When seeking for solutions on how to reduce the amount of false positives from virustotal (and real AVs, because that was an issue too), I noticed that in 100% cases I tested just adding Version resource to the file increases credibility of the file to AVs.
For example, a test DLL of mine which is totally empty (literally only contains DllMain with return TRUE;):
This also helps d3d8to9 a lot - in #5 I mentioned that v140 created DLL with d3d8.log enabled I get 8 (!!) hits - with metadata that is down to only two. With file logging disabled and metadata embedded I got no hits at all!
I would gladly add that to the compiled DLL which is already being redistributed with the game (together with the original license file to conform to BSD-2 license rules), but I don't want to copyright it with your name without you acknowledging it =)
When seeking for solutions on how to reduce the amount of false positives from virustotal (and real AVs, because that was an issue too), I noticed that in 100% cases I tested just adding Version resource to the file increases credibility of the file to AVs.
For example, a test DLL of mine which is totally empty (literally only contains DllMain with
return TRUE;
):w/out metadata: https://www.virustotal.com/file/ad8dddc65e47c1a1f611534334bc6d9b201e9391ded632f3001066482684e447/analysis/1480339650/ with metadata: https://www.virustotal.com/file/4ffa0342f533e9669102865bffa9270ce24919027748057925a9b0df9327d0fc/analysis/1480339793/
This also helps d3d8to9 a lot - in #5 I mentioned that v140 created DLL with
d3d8.log
enabled I get 8 (!!) hits - with metadata that is down to only two. With file logging disabled and metadata embedded I got no hits at all!I would gladly add that to the compiled DLL which is already being redistributed with the game (together with the original license file to conform to BSD-2 license rules), but I don't want to copyright it with your name without you acknowledging it =)