I was labbing with the toolkit the other day and Windows defender flagged the config file for the program as a possible trojan. It is a human readable serialized javascript file that just stores your settings, like your last used folder for saving/opening files and hotkey bindings and the like. I imagine Windows defender doesn't like that the program is injecting into the actively running fighting game and is misidentifying it as a trojan. Be aware of the issue, but know that the file USER_NAME/AppData/Roaming/LMTK_User.conf is just the config settings for the program and not an actual trojan.