Anti-Executable Standard User Guide
Last modified: January, - 2011 Faronics Corporation. All rights reserved. Faronics, Deep Freeze, Faronics Core Console, Faronics Anti-Executable, Faronics Anti-Virus, Faronics Device Filter, Faronics Power Save, Faronics Insight, Faronics System Profiler, and WINSelect are trademarks and/or registered trademarks of Faronics Corporation. All other company and product names are trademarks of their respective owners.

Contents

Preface. 5
Important Information. 6 About Faronics. 6 Product Documentation. 6 Technical Support. 7 Contact Information. 7 Definition of Terms. 8

Introduction. 10

Anti-Executable Overview. About Anti-Executable. Anti-Executable Editions. About Faronics Core Console. 11 11
System Requirements. 12 Anti-Executable Licensing. 13
Installing Anti-Executable. 15
Installation Overview. 16 Installing Anti-Executable. 17
Using Anti-Executable. 21
Accessing Anti-Executable. 22 Using Anti-Executable. 22 Status Tab. Verifying Product Information. Enabling Anti-Executable Protection. Anti-Executable Maintenance Mode. Exporting Anti-Executable Configurations. Importing Anti-Executable Configurations. 41 43
White List Tab. Using the White List Editor. Creating a New White List. Activating a White List. Add or Remove a Column in the White List Editor. Adding a Publisher or a File/Folder to an Existing White List. Adding Executables or Folders to an Existing White List using the White List Editor. Black List Tab. Using the Black List Editor. Creating a New Black List. Activating a Black List. Add or Remove a Column in the Black List Editor. Adding a Publisher or a File/Folder to an Existing Black List. Adding Executables or Folders to an Existing Black List using the Black List Editor.
Adding Executables to the Active White List. 35..
Users Tab. 44 Adding an Anti-Executable Administrator or Trusted User. 44 Removing an Anti-Executable Administrator or Trusted User. 46
Enabling Anti-Executable Passwords. 47 Termporary Execution Mode Tab. 48 Activating or Deactivating Temporary Execution Mode. 48 Setup Tab. Setting Event Logging in Anti-Executable Monitor DLL Execution. Anti-Executable Stealth Functionality. Deep Freeze Maintenance Compatibility. Customizing Alerts. 51 51
Uninstalling Anti-Executable. 53
Uninstalling using the Setup Wizard. 54

Preface

Anti-Executable protects computers by preventing unauthorized executables from running.

Topics

Important Information Technical Support Definition of Terms

Important Information

This section contains important information about your Faronics Product.

About Faronics

Faronics delivers market-leading solutions that help manage, simplify, and secure complex IT environments. Our products ensure 100% machine availability, and have dramatically impacted the day-to-day lives of thousands of information technology professionals. Fueled by a market-centric focus, Faronics technology innovations benefit educational institutions, health care facilities, libraries, government organizations, and corporations.

Product Documentation

The following documents form the Faronics Anti-Executable documentation set: Faronics Anti-Executable User Guide This document guides you how to use the product. Faronics Anti-Executable Release Notes This document lists the new features, known issues and closed issues. Faronics Anti-Executable readme.txt This document will guide you through the installation process.

Term Identifile

Definition The Identifile Database provides information about executable files. The Identifile details include Manufacturer Name, Application Type, Product Name, Product Version, File Name and Special Code. Special Code is a single character field that identifies special file signature entries, such as malicious code signatures or other types of special entries. Special Code can have values such as M (malicious file), S (special file) or it can be blank (normal file). When in Maintenance Mode, new executable files added or modified are automatically added to the Active White List. When set to Enabled, this setting indicates that Anti-Executable is protecting a computer with an Active White List. When set to Disabled, any executable can be launched on the computer. A Publisher is the creator of a file. A Publisher validates the file by digitally signing it. Anti-Executable uses the Publisher name to identify the files created by a Publisher. Stealth Mode is a group of options that control visual indication of Anti-Executable's presence on a system. Stealth Mode provides the option to the Administrator to hide the Anti-Executable icon in the Windows system tray, prevent the Alert from being displayed and prevent the splash screen from being displayed. Temporary Execution Mode allows users to run any executable without any action from Anti-Executable for a specified period. During this period, the user is allowed to run any executable without any Whitelist restrictions. A Trusted executable can launch other executables that themselves are unauthorized. An Unauthorized executable is one that is not in the Active White List and can not be launched. A folder, and its sub-folders, from which any executable can be launched. A list of publishers, executables, or folders containing executables, that are allowed to run by Anti-Executable. Any client or remote machine using the Operating System specified in the System Requirements.
Maintenance Mode Protection

Publisher

Stealth Mode
Temporary Execution Mode Trusted Executable Unauthorized Executable White Folder White List Workstation

Introduction

Anti-Executable Overview System Requirements Anti-Executable Licensing

Anti-Executable Overview

About Anti-Executable
Anti-Executable prevents unauthorized executables from running, giving IT administrators total control over the computer. Any executable file that is not part of a list of files called the White List will not run. This White List is under the complete control of authorized users who can edit it, modify it, erase it, etc. Nothing gets past Anti-Executable: attempts to rename the executable files, or run them from removable storage devices, or even from the network will be blocked, leaving your machines safe and saving you time, money, and effort.

