Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Is this file cause for concern?


  • Please log in to reply
2 replies to this topic

#1 .Phantom

.Phantom

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:06:06 PM

Posted 25 September 2017 - 03:08 AM

The file in question was downloaded from VideoLAN via this URL http://download.videolan.org/pub/libdvdcss/1.2.11/win64/libdvdcss-2.dll. I wasn't suspicious of the DLL before uploading it to VirusTotal and seeing a community score of -26. For some reason, one user in particular is single-handedly responsible for a -32 point rating (as you can see in the picture below). I did nothing with the file other than download it, but I am mildly concerned because I know that DLL's can cause harm without being given elevated permissions. 
 
qxm5Rfd.png

Edited by .Phantom, 25 September 2017 - 03:15 AM.


BC AdBot (Login to Remove)

 


#2 Platypus

Platypus

  • Global Moderator
  • 15,417 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:12:06 PM

Posted 25 September 2017 - 03:29 AM

Neither Emisoft nor Malwarebytes flagged it when I scanned a download, so it's not something that I'd have a concern about if it was a file I needed to use.

It's possible that on one occasion somebody's very specifically targeted scanner flagged up a keyword from error text in the file, that happens occasionally. Or the file may have been installed onto someone's already infected system.

It currently has a 0/64 detection report on VirusTotal.

Edited by Platypus, 25 September 2017 - 03:37 AM.

Top 5 things that never get done:

1.

#3 .Phantom

.Phantom
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:06:06 PM

Posted 25 September 2017 - 03:54 AM

Neither Emisoft nor Malwarebytes flagged it when I scanned a download, so it's not something that I'd have a concern about if it was a file I needed to use.

It's possible that on one occasion somebody's very specifically targeted scanner flagged up a keyword from error text in the file, that happens occasionally. Or the file may have been installed onto someone's already infected system.

It currently has a 0/64 detection report on VirusTotal.


Thanks for your response. It is true that DLL has a 0/64 detection report on VirusTotal, however I always find it concerning when the community score of a file is exceedingly low.

Edited by .Phantom, 25 September 2017 - 03:55 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users