![]() |
#1 |
Member
![]() Posts: 16
Karma: 10
Join Date: Jun 2018
Device: inkBOOK
|
![]()
Good morning,
I have calibre v5.5.0 installed in Windows 10. A few days ago, Windows Defender has detected malware within the file: https://www.microsoft.com/en-us/wdsi...hreatid=274599 I've uninstalled and reinstalled back, but it keeps detecting. I checked the executable file in Virustotal and two engines found malware (Cayunamer.A! within the file). Is anyone else having the same issue? Thanks |
![]() |
![]() |
![]() |
#2 |
Hedge Wizard
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() Posts: 802
Karma: 19999999
Join Date: May 2011
Location: UK/Philippines
Device: Kobo Touch, Nook Simple
|
Where did you download this version of Calibre Portable from?
|
![]() |
![]() |
Advert | |
|
![]() |
#3 |
Member
![]() Posts: 16
Karma: 10
Join Date: Jun 2018
Device: inkBOOK
|
|
![]() |
![]() |
![]() |
#4 |
The Grand Mouse 高貴的老鼠
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() Posts: 71,900
Karma: 307105450
Join Date: Jul 2007
Location: Norfolk, England
Device: Kindle Voyage
|
Kaspersky's online tool found nothing.
Check the checksum of the file you have. Code:
SHA-256: 9E4EE7B9E96C92A5DAAA993CF288C6E869501B141BD6CDD1419F6131E4AFF4D8 |
![]() |
![]() |
![]() |
#5 |
creator of calibre
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() Posts: 44,160
Karma: 22670164
Join Date: Oct 2006
Location: Mumbai, India
Device: Various
|
|
![]() |
![]() |
Advert | |
|
![]() |
#6 |
Member
![]() Posts: 16
Karma: 10
Join Date: Jun 2018
Device: inkBOOK
|
my hash is different:
SHA256 8B4BA65915BADA66485B27F31304202F15E51E1B8E59AACA79 669A3F5A1BA2E8 |
![]() |
![]() |
![]() |
#7 |
null operator (he/him)
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() Posts: 20,775
Karma: 27405072
Join Date: Mar 2012
Location: Sydney Australia
Device: none
|
This morning I installed portable 5.5 on Windows 10 2004, SecIntel version 1.327.1179.0
All three .exe's work fine. Added : I downloaded from the second Alternative site - Github BR Last edited by BetterRed; 11-19-2020 at 04:05 AM. |
![]() |
![]() |
![]() |
#8 |
The Grand Mouse 高貴的老鼠
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() Posts: 71,900
Karma: 307105450
Join Date: Jul 2007
Location: Norfolk, England
Device: Kindle Voyage
|
|
![]() |
![]() |
![]() |
#9 |
null operator (he/him)
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() Posts: 20,775
Karma: 27405072
Join Date: Mar 2012
Location: Sydney Australia
Device: none
|
Mine is same as pdurrant's
Code:
SHA-256 9E4EE7B9E96C92A5DAAA993CF288C6E869501B141BD6CDD1419F6131E4AFF4D8 Last edited by BetterRed; 11-19-2020 at 04:31 AM. |
![]() |
![]() |
![]() |
#10 |
creator of calibre
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() Posts: 44,160
Karma: 22670164
Join Date: Oct 2006
Location: Mumbai, India
Device: Various
|
The installers are all signed, there is no need to check hashes, but if you really want to check hashes, the comprehensive list is here: https://calibre-ebook.com/signatures/
|
![]() |
![]() |
![]() |
#11 |
Resident Curmudgeon
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() Posts: 75,158
Karma: 132820308
Join Date: Nov 2006
Location: Roslindale, Massachusetts
Device: Kobo Libra 2, Kobo Aura H2O, PRS-650, PRS-T1, nook STR, PW3
|
|
![]() |
![]() |
![]() |
#12 |
Custom User Title
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() Posts: 9,041
Karma: 62040591
Join Date: Oct 2018
Location: Canada
Device: Kobo Libra H2O, formerly Aura HD
|
Last edited by ownedbycats; 11-19-2020 at 08:20 AM. |
![]() |
![]() |
![]() |
#13 | |
Custom User Title
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() Posts: 9,041
Karma: 62040591
Join Date: Oct 2018
Location: Canada
Device: Kobo Libra H2O, formerly Aura HD
|
Quote:
Only two engines detect it, both detections seem to be rather generic heuristic ones, and at least Bkav is known for heavy false positives. I ran calibre-portable.exe through Hybrid Analysis. Aside from the "identified as a virus by a piece of shit masquerading as an antivirus" there isn't really much indicating malicious behaviour. If I recall correctly, the import address thing is a standard practice - otherwise you'd get errors when trying to load libraries that don't exist on your particular version of Windows. Last edited by ownedbycats; 11-19-2020 at 08:51 AM. |
|
![]() |
![]() |
![]() |
#14 |
The Grand Mouse 高貴的老鼠
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() Posts: 71,900
Karma: 307105450
Join Date: Jul 2007
Location: Norfolk, England
Device: Kindle Voyage
|
So a false positive, as expected.
|
![]() |
![]() |
![]() |
#15 |
Custom User Title
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() Posts: 9,041
Karma: 62040591
Join Date: Oct 2018
Location: Canada
Device: Kobo Libra H2O, formerly Aura HD
|
I once compiled a batch file I had to an executable for some reason or another, and just out of curiosity threw it up on VirusTotal. Some of the antiviruses flagged it because they had never seen it before.
![]() There's also apocryphal stories about Norton Antivirus attempting to quarantine itself. Last edited by ownedbycats; 11-19-2020 at 09:26 AM. |
![]() |
![]() |
![]() |
|
![]() |
||||
Thread | Thread Starter | Forum | Replies | Last Post |
Possible Calibre Portable 5.5 bug - adding an exe file as a book | firefoxxy | Calibre | 2 | 11-17-2020 12:40 PM |
Calibre Portable - Shouldn't PORTABLE Viewer and PORTABLE Editor open WITH the ebook? | Highlighter | Calibre | 2 | 10-31-2020 05:48 AM |
Can ebook-viewer.exe be portable? | odonterla | Calibre | 0 | 02-07-2020 05:23 AM |
Calibre portable exe | Fetzel | Library Management | 3 | 12-28-2017 04:15 PM |
(Suggestion) Move ebook-viewer.exe to the main directory next to calibre-portable.exe | avid01 | Library Management | 6 | 07-03-2014 03:55 AM |