RND, I did a post on it here when the malware started at dA in the Rainmeter Gallery. And I've been monitoring and posting about it daily at our RM group there. Because of our persistance in hounding staff, dA has changed their reporting process and are also currently testing an antivirus scanner for uploads.
Unfortunately, dA refuses to let volunteers moderate which would fix the problem as one of us in the Rainmeter community would know what skins are bad.
We are still monitoring on a daily basis, hence that notice you found. Morley posts that as soon as he sees a suspicious skin and then I post it on the group's page. We all report them.
The problem is that not all skins tested through scanners, even VirusTotal, show up any malware. But experienced rainiers know that rainmeter skins don't come in .exe format. A lot of people don't know that and aren't suspicious when they see that, they just think it's an installer.
The people who are doing this aren't rainmeter skinners, they are those jackasses that hound every website that doesn't moderate like WC does. The people who are doing this are not RM developers, RM skinners, it's not the software, it's not the skins - it's assholes stealing someone else's skin and uploading it with malware - they are even using the same preview image that the orginal skinner did. Sometimes they don't even include the skin, they just upload one file - an infected .exe.
So please don't put down Rainmeter because of this, it's offensive and frustrating to all the people who volunteer their time in developing this open source software and create skins and generally help out wherever it's needed.
The Rainmeter community would love to have a nice safe website like this to host skins but they don't have a 'Stardock' behind them and unfortunately, there's no millionaires amongst us.