preferenze di Sistema > Utenti e gruppi > Elementi del login...

Il resto pare grosso modo fatto.
Adesso vedremo cosa altro può fare.

Approfondisco perché non conosco il fatto specifico.
Quindi devo cercare la causa

Solo per tua info quei residui sono rimasti nonostante io avessi fatto quello che mi avevi consigliato.

Schermata 2020-04-06 alle 09.51.46.png (68.5 KiB) Visto 434 volte

Grazie comunque per l'interessamento

[faxus]

... Solo per tua info quei residui sono rimasti nonostante io avessi fatto quello che mi avevi consigliato...

È rimasto nei file invisibili dell'utente, il bastardo.

Allora esegui in Terminale:

Codice: Seleziona tutto

sudo find /private/var/folders/ \
  -name com.malwarebytes.mbam.frontend.agent -exec rm {} \;

Dovrebbe andarsene af... Sparire per sempre...