Getting virus info from Intego on install

Hello, World…

Getting the OS/XUnwantedSig malware notification on install in:
/Applications/Scrivener.app/Contents/Frameworks/libswiftCore.dylib

Help…

André

Thanks for the report.

This is an Apple library that is being flagged, and the virus it is references is, from what I can tell, a Windows-specific virus. I cannot find anything about it in relation to Mac, but maybe it is very new.

Scrivener itself hasn’t been updated on the server since October of last year.

So I would be inclined to treat it as a false positive and bypass the warning, but that’s your call to make. As always make sure you’ve got a recent backup of at least your user folder.

1 Like

I’ve heard news that Intego might have an update that fixes this, and that it was indeed an error. So I’d make sure your anti-virus is up to date.

Great ! Certainly an error, indeed, but the problem was that Intego erased the Scrivener .dmg and when I started a new download it detected the “malware” again.

That’s pretty rude of Intego. You might check your options to see if it’s possible to whitelist applications. False positives are a real thing that happens.

I had it briefly on the desktop on Saturday morning at 9.35am, when I was leaving for a two week holiday at 10am… It didn’t affect the laptop which runs exactly the same Intego suite on exactly the same OS version (Sonoma latest). On the desktop it suddenly decided that the libswiftCore.dylib was malicious is five apps, three from SetApp and two others.

This seemed to be too much of a coincidence to be a real positive so I rebooted, reinstalled one of the programs, and the problem went away – and so did I twenty minutes later. I’m hoping the problem won’t still be there when I get back.