View Single Post
Old 01-24-2021, 01:10 AM   #45
BetterRed
null operator (he/him)
BetterRed ought to be getting tired of karma fortunes by now.BetterRed ought to be getting tired of karma fortunes by now.BetterRed ought to be getting tired of karma fortunes by now.BetterRed ought to be getting tired of karma fortunes by now.BetterRed ought to be getting tired of karma fortunes by now.BetterRed ought to be getting tired of karma fortunes by now.BetterRed ought to be getting tired of karma fortunes by now.BetterRed ought to be getting tired of karma fortunes by now.BetterRed ought to be getting tired of karma fortunes by now.BetterRed ought to be getting tired of karma fortunes by now.BetterRed ought to be getting tired of karma fortunes by now.
 
Posts: 21,881
Karma: 30277270
Join Date: Mar 2012
Location: Sydney Australia
Device: none
Did you upload that calibre-64bit-5.10.1.msi to VT?

I just uploaded the calibre-64bit-5.10.1.msi I got from github this morning, and I got this from VT ==>> https://www.virustotal.com/gui/file/...c1797/behavior

Nothing written to Windows only user Local\Temp

Note - I didn't get the Microsoft Sysinternals Sysmon option (the one your link goes to), I only got the VirusTotal Jujubox option. I have no idea why.

The only malware I've had in a decade came with Piriform's CCleaner soon AFTER it was bought by Avast, VT didn't find it, MS Defender found it. And it wasn't a false alarm, the CEO of Avast published a mea-culpa - speculation was it was put there by a disgruntled Piriform exec who didn't get to keep their job.

BTW check out the Registry Keys opened (there's a down arrow expander) - 300 of the beggars

BR
BetterRed is offline