Content Focus 4 Scope 4 ... DSB icon colors 13 ... DSB will be installed in silent mode, but the system will be restarted without notice

Content

Focus 4

Scope 4

Audience 4

1

Detect Safe Browsing

Introduction 5

System Requirements 6

2

Application Installation

General Mode 7

Silent Mode 11

3

Management Console Execution

Opening the Console 13

DSB icon colors 13

Minimizing the console 14

4

Management Console Operation

How do I scan my computer? 16

How do I delete the malicious entries? 18

How do I identify the malicious processes? 19

How do I define whether an entry is malicious or not? 19

How do I go to the Protected Sites? 20

How do I avoid entering Sites that are impersonating others? 21

How do I avoid entering Fraudulent Sites on the web? 21

Real-time malicious connection analysis 22

How can I unblock a process in the Quarantine? 22

How do I review the generated reports? 24

5

Management Console Configuration

Analysis Settings 25

Connection Settings 29

Language Settings 30

Entries classified as valid by the user 31

Technical Support 33

Content

Software Version 35

6

Application Update

Update execution 37

7

Uninstalling the Application

General Mode 38

Silent Mode 38

8

Frequently Asked Questions

How Do I Disable the DSB Secure Keyboard Entry Option? 40

Are There Any Known Compatibility Conflicts with Third Party Software? 42

4

w w w . e a s y s o l . n e t

Focus This user manual describes Detect Safe Browsing features, as well as the process to use and configure the application.

Scope This user manual shows the general steps to follow in the Management Console

offered by Detect Safe Browsing, from the application installation to its

uninstallation.

Audience This manual is addressed to end users receiving the Detect Safe Browsing

installation pack through the company that hired the services offered by Easy

Solutions.

5


1 Detect Safe Browsing

Introduction Detect Safe Browsing (DSB) from Easy Solutions is a tool created to protect end users from electronic fraud modalities, commonly used on the Internet.

Within the protection capabilities of DSB, you will find the connection analysis and system-scanning feature. Said scanning identifies the following possible attacks:

Malware: Malicious software that attempts to affect the information integrity of the device.

Pharming: Manipulation of system information performed by non-authorized users, who re-direct the access from transactional or banking websites to fake sites, in order to commit fraud.

If DSB identifies any of these attacks, it will block the threat and inform the user about the security incident.

Every time a security incident occurs, it will be reported to the Easy Solutions laboratories for analysis, continuously improving the security level of your system. The option to send these incidents is active by default in the DSB Settings menu. For further information, refer to the Analysis Settings section.

6


Detect Safe Browsing

System Requirements In order to install DSB, your computer must meet the minimum system requirements below.

Operating System:

o Windows Vista SP2 (32 Bits or 64 Bits).

o Windows 7 SP1 (32 Bits or 64 Bits).

o Windows 8 (32 Bits or 64 Bits).

o Windows 8.1 (32 Bits or 64 Bits).

o Windows 10 (32 Bits or 64 Bits).

Processor: Pentium 4 2.0 GHz or higher.

RAM Memory: 512 MB or higher.

Free space in disk: 40 MB.

Internet connection: Wired, ADSL, or any equivalent broadband connection (512 Kbps or higher).

Browsers:

o Internet Explorer 9 - 11.

o Google Chrome 47 - 55.

o Firefox 43 - 50.

o Microsoft Edge.

You must have administrator permissions in order to install DSB.

7


2 Application Installation

General Mode 1. Double click on the Detect Safe Browsing Installer.exe icon.

2. A new window will display the DSB download process:

3. Then, you can select the installation language. Currently, DSB is available in English, Spanish and Portuguese.

4. The DSB installation wizard will open.

8



5. Before beginning the installation, read carefully the license terms of agreement, check the box: “I have read and accept the terms…” and click on Next.

9



Note: During this process, it is possible that the installer requests to close one

or more applications. Close them manually or let the installer automatically

close them.

Then, the installation of all DSB components will start.

6. Once the installation is complete, you will see a confirmation message; click on Finish.

10



Note: Once the installation is finished, restart your computer in order to

ensure full protection.

