TIP: Click on subject to list as thread!

ANSI

echo:	alt-comp-anti-virus
to:	ALL
from:	DAVID H. LIPMAN
date:	2015-11-26 20:44:00
subject:	Re: Does any common malwa
>> "FromTheRafters" wrote in message news:n372ag$6nr$1@news.albasani.net... >> FromTheRafters submitted this idea : >> FromTheRafters has brought this to us : > > > [...] >> >> Also this if you still want more. Still, these are more than a decade old >> now. >> >> https://web.archive.org/web/20070602060312/http://vx.netlux.org/lib/vmd01.html > > Yet another article, this one more recent (like the Chicxulub event is > recent). > > https://securelist.com/analysis/publications/36305/review-of-the-virus-win32-vi rut-ce-malware-sample/ > > Maybe David H. Lipman knows of something more recent. A variation of the theme. reFUD.me was was a script kiddie site that had two functions. One was to host multiple anti malware scanners, including Malwarebytes' Anti-Malware, and for a fee you can have your new malware scanned for detection without the files going to any anti malware vendors. The second was "Cryptex Reborn" where you can get the malware binary crypted. Then you can scan the file again without the file being submitted to anti malware vendors. Once that malware binary was shown to no longer have detections, it was released into the wild. hxxp://www.refud.me/reborn.php "Cryptex Reborn offers the widest variety of options, giving you the chance to adapt to any situation and file. Each file will be 97% unique..." In late October one of the site owners complained Malwarebytes was blocking access to the reFUD.me site. A sock puppet was created so the site owner could double team Malwarebytes. It actually was quite funny how they said they would take action against Malwarebytes and the sock puppet actually wanted to get an employee in trouble. The sock puppet wrote... "I want to suggest to demote the moderator Zynthesist. His behaviour is strictly improfessional and should not be accepted." and... "It is very clear for everyone to see that the website is not malicious and should not be blocked." It was funny because they had unclean hands. They were using Malwarebytes' software in a money making venture, that was malicious in nature, and had no license to use the software in that fashion but wanted to take action against Malwarebytes. https://forums.malwarebytes.org/index.php?/topic/174483-refudme/ https://forums.malwarebytes.org/index.php?/topic/174624-refudme-2/ However, UK LE didn't see it as reFUD.me actors saw it. They took control over the server and arrested the site owners. http://www.zdnet.com/article/uk-men-arrested-for-helping-malware-bypass-antivir us-protection/ During the month of November the reFUD.me actors may have orchestrated a DDoS attack on Malwarebytes. -- Dave Multi-AV Scanning Tool - http://multi-av.thespykiller.co.uk http://www.pctipp.ch/downloads/dl/35905.asp --- NewsGate v1.0 gamma 2 * Origin: News Gate @ Net396 -Huntsville, AL - USA (1:396/4)
SOURCE: echomail via QWK@docsplace.org

Email questions or comments to sysop@ipingthereforeiam.com
All parts of this website painstakingly hand-crafted in the U.S.A.!
IPTIA BBS/MUD/Terminal/Game Server List, © 2025 IPTIA Consulting™.