Hello, I am new here (well, returning) and noticed that downloads have to be approved by staff before people download it. how exactly do the staff test it? Do they just scan it with an antivirus and say it's clean when nothing comes back as infected? Or is it thoroughly scanned and looked into?
the reason I ask this is because I know of all the types of infections and how they can be hidden from most (or any) antivirus/malware programs, and I wouldnt trust even a staffs approval unless i know it's been thoroughly looked through for malicious content
Staff, agree to the downloading and testing of files when they receive their staff status. What they do is they download the file and make sure its good, before that though I believe the original poster of the file must provide 2 virus scans.
We have many ways to check the files if their safe.
Mainly what we do is:
1: We have an "fake" computer running. (Sandboxie/VMware)
2: There we can decompile the program and check for imports and what the code looks like.
3: We check strings with a tool called: WinRar*, which allows us to read over the strings. (Links and such)
4: Then we check the scans, if there's a high detection rate. We investigate the file closer, if not. We just do a "quick" check to see that everything looks okay.
5: We start the program and blocks internet connection. And we can then see if there was anything else "special" that we missed.
All staff members are given a briefing on how to reverse programs to check for potentially harmful code that an antivirus wouldn't pick up. I've written a few of the tutorials they are given access too and was doing the same thing for two years as part of the moderation team, so I can assure you that it is much more than a simple virus scanner.
However, when I was staff there were occasionally issues with staff members not following the usual procedure, so if you have any concerns about the safety of a file you find on the site do not hesitate to report the post.