Windows Defender Reporting
Earlier this morning was notified by Windows Defender that it had detected a Trojan named: Win32/CoinMiner.C!cl at location C:\Program Files\RobotCache\randomx.dll. I opted to allow the .dll to persist on my system under the assumption that the library is in fact legitimately a part of the RC service.
Official confirmation concerning the legitimacy of the file would be greatly appreciated for purposes of closure and continued, stable operations.
Am currently mining so it would appear that everything is running as it should, but Windows Defender reports that the .dll, aforementioned, has been quarantined despite my preference to let the file operate within the RC context. Again, any confirmation that the file is legitimate in an official capacity would be appreciated.
Comments
Yes, the files are legitimate. Those files are used by the Robot Cache client.
Roger that, MichaelG.
Thanks for the input.