11



Silent Mode Another simple and efficient way to install DSB, is to carry out the process through commands from the Windows console, this allows to execute the installation in the background:

1. In the Windows taskbar, type "cmd" and select the option as shown below:

2. Enter the path in which the DSB installation folder is located. For example:

cd C:\Users\Public

3. Type:

Detect Safe Browsing Installer x.x.x.exe /S /norestart

Installer name: Detect Safe Browsing Installer x.x.x.exe

Parameters: /S /norestart

12



When executing the DSB installer, it is possible to add the parameters below:

Parameter Description

/S Silent installation (uppercase parameter)

/norestart

For devices running Windows 7 or higher, DSB requests restarting the system in order to complete the installation process. With this instruction, the device will not restart (parameter in lowercase).

/uninstall Uninstalls DSB if there is any existent version (lowercase parameter).

4. At the end of the process, you can start using DSB.

Note: If only the parameter “/S” is executed, DSB will be installed in silent

mode, but the system will be restarted without notice. To avoid a system

restart, add the parameter /norestart.

13


3 Management Console Execution

Opening the Console To open the DSB Management Console, double click on the DSB icon located in the notification area of the Windows taskbar.

You can also right click on the DSB icon and select the Open option in order to open the Management Console.

DSB icon colors DSB performs a license validation process every time it starts. Then, the DSB icon will be shown in one of the colors below:

Green: The product license is active.

Orange: The product license is still being validated.

14



Red: The product license could not be validated due to Internet connection problems.

Minimizing the console The DSB Management Console can be hidden while keeping the protection of the system active.

To minimize the console, use one of the following options:

Click on the Close button:

Click on the DSB icon located on the task bar, and select the option Hide:

15



When you minimize the DSB management console for the first time, the system will inform that the application is still active with the notification below:

16


4 Management Console Operation

Once the DSB Management Console is executed, the main window will open. On the left side, you will find the actions menu where you can control different DSB options.

How do I scan my computer? When scanning your computer, DSB will look for:

Malicious entries in the connection records of your system, located in the Hosts file.

Processes running in your system, and that were detected as dangerous.

Note: The Hosts file of the operating system has the correspondence between

the Internet domains and their IP addresses. If this file is modified, you can be

at risk of entering fraudulent sites.

1. Click on the Scan [A] option located in the actions menu, and then click on the Scan [B] button.

17



2. Then, DSB will start the device scanning.

3. If your computer is free of malicious entries and running processes, the following message will be displayed:

18



How do I delete the malicious entries?

1. If DSB detects any malicious entry in the Hosts file of your system, the following message will be displayed:

2. Click on the Quick Fix option in order to delete the malicious entries marked with an “X” on the left side. DSB will confirm the process with the message below:

19



How do I identify the malicious processes?

Once DSB scans the system, the Management Console will show the malicious processes (marked with an “X” on the left side) through the message below:

How do I define whether an entry is malicious or not?

If DSB reports a threat that you consider to be a reliable site, you can classify it as valid, by following the steps below:

1. Click on the Tag as Valid option located at the right side of every reported address. Once you have clicked on Tag as Valid, a checkmark will appear on the left of the URL indicating the approved status.

20



2. After tagging the address, click on the Quick Fix option. To reverse this procedure, follow the steps described in the Entries classified as valid by the user section.

How do I go to the Protected Sites?

DSB offers direct and trusted access to the web pages listed on the Protected Sites section. Safe access is available through either the Management Console or any web browser.

1. Click on the Protected Sites option in which you will find the websites to go to, included in DSB by default.

21



2. Select the website you want to browse, and then click on the Go to option, or double click on the web address.

How do I avoid entering Sites that are impersonating others?

DSB guarantees the authenticity of the Protected Sites that are browsed, allowing the end user to enter the correct site even if a pharming attack has been detected.

How do I avoid entering Fraudulent Sites on the web?

DSB searches for the URL address in the Black List of the Easy Solutions laboratories. If the search matches any record in the list, the URL will be immediately blocked and the following message will be displayed:

22



Real-time malicious connection analysis

DSB blocks Internet access for processes attempting to connect to URLs previously registered in the Blacklist (for more information about the Blacklist, please refer to the section: “How do I avoid entering Fraudulent Sites on the web”). All blocked processes will be isolated in Quarantine, which can be accessed from the DSB Management Interface.

For example, if the Keylogger.exe process attempts to connect to a blacklisted URL, DSB will display the following message:

Additionally, DSB will block and send Keylogger.exe to Quarantine, disabling all the established Internet connections of said process:

To enable blocked processes, follow the steps in the section: How can I unblock a process registered in the Quarantine?