7. Click Finish to complete the installation.
8. Following a successful installation a restart is required. Click Yes to restart immediately or No to restart later.
An immediate restart is recommended following installation. If the Enable check box is selected in the Automatic Scanning and White List Creation dialog, Protection is enabled and there is an Active White List when the computer restarts. If the Enable check box is not selected in the Automatic Scanning and White List Creation dialog, Protection is disabled and there is no Active White List when the computer restarts.

Using Anti-Executable

This chapter describes the procedure to access, configure and use Anti-Executable.
Accessing Anti-Executable Status Tab White List Tab Adding Executables to the Active White List Black List Tab Users Tab Termporary Execution Mode Tab Setup Tab
Accessing Anti-Executable
Anti-Executable is accessed by holding down the Shift key and double-clicking the Anti-Executable icon in the Windows System Tray. If the icon is not present, the Ctrl + Alt + Shift + F10 hotkey sequence can be used. If you are an Administrator, you will have access to the Status, White List, Black List, User and Setup tabs. If you are a Trusted User, you will have access only to the Status, White List, and Black List tabs. External users are not permitted to access Anti-Executable. Anti-Executable Administrator and Trusted Users must enter the appropriate passwords to access Anti-Executable if those passwords have been set.
Following installation, Anti-Executable must be configured. Anti-Executable Administrators can access all the following tabs: Status Displays the version of Anti-Executable installed, whether newer versions of Anti-Executable are available and allows user to import and export configurations, and set Anti-Executable Protection to Enable, Disable or Maintenance Mode. White Lists Used to create, edit, and apply White Lists. Black Lists Used to create, edit, and apply Black Lists. Users Used to add Administrators, Trusted users and their passwords. Temporary Execution Mode Used to activate Temporary Execution Mode where any executable can be launched on the workstation. Setup Used to configure Stealth Mode, manage logging, alert messages, and enable Anti-Executable compatibility with Deep Freeze.

To create a new White List complete the following steps: 1. Shift+ double-click the Anti-Executable icon in the System Tray. Alternatively, you can also use the Ctrl+Alt+Shift+F10 hotkey. Specify the Administrator password to logon to Anti-Executable. Click the White List tab.Click New. The White List editor appears:
2. To determine the available applications, click Scan, select a drive or directory. Use Ctrl+Click or Shift+Click to select multiple drives or directories to scan the workstation locally. Click My Network Places, browse and select a remote workstation for remote scanning. You can also enter the UNC path in the Enter UNC Path field. Select one of the following options: Add files fingerprint to the White List- to add the files unique identifier the White List. All files whose fingerprint is added to the White List will be allowed to run. Add the files publisher to the White List if the file is digitally signed - to add the files publisher to the White List. All files digitally signed by the publisher in the White List will be allowed to run. Add the files publisher to the White List if the file is digitally signed. Otherwise, add the files fingerprint - to add the files publisher if the file is digitally signed, or add the files fingerprint if it is not digitally signed. Include Sub-Folders when scanning - to select all the sub-folders within the selected folders while scanning. Include DLL files when scanning - to include DLL (Dynamic Link Library) files while scanning.
The Scan feature searches the selected location, and its sub-directories (if the option is selected), for any executable files. (Files containing the extensions:.scr,.jar,.bat,.com, or.exe. Dynamic Link Library files with the extension.dll can be managed if configured in the Setup tab). The duration of the scan depends on the locations size and number of executables found within. 3. Click OK. The Building White List for. dialog appears to show the progress:
4. Once the scan has finished, Anti-Executable checks if you want to proceed. Click OK.
5. A populated White List appears. Folders and executables can be added on an individual basis. Click Add and select the folders or executables to be added to the new White List. If a folder is added, the executables within that folder, and its sub-folders, are permitted to launch. To remove a folder or executable, select it and click Remove. This does not remove the folder or executable from the system. To merge the folders or executables with an existing White List, click Merge. The Open dialog appears. Select an existing White List and click Open. The contents of the existing White List are merged with the scanned list of files or executables. Click Save to save the

4. Click OK. The Publisher or the File/Folder is added to the White List.
Adding Executables or Folders to an Existing White List using the White List Editor
In addition to populating a new White List, the Scan feature allows executables from a specific location to be added to an existing White List. This location can be local, external, or on a network. Click Scan to launch the White List Scan Destination dialog. This will search the selected location for any executables. Once the scan has finished, the results can be merged into the White List. Individual folders and executables can be added by clicking Add. To open a previously created White List, click Open and browse to the White List file. Make any changes necessary with Add, Remove, Scan, or Merge buttons. These buttons add and remove executables and folders from the White List. They do not modify actual files or folders on the machine. Click the White List Only button to delete the executables from the Black List and ensure that they are a part of only the White List. Multiple White Lists can be opened and edited at the same time. Only one White List can be set as an Active White List at a time.
Adding Executables to the Active White List
Executables can be added to the active White List by launching them. If the machine is in the protected state and an unauthorized executable is launched, the Anti-Executable Administrator or Trusted User is prompted with options to Allow, Deny, or Allow and Add to White List.
AllowPermits the executable to launch but does not add it to the Active White List. The next time the executable is launched, it will be blocked again. Deny The executable is not added to the Active White List and remains an unauthorized executable. It is not permitted to launch. Allow and Add to White List The executable is allowed to launch. It is also added to the Active White List, making it an authorized executable. Include all DLLs used by this programAll the DLL files used by the program are included in the action taken (Allow, Deny or Allow and Add to Whitelist).

