Also, checking the digital signature. Legitimate DLLs from Microsoft or trusted companies will have a valid signature. If the file has no signature, it's suspicious. Another thing is opening a command prompt and running 'tasklist' to see which processes have the DLL loaded. If it's a legitimate file, it should correspond to a known application.