How can I unblock a process in the Quarantine?

In case you consider that one of the processes (registered in the DSB Quarantine) is trustworthy, you can enable it back by following the steps below:

1. In the DSB Management Interface, go to the menu Scan.

2. Click on Quarantine.

23



3. Next, you will see a pop up window displaying the blocked processes. Uncheck the box located on the right of the process:

4. Click on Save. DSB will display the following message notifying you about the risks of allowing the process to access the internet. If you are sure of this action, click on Allow.

24



5. Now, the process will have internet access but it will not be eliminated from the DSB Quarantine.

Note: To disable Internet access for a process deemed as reliable, return to

the DSB Quarantine and check the corresponding box on the right of the

process.

How do I review the generated reports?

1. Select the Status option to open the DSB report calendar, which will show the number of malicious entries (red icon).

2. Click on the red tag of a specific date. The incidents report which lists the malicious entries and processes reported by DSB will show the following window:

25


5 Management Console Configuration

You can configure the general DSB options using the Settings button located in the actions menu of the Management Console.

Analysis Settings This section is located at the top of the console, and consists of five options that can be enabled or disabled, according to your needs.

Scan hosts file: Searches for new entries and records in the system's hosts file. It is recommended to keep this option enabled.

Scan for malicious processes: Reviews the processes that are being executed during the system scanning. It is recommended to keep this option enabled.

Submit anonymous activity to EasyLabs: DSB will send anonymous information to the Easy Solutions laboratories (EasyLabs). Additionally, when requiring technical support (see Technical Support), the anonymous register of DSB activity will be attached to the generated ticket. It is recommended to leave this option active.

26



Enable web analyzer: This functionality blocks phishing attacks when the user attempts to enter a website that has been reported as malicious. Every time the user goes to any of these sites, a message will be displayed when avoiding the attack. See the How do I avoid entering Fraudulent Sites in the web? section.

If you disable this option, the system will display the following confirmation message:

Enable secure keyboard entry: By having this feature enabled, DSB will prevent information extraction during Protected Sites browsing, from malware that captures data entered through a keyboard (keyloggers).

This function is enabled by default; however, DSB may automatically turn it off in case it is not compatible with another application installed in your device. Placing the mouse pointer over this option, will show information about the incompatibility.

When enabled, if you manually disable this option, the system will display the following confirmation message:

27



Notice that when the five parameters are activated, the DSB Protection Status is “Full”, this can be verified on the status main screen:

Otherwise, if you deactivate one of the settings (except for the parameter Submit anonymous activity to EasyLabs), the Protection Status will change to “Partial”:

In the example below, the parameter Scan for malicious processes has been disabled; therefore, the Protection Status switches to “Partial”:

28



However, if the scan for malicious processes option is disabled along with the web analyzer and the secure keyboard entry, the Protection Status will change to ''Off' as shown in the example below:

29



Connection Settings You can configure the parameters of the Internet connection via proxy.

1. Click on the Connection Settings option.

2. A new window with the following options will open:

No Proxy: Enable this option if you browse the web without any proxy server.

Auto detect proxy settings for this network: Enable this option if you browse the Internet through a proxy server, and it is automatically detected according to your system configuration.

Manual Proxy Configuration: Enable this option if you browse the Internet through a proxy server, and you know the connection data.

30



3. Click on the Save button when you complete the configuration. Then, you will be asked to restart DSB in order to apply the changes.

4. If the connection data is wrong, the following notification message will appear in the taskbar.

Language Settings You can set the language of the Management Console to English, Spanish or Portuguese by following the steps below:

1. Click on Settings and select the language from the dropdown list.

31



2. Then, a pop-up window will ask to restart the Management Console in order to apply the changes.

Entries classified as valid by the user

1. Click on Settings.

2. You will find the list of all the web addresses that have been reported as suspicious by DSB, and tagged as valid by you.

3. Click on the Tag as Invalid option each record you want to delete, the checkmark on the left of the URL will change to an “X” indicating the status change from approved to disapproved.

32



4. Click on Save to apply the changes.

5. At the end of the process, these records will be removed from the trusted entries list for the DSB user.

33



When the system scanning is executed, the malicious website will be reported. If you want to delete it, refer to the How do I delete the malicious entries? section.

