David H. Lipman presented the following explanation :
>>> "FromTheRafters"  wrote in message news:n372ag$6nr$1@news.albasani.net...
>>> FromTheRafters submitted this idea :
>>> FromTheRafters has brought this to us :
>>
>> > [...]
>>>
>>> Also this if you still want more. Still, these are more than a decade old 
>>> now.
>>>
>>>
https://web.archive.org/web/20070602060312/http://vx.netlux.org/lib/vmd01.html
>>
>> Yet another article, this one more recent (like the Chicxulub event is 
>> recent).
>>
>>
https://securelist.com/analysis/publications/36305/review-of-the-virus-win32-vi
rut-ce-malware-sample/
>>
>> Maybe David H. Lipman knows of something more recent.
>
> A variation of the theme.  reFUD.me  was was a script kiddie site that had 
> two functions.  One was to host multiple anti malware scanners, including 
> Malwarebytes' Anti-Malware, and for a fee you can have your new malware 
> scanned for detection without the files going to any anti malware vendors.
>
> The second was "Cryptex Reborn" where you can get the malware binary crypted.

>  Then you can scan the file again without the file being submitted to anti 
> malware vendors.  Once that malware binary was shown to no longer have 
> detections, it was released into the wild.
>
> hxxp://www.refud.me/reborn.php
> "Cryptex Reborn offers the widest variety of options, giving you the chance 
> to adapt to any situation and file. Each file will be 97% unique..."
>
> In late October one of the site owners complained Malwarebytes was blocking 
> access to the  reFUD.me site.
>
> A sock puppet was created so the site owner could double team Malwarebytes.
>
> It actually was quite funny how they said they would take action against 
> Malwarebytes and the sock puppet actually wanted to get an employee in 
> trouble.
>
> The sock puppet wrote...
> "I want to suggest to demote the moderator Zynthesist.
>
> His behaviour is strictly improfessional and should not be accepted."
>
> and...
>
> "It is very clear for everyone to see that the website is not malicious and 
> should not be blocked."
>
> It was funny because they had unclean hands.  They were using Malwarebytes' 
> software in a money making venture, that was malicious in nature, and had no 
> license to use the software in that fashion but wanted to take action against

> Malwarebytes.
>
> https://forums.malwarebytes.org/index.php?/topic/174483-refudme/
> https://forums.malwarebytes.org/index.php?/topic/174624-refudme-2/
>
> However, UK LE didn't see it as reFUD.me  actors saw it.  They took control 
> over the server and arrested the site owners.
>
>
http://www.zdnet.com/article/uk-men-arrested-for-helping-malware-bypass-antivir
us-protection/
>
> During the month of November the reFUD.me  actors may have orchestrated a 
> DDoS attack on Malwarebytes.

Thanks David, I was unaware of this interesting development. The nerve 
of some people!
--- NewsGate v1.0 gamma 2