Panda Cloud AV Blocks Rogue AV's

Panda Cloud AV Blocks Rogue AV’s
(Release Version 01.00.01.0000)
For the Malicious URL testing, we treated CloudAV like any other security software and threw the book at it. We selected ten domains, each confirmed malicious, and judged CloudAV on a block or allow basis. If it stopped the attack, it passed, if not it failed.

***********************
Links to live malware removed by moderator
***********************

Each of these three domains serve drive-by-downloads and were subsequently blocked by Panda. The various Malware offered by these sites were flagged as Trj/CI.A.

***********************
Links to live malware removed by moderator
***********************

These URL’s were all blocked by Panda. What is unique here is that each of them comes from the recent Koobface variant spreading itself via wall posts on Facebook. Two were blocked as Trj/CI.A and one, a Rogue anti-Virus scanner (Internet Antivirus Pro), was called suspicious and blocked as well.

***********************
Links to live malware removed by moderator
***********************

These two domains served up botnet related Malware. Each one was flagged as suspicious by Panda and blocked.

***********************
Links to live malware removed by moderator
***********************

This URL failed the test. When you visit the link, it installs a Rogue anti-Virus named Cyber Security. The Rogue was allowed to download, install, and become fully optional with no warning other than the one from Internet Explorer. As the Rogue was installing, and afterwards running its fake scan and launching warning windows left and right, CloudAV remained silent.
To resolve the issue, we stopped the Rogue anti-Virus’ processes and launched Malwarebytes Anti-Malware to clean up the infection. After cleanup, Malwarebytes Anti-Malware discovered over thirty (30) infection points on the system and removed them all.
For the record, VirusTotal shows only 7 out of 41 security vendors as being able to properly block this Rogue anti-Virus application. [VirusTotal]

Malware Detection:
Malware detection testing for CloudAV was the same as any other security vendor we’d test. There were 400 samples used for the test, and out of those, CloudAV missed 8 of them. The samples are a mix of Rootkits, Worms, Trojans, malicious PDF and email attachments, Rogue anti-Virus installers, and more.
The list below details the samples missed by CloudAV and are linked to VirusTotal to compare detection rates.
Bloodhound.PDF
Bofra.2009
Bofra.A_1_091
Bofra.B_092
Bofra.B_2_093
DocIRC.B_127
Feebs.BD_140
Mydoom.TCP_204

Conclusion:
When compared to the beta version, the first official release of CloudAV is almost a completely different product. The cosmetic improvements leave all of the functionality in place, but offer an “easy on the eyes” advantage. Nano, the engine technology that hooks into Panda’s Collective Intelligence, is faster this time around. It was quick enough before, but there is a noticeable improvement in reaction time and scanning.
There was one bug that we came across during testing. The suggested actions link on non-neutralized detections lead to the online help manual. We’re not sure why, but there was no immediate resolution for the issue. However, this was the only semi-negative thing discovered during testing.
For this review, we used the same testing methods that we used for Panda Internet Security 2010. However, there is no Spam protection in CloudAV. To keep things fair, we simply scored and tested what was available. This means there were only 90 points available for this review. With that said, CloudAV scored an 85 out of 90.
CloudAV is clean looking, fast, and free. If you are currently without Malware protection, then this is a solid pick.

You can read full review at http://www.thetechherald.com/article.php/200918/3565/Review-Panda-Cloud-Antivirus

If you use this product make sure you have Malwarebytes because Panda Cloud AV or any AV will not detect and stop everything. This product can not be used with other AV’s. If you want a Cloud AV to use as layered protection with another AV use Immunet (Free), Immunet/Clam AV (Free) or Prevx 3.0 (Not Free) they work as layered or stand alone. MRT.EXE is already on your PC and is a good Windows Malware removal tool. You can find it here, Computer/Windows/System 32/mrt.exe Click on mrt.exe and run full scan. I have run Panda since the first beta release and now there final release version and you can see (photo below) that not even Malwarebytes has found anything. Also keep in mind that I use Comodo Firewall in Proactive mode and this alone keeps a lot of the bad stuff out.

[attachment deleted by admin]

[attachment deleted by admin]