External users do not have the necessary permissions to Allow, Deny, or Allow and Add to White List. External users attempting to launch executables not in the Active White List are notified that the executable has been blocked. Refer to the section on Customizing Alerts for more information.

Black List Tab

Anti-Executable allows the blocking of any executable on the Active Black List when Protection is set to Enable. Also included are Black Folders folders and their sub-folders from which all executables are blocked. There can only be one Black List active at a time. Consult the section titled Creating a New Black List for information on creating the first Black List.
Using the Black List Editor
The Anti-Executable Black List Editor is opened by clicking on the Black List tab and selecting New, Open, or Edit. The Black List Editor also appears when an individual Black List file is opened in Windows Explorer.
New Opens the Black List Editor and allows Anti-Executable Administrators and Trusted Users to create a new Black List. Open Opens an existing Black List for editing. Edit Opens the Black List editor to add or remove executables and/or folders to the Active Black List.
Creating a New Black List
Only Anti-Executable Administrators and Trusted Users can access the Black List editor. To create a new Black List complete the following steps: 1. Shift+ double-click the Anti-Executable icon in the System Tray. Alternatively, you can use the Ctrl+Alt+Shift+F10 hotkey. Specify the Administrator password to logon to Anti-Executable. Click the Black List tab. Click New. The Black List editor appears:
2. To determine the available applications, click Scan, select a drive or directory. Use Ctrl+Click or Shift+Click to select multiple drives or directories to scan the workstation locally. Click My Network Places, browse and select a remote workstation for remote scanning. You can also enter the UNC path in the Enter UNC Path field. Select one of the following options: Add files fingerprint to the Black List - to add the files unique identifier the Black List. All files whose fingerprint is added to the Black List will not be allowed to run. Add the files publisher to the Black List if the file is digitally signed - to add the files publisher to the Black List. All files digitally signed by the publisher in the Black List will not be allowed to run. Add the files publisher to the Black List if the file is digitally signed. Otherwise, add the files fingerprint - to add the files publisher if the file is digitally signed, or add the files fingerprint if it is not digitally signed. Include Sub-Folders when scanning - to select all the sub-folders within the selected folders while scanning. Include DLL files when scanning - to include DLL (Dynamic Link Library) files while scanning.

The Building Black List for. dialog appears to show the progress:
The Scan feature searches the selected location, and its sub-directories (if the option is selected), for any executable files. (Files containing the extensions:.scr,.jar,.bat,.com, or.exe. Dynamic Link Library files with the extension.dll can be managed if configured in the Setup tab.) The duration of the scan depends on the locations size and number of executables found within. 3. Once the scan has finished, Anti-Executable asks to merge the results into the new Black List. Click OK.
4. A populated Black List appears. Folders and executables can be added on an individual basis. Click Add and select the folders or executables to be added to the new Black List. If a folder is added, the executables within that folder, and its sub-folders are blocked. To remove a folder or executable, select it and click Remove. This does not remove the folder or executable from the system. To merge the folders or executables with an existing Black List, click Merge. The Open dialog appears. Select an existing Black List and click Open. The contents of the existing Black List are merged with the scanned list of files or executables. Click Save to save the
Black List with the same name. Click Save As to save the merged Black List with a different name. To search for a particular folder or executable, enter one or more characters from the folder name or executable name in the Search field. The list is filtered based on the characters entered. To sort the executables added by date, click the title of the Date column.
5. Specify any comments for any applications by clicking the Comment column. A text prompt appears allowing for any additional information to be entered. A description can also be added for the entire list in the space provided at the top of the Black List editor. 6. Click Save to save the Black List. Click Save As to save under a different name. Black Lists are saved in a proprietary format with the extension.aebl. Click Export to export a Black List to XML or CSV format. Black Lists in XML and CSV format can be opened and edited through Windows Explorer but can not be set as the Active Black List.

For more information about an executable, right-click the executable and select one of the following options: Google Search - The default browser is launched and the name of the executable is searched on www.google.com. Identifile details - The default browser is launched and Identifile details for the executable are displayed from the Identifile database. The Identifile details can also be viewed by right-click context menu in Windows.

Activating a Black List

After a Black List has been created, it can be set as the Active Black List by clicking the Browse button in the Active Black List section of the Black List tab. The browse button launches an Open dialog. Browse to the Black List and click Open.
Add or Remove a Column in the Black List Editor
Complete the following steps to Add or Remove Columns: 1. Open the Black List Editor. 2. Right-click on the column title and select Add/Remove Columns.
Adding a Publisher or a File/Folder to an Existing Black List
Complete the following steps to Add or Remove Columns