Technical Support According to the configuration determined for your company, DSB will provide you one of two possible options to report a support case.

Option 1: Support ID Dialog

Start a support case by following the steps below:

1. Click on the Settings menu option located at the left panel.

2. Click on the Technical Support button.

34



After clicking on the Technical Support button, a support ID will be generated to allow DSB collect anonymous information, which is necessary to provide you appropriate technical support.

Note: If you disabled the Submit anonymous activity to EasyLabs option in the

Settings section of the DSB console, the system will request the authorization

to submit anonymous information.

Email [email protected] (include the support ID and the name of your company in the email’s subject) describing the issue you are experiencing with DSB.

Option 2: Support Form

Start a support case by following the steps below:

1. Click on the Settings option located at the left panel.

2. Click on the Technical Support button.

mailto:[email protected]

35



After clicking on the Technical Support button, you will be provided a form; fill out the fields and then click on Submit to send your request to the support parties configured by your company.

Software Version To view the DSB version installed on the device, follow the steps below:

1. Click the DSB icon located on the taskbar and select About.

A window will pop up showing the DSB version number on the bottom right

36



37


6 Application Update

Update execution If DSB detects application updates, you will be notified through the following message:

1. Click on Yes to install the latest version.

38


7 Uninstalling the Application

This section will show you how to uninstall DSB. Although restarting your device after the uninstallation process is not a requirement, it is advisable to do so, in order to ensure a clear procedure.

General Mode 1. Click on the Uninstall option located in the Detect Safe Browsing folder within the Windows Start Menu.

2. A confirmation window will open. Click on Yes to continue.

DSB will be uninstalled.

Silent Mode Uninstall DSB using commands from the Windows console. This will help execute the process in the background:

1. In the Windows taskbar, type "cmd" and select the option as shown below.

39


Uninstalling the Application

2. Enter the path in which the DSB folder is located. For example:

cd C:\Program Files\Detect Safe Browsing

3. Type:

uninst.exe /S /norestart

Installer name: uninst.exe

Parameters: /S /norestart

DSB will be uninstalled in background.

40


8 Frequently Asked Questions

How Do I Disable the DSB Secure Keyboard Entry Option?

The DSB anti-keylogger protection feature may conflict with other anti-keylogger solutions. If you have another solution with anti-keylogger capabilities, you have two options to avoid conflict. You can either uninstall the existing solution, or disable DSB’s anti-keylogger protection. In order to disable the anti-keylogger component within DSB, follow these steps:

Note: The option to disable this feature is available in DSB since version 4.5.5

1. Open the DSB Management Console by double clicking on the DSB icon located in the notification area of the Windows taskbar. You can also right click on the DSB icon and select the Open option in order to access the Management Console.

2. Click on the Settings button located in the left-side menu:

41



3. Disable the Enable secure keyboard entry option:

4. When you uncheck the Enable secure keyboard entry option, the following warning message will appear:

42



5. Click on Turn Off.

6. Restart your Internet browsers (Internet Explorer, Chrome, Firefox or Microsoft Edge).

Are There Any Known Compatibility Conflicts with Third Party Software?

Detect Safe Browsing (4.6.2)

There might be incompatibilities concerning the Secure Keyboard Entry module of

DSB (also known as the anti-keylogger protection) and the software listed below. DSB

solves them by automatically turning off its own Secure Keyboard Entry module:

AVG Free Antivirus (ver. 16.111.77.97)

Kaspersky Total Security (ver. 17.0.0.611)

Malwarebytes Anti-Malware (ver. 2.2.1.1)

Sophos Endpoint Agent (ver 11.5.0)

Symantec Endpoint Protection (ver. 12.1.6)

The following application requires a change in its own settings, in order to solve the

incompatibilities with DSB:

Comodo Cloud Antivirus (ver 1.6)

In case there is a current installation of Comodo Cloud Antivirus already running in the end-user´s machine, the Comodo’s Sandbox feature is required to be disabled by the end user, in order to complete DSB’s 4.6.2 installation process.

43



Note: Comodo’s Sandbox feature can be enabled back once DSB’s installation

is over.

Documents

Content Focus 4 Scope 4 ... DSB icon colors 13 ... DSB will be installed in silent mode, but the system will be restarted without notice