These days you don't have to download a Trojan to get infested by malware. Drive-by downloads and other sneaky techniques can infest your computer just because you surfed to a malicious or hacked site. To evade detection, the bad guys often configure their nasty code so it doesn't attack
every visitor. It might attack one visitor in ten, or only trigger once for a given block of IP addresses. Researchers at
Dennis Technology Labs take these tactics into account when testing
antivirus software with a test system that ensures each product gets hit by precisely the same attack. It's meant to be as close as you can come to a real user's experience.