Just for the heck of it, I went to calibre-ebook.com and downloaded calibre-portable.exe from the 3 links provided. I then generated a SHA-256 for each file with the following results ( I added the site to the filename manually ):
Code:
Name: calibre-portable-installer-4.9.1_calibre.exe
Calibre-ebook download link
Size: 98105792 bytes (93 MiB)
SHA256: 5D51BA530DBBBA84F4AA80DC785228FCB043AC1EAE19DF45788350C5AE99BDB7
Name: calibre-portable-installer-4.9.1_fosshub.exe
Fosshub download link This one has an expiry timer
Size: 98105792 bytes (93 MiB)
SHA256: 5D51BA530DBBBA84F4AA80DC785228FCB043AC1EAE19DF45788350C5AE99BDB7
Note: the SHA-256 on Fosshub matches the locally generated one.
Name: calibre-portable-installer-4.9.1_github.exe
Github download link
Size: 98105792 bytes (93 MiB)
SHA256: 5D51BA530DBBBA84F4AA80DC785228FCB043AC1EAE19DF45788350C5AE99BDB7
Since the SHA-256 values matched, I then headed over to VirusTotal.com and checked the file. I found the file had been previously checked with no detections so I forced a re-detection. Still no hits other than Fireeye timing out and Cylance and Symantec Mobile Insight which couldn't process the filetype. I also ran the .exe through
Jotti's malware scan and
MetaDefender Cloud which—drumroll, please—found no detections.
I'd say that it is safe to install calibre-portable from any of the three links on Kovid's site.
