Memento for Desktop detected as Trojan by Windows Defender

[Miguel Candelario]

Hi, yesterday installed desktop version (64 bit) on my W10 computer and today Windows Defender has detected as a Trojan. I guess that it's a False Postive and i only wanted to warn about the case. I attached a screenshot of Microsoft Security Portal.

Nothing that gets me ocuppied but gues you would like to know.

Thank you.

[Eugene Kartoyev]

No, it doesn't look like false positive, considering the threat level as severe.

I wonder if your version of Memento got infected with a JS Trojan on your personal computer?

This alert can only be confirmed if someone else runs into the same issue.

Normally, Java programs (like Memento) run­in a "sandbox" envìronment, which makes them so limited in access to system functions, that it becomes a­bsolutely impossible ­to write a virus or a­ trojan (meaning a program penetrating into and altering another program's code) -- ­or even become suspicious for an anti-virus...

[Miguel Candelario]

Well, actually i can't rebate your argument because it's true BUT, if the file infected locally, it's the only one infected. AS you can see in the attached screenshots, the download itself appears as infected, which got me pretty amazed. I'm not saying that i'm not infected; if i'm infected no one software in my computer detects the infection (nor Malwarebytes, nor Panda Cloud Security). So if you can give some clues about any infection browser related or something, it would be great. AS you can see in the screenshots the file download URL is from the Memento's Web and Windows Defender detects in the Memento.ex file and Registry entries.

Would be great to detect the infection if you think it's not a False positive.

[admin]

It is false positive.

Memento Database is a Java application that is packaged to the exe.

The problem with the packer. 

I've updated the packer and made a new installation package, please check again.

http://mementodatabase.com/download/mementodb-1.0.4-win64.exe

[admin]

This is result for the new package:

https://www.metadefender.com/#!/results/file/e07c28e232ea4eae8b3f281741c05470/regular/analysis

Unfortunately antivirus from Microsoft is not available in this report.

[Miguel Candelario]

Ok, thanks for the update. Love your app.

[ntrim]

I had the same problem. I disabled Windows Defender so I can work with Memento.

[John C]

I just had this happen tonight on my corporate laptop. The security software keeps Uninstalling memento.

Is there any way I can get out of this and install memento?

Thank

[John C]

Can't install memento. Unfortunately I don't have the power to change any security settings.

Can still use on my tablet though.

[Matt R]

Just installed the 1.0.4 tonight and had the exact same thing get detected from windows defender.  Is this program really safe?

[John C]

Must be something goofy in memento all of a sudden.

I use another app called fiinote which h months ago started running on Windows too. It's been fine. It does syncing with Android etc.

It's not a database just a notes app like Evernote.

Let's see what happens.

[John C]

[ntrim]

The problem still exists!

[Amundsf]

To quote admin:
The problem is with exe-file extracting the program.

Until this is fixed you can use the Java version that is found in the bottom of this page:
http://mementodatabase.com/#desktop

[Neal Kay]

I had the same experience this morning.  When I began the installation, a popup warned the package might contain a virus.  I barged past this and installed Momento.  Windows Defender immediately identified it as malware and deleted the .exe file.

[Neal Kay]

I'm unable to extract the Java file.

[John C]

I was able to download and install the jar version. Everything seems to be good.

Neal, try putting the jar download into your downloads folder into a folder named jar. That's what I did. You may be having problems because you are working in the "programs" folder.

J

[John C]

BTW it's not only memento that is experiencing this problem. I have a few other programs on my windows 7 laptop that have been uninstalled and or are not working. Some new decision on security software or something.

J

[Neal Kay]

Thanks John, got a clean extraction as suggested.  I'm new to jar files.  Can you tell me what the executable is?

Thanks again,

Neal

[John C]

it's the

mementodb.cmd

...file in the extraction folder