MobileRead Forums - View Single Post

estebanb · 08-01-2022, 10:53 PM

Windows Defender reported to me that a Severe threat, Backdoor:PHP/Yorcirekrikseng!rfn, was automatically removed from my Windows 11 laptop. The security report points to a couple of temporary folders that happen to have a calibre prefix on them (see attached screenshot).

Could this be related to Calibre in any way? Could it be a false positive? The latest Calibre versions I have used in the last month are 6.1.0 and 6.2.1, both downloaded from the official website. This is the information that Microsoft has on this specific malware: https://www.microsoft.com/en-us/wdsi...tID=2147783015

I searched the web for any occurrences of this for Calibre, but I found no matches. Any pointers about this would be appreciated.

08-01-2022, 10:53 PM	#1
estebanb Junior Member Posts: 2 Karma: 10 Join Date: Aug 2022 Device: Onyx Boox Nova 3	Backdoor malware through Calibre? Windows Defender reported to me that a Severe threat, Backdoor:PHP/Yorcirekrikseng!rfn, was automatically removed from my Windows 11 laptop. The security report points to a couple of temporary folders that happen to have a calibre prefix on them (see attached screenshot). Could this be related to Calibre in any way? Could it be a false positive? The latest Calibre versions I have used in the last month are 6.1.0 and 6.2.1, both downloaded from the official website. This is the information that Microsoft has on this specific malware: https://www.microsoft.com/en-us/wdsi...tID=2147783015 I searched the web for any occurrences of this for Calibre, but I found no matches. Any pointers about this would be appreciated. Attached Thumbnails