Steer Clear of Malware Web Sites With ClearCloud DNS

imageSecurity conscious Internet users are aware, that so called “trusted” websites, are not always to be trusted. We’ve covered this issue here on Tech Thoughts a number of times, most recently in, “How Safe Are Trusted Web Sites? Not Very!

The following is a brief explanation, from that article, on how cyber crooks manage to infect web sites:

“Cyber-crooks can exploit vulnerabilities on the server hosting the web page to insert an iFrame, (an HTML element which makes it possible to embed another HTML document inside the main document). The iFrame can then activate the download of malicious code by exploiting additional vulnerabilities on the visiting machine”.

Unfortunately, installed anti-malware solutions may not always provide adequate protection against this type of attack. Luckily, there is a solution which can add an additional layer of security by substituting your ISP provided DNS service, with a more secure alternative. An alternative that can prevent you from visiting sites that harbor malware exploits.

Free alternatives include OpenDNS, Google DNS, Norton DNS – and now, an additional free service can be added to this list with the release of ClearCloud Beta from Sunbelt Software, the developer’s of the highly regarded VIPRE antivirus application.

According to ClearCloud, the application “checks every website address your computer is trying to access, whether you’re browsing the internet, clicking a link in an email, or a program “under the hood” trying to communicate with servers for information or updates”.

In a quick 24 hour test, I found ClearCloud worked as advertised. With ClearCloud up and running, you will be prevented from visiting sites identified as harboring exploits. In which case, you will get detailed information on why ClearCloud believes the site is unsafe.

Taking advantage of this service couldn’t be easier. Simply download the setup application, execute, and as the simply interface shown below indicates, you’re now protected by ClearCloud.



Following installation, visit the ClearCloud block page to verify the service is up and running.

System requirements: Windows, Mac.

Download at: ClearCloud

Alternatively, you can manually set your DNS server address to

Note: You can configure ClearCloud on your router. Click here for a setup walkthrough.

A big ”Thank You” to regular reader TeX for bringing this service to my attention.

If you found this article useful, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.


Filed under cybercrime, Don't Get Scammed, Don't Get Hacked, downloads, Freeware, Internet Safety Tools, Mac, Software, Spyware - Adware Protection, System Security, Windows 7, Windows Tips and Tools, Windows Vista, Windows XP

36 responses to “Steer Clear of Malware Web Sites With ClearCloud DNS

  1. greg

    I decided to give this one a trial run. I hope it works out. I have Vista and a lot programs don’t play nice with it. I know I have to be careful because I have an infinity for security programs. LOL


  2. Liam O' Moulain

    Another good one Bill. I just tried this out and it works just as you described.



  3. John


    Yet another one to add to the collection. Seems to be working as described and have not noticed any hit in speed at all which is good.

    Did run through VT and it did come up with one query, “PUA.Packed.PECompact-1” whatever that is?


    • Hey John,

      PUA.Packed.PECompact-1, is a generic Trojan downloader, but…. There’s always that but, huh?

      ClamAv, I suppose is OK operating in Linux, but in Windows it has an intolerably high false positive ratio. It shouldn’t be part of VT, in my view.

      Good to see you installed this though – should keep you a little safer.



  4. Mal

    Hey Bill,

    Will definitely give this a go. I ditched Norton DNS a while back, after that strange behaviour we spoke about. So it would be good to get something like this back in operation.


  5. TeXaCo

    Hey Bill,

    I have it running now, I have not hit any sites that it has blocked as of yet but were running it through the mill.



  6. Charlie

    Hi Bill:

    Somehow, I thought I learned about this from you several weeks ago. Works great, and totally easy to set up. Everyone should use this!

    • Good to see you here Charlie.

      I mentioned this in the Daily Net News column, back in mid July, so that’s probably what you’re referring to. But, I didn’t do any testing on it until now. Glad I did – just as you say, it’s easy to set up.

      Now, if you and I and TeX, and other readers here, can convince more people to use it – we could all be a little safer.


  7. John Bent

    Hi Bill

    This sounds good. I’ve been using Open DNS since you recommended it. Is there anything to be gained by replacing it with Clear Cloud?

    Kind regards


    • Hi John,

      No, I don’t think so. One of the benefits of staying with what we know is – “it’s what me know”. A bit redundant, but you see my point. Unless there are substantial benefits to new software, I tend to stick with what I’ve become use to.



  8. Bill H.

    This is a useful service but in testing with DNSBench from it is a good bit slower than other available DNS servers that you have a choice from. But for the amount of protection it provides a few “seconds” really don’t amount to much and is not a significant reason not to use the service.

    • Hey Bill,

      I agree – increased security can occasionally be slightly annoying. Top notch idea to test this with DNSBench – definitely a superior application.

      Thanks for commenting.


  9. Gary L

    I would personally try to vary the source of my layers of defense, e.g. if using Sunbelt AV (VIPRE), use a different DNS filtering service than Sunbelt. (even though Sunbelt makes a great product) to increase the possibility of a wider filtering “net”. YMMV.

  10. Willing to give it a try

  11. coppertop

    It’s pretty kewl.
    Been using ClearCloud for over a month now & seen it “in action” a few times.
    Kinda neato seeing it block something from happening before “it” gets there.
    It’s a no-brainer as far as I’m concerned to have this on the go.

  12. Ted Lundgren

    Why would I even try this?

  13. Frank

    When I changed my AD DNS Forwarders to use IP 95 percent of my emails began going into the Vipre spam folder. When I removed the IP legit emails began going into the Inbox. Vipre version 3.1.25811.

  14. 1

    imo, security (especially for the less-witting) is more vauable than dns lookup speed.
    “949 people read this article yesterday and, 370 of them downloaded the application”
    based on referrer?
    and then you might wonder how many page-visitors simply entered the sunbelt dns ipa?
    btw, doesn’t clearcloud and similar reputation services need to monitor target pages for hacks? eg, fauxnews or cnn might get hacked for a few hours, then soon clean themselves.

  15. Pingback: Defensive Downloading – The Basics « Bill Mullins' Weblog – Tech Thoughts

  16. hipockets

    Thanks for the article! Download and installation was trouble free, but then I could not connect to any sites.

    It took me a few minutes to realize that I had to reboot in order to load the new settings. Guess I’m ” a low level user” ! :>)

    So far, I do not see any delays in loading a site.

    Off topic, would you comment on using two firewalls if the computer has enough resources? There are several utilities that can set a delay time for loading an app at start-up, so one firewall could be loaded before the other. This seems like a good idea, but, then, I’m only “a low level user”. :>) :>)

    Incidentally, I’m now using the free Comodo firewall.

    • Hey Hipockets,

      There’s no advantage in running 2 Firewalls simultaneously. There is, in fact, a good chance for conflict. Since you’re using the Comodo FW (one of the best), I don’t recommend an additional FW.

      I will say, that I have known people who have run 2 FW back to back – generally in instances where the Windows FW has not been turned off following the installation of a third party FW.

      I don’t agree that you are a “a low level user”. 🙂