plugin_particlefx.dll

Scan plugin_particlefx.dll - Powered by Reason Core Security
MD5:
b011174e6fd15d733e92f44b226c5372

SHA-1:
4523b07ea80d09c14d0a3fe0ecc956bab1c26930

SHA-256:
5189bec5dec499564cb831fde6f7d6315bb0bb8c24e589f85f0983f7ff9581b9

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
12/5/2016 1:45:26 PM UTC  (today)

Scan engine
Detection
Engine version

Jiangmin
Trojan/Lebag.azu
KV140610

File size:
101 KB (103,424 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\roblox\versions\version-221a4807685c44e7\plugin_particlefx.dll

File PE Metadata
Compilation timestamp:
5/23/2012 1:27:09 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
3072:YE+nvsca3NqIOFpTGViJK3EXg0Hkx+j+tqQOKZ:YEWa9kOrKiqQOKZ

Entry address:
0x9466

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 94, 02, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, CC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, FF, 25, 84, B0, 00, 10, 68, E9, 94, 00, 10, 64, FF, 35, 00, 00, 00, 00, 8B, 44, 24, 10, 89, 6C, 24, 10, 8D, 6C, 24, 10, 2B, E0, 53, 56, 57, A1, F8, 91, 01, 10, 31, 45, FC, 33, C5, 50, 89, 65, E8, FF, 75, F8, 8B, 45, FC, C7, 45, FC, FE, FF, FF, FF, 89, 45, F8, 8D, 45, F0, 64, A3, 00, 00, 00, 00, C3, 8B, 4D, F0, 64, 89, 0D, 00, 00, 00, 00, 59, 5F, 5F, 5E, 5B, 8B, E5...
 
[+]

Entropy:
6.2582

Code size:
37.5 KB (38,400 bytes)

The file plugin_particlefx.dll has been discovered within the following program.

Roblox  by ROBLOX Corporation
Roblox is a massively multiplayer online game created and marketed toward children and teenagers. Players are able to create their own virtual world, in which they or other online members may enter and socialize within the blocks of varying shapes, sizes, and colors.
www.roblox.com
5% remove it
 
Powered by Should I Remove It?

Scan plugin_particlefx.dll - Powered by Reason Core Security