1/3 made me respond.I can't post anything in the malware hub section till i have 100 posts on here.Also If you want some proof of whatever I do you can go check emsisoft forums and even my twitter @avman1995
So Do I.Why don't you tell silversurfer too.You won't because he is a level 36 or whatever right?What is wrong with pointing out flaws if you are talking about proper testing.Why do some of you like silversurfer come out rudely lashing on newer members and don't do that with the others who are also not taking your test seriously.Saying "I don't like people bla bla" without stating any proper contradiction to my post but instead just bash at me is both rude and childish.
Some of you seem to be bent upon or too emotional about your tests and you know I need to have 100 posts to post anything over here first.
Who said I don't respect your tests.Silversurfer pointlessly started that assumption and went on to post a taunting comment so I retaliated with what I thought made sense about real world usage and tests.Why do you home grown testers want to shove your "almighty methods" on us over here when we don't we agree with AV-C and others.Its our opinion and we can stick to it!
The very fact I watch the youtube tests on here and comment too on it shows my interest in that aspect.But again I think ganging up on me does the trick.
So now if we are finished with a pointless argument over home grown tests we can move on to bigger things.I think this forum has given a little too much of spot light to home grown tests so it allows people like silversurfer who doesn't even know the real world problems to assume and bark at someone who is at a lower forum rank thinking he won't get opposed.
A new thing is being seen now where people are producing YouTube videos ( YouTesters ) of their private tests of anti-virus or anti-malware programs.
Now a days, anyone can publish their videos to the world using YouTube. That's great, however, it also means that anyone can proclaim themselves an expert tester and have links to their YouTube tests or channel published all over the forums. In some regards, this can be considered click-thru spam, to drive traffic to up their video view counts. In other cases, they pit two products against each other in a video version of a
This vs That debate.
First, a person can't post what is presented as a legitimate and valid test, but, when challenged as to the flaws in test methodology, fall back to saying they are not a professional tester and these were done for fun. The methodology flaws remain and that slight qualifier somewhere down in the thread won't stop the majority of readers from taking the results as some how meaningful when they are not.
Second, when you "collect lots of samples" and call them all malware, yet, have not verified the samples, your testbed is invalid. You can't just upload some samples to VT (or use a local product's scanner), to declare the samples legitimate malware for testing against the rest. Also, you can not collect samples for 10 days, test on the 10th day, and still call the samples 0-day.
Without verifying and/or testing the individual malware samples, you can't know how many of the samples are real malware versus harmless or broken files. With large numbers of collected samples, it is highly likely that the sample set has many duplicates, perhaps only named differently. Professional organizations always de-dupe their malware sets to prevent detection results from being skewed.
If a collection contains a wide mix of malware types, including those "potentially unwanted..." items, like riskware or similar, you need to separate them into groups for testing since listing total detections counts versus misses is skewed and misleading for the actual severity involved.
These are just a few of the reasons why we view these types of home grown tests as both meaningless and yes, even damaging since some people will start to blindly follow the results as an indicator of product effectiveness.
This is not a excuse.It is what you should be reading off such tests.In any case, I am not actually trying to define proper testing procedures here. I'll leave that to groups like
AMTSO.
Conclusion: Its
fun to watch AV's with great web filters fall against only binary centric test.But that isn't all.As stated before these tests need to taken with a grain of salt and more often than not most people do it for fun since they enjoy it and still want people to take their test seriously which cannot happen.It's good but can't be perfect.We appreciate what you do but its not something some of us can take at face value.
"didn't know visiting certain forums makes you a malware expert. hnggg"
Give me a break from this taunting posts and bullying! Isn't this the petty bickering on here? This argument isn't even healthy its just like what silversurfer said first.Taunting and very rude IMO.
Oh please! silversurfer thought i am newbie to the topic and tried to pick off me with a rude post.The entire goal of that was to show I am not a "don't know anything" newbie over here.Why don't you go and argue with silversurfer instead of ganging up on me here.What is it with the bullying and I will no more be responding to any childish or rude comments on this thread.If you have a valid argument then we can talk if not I would be obliged if some of you can stop ganging up a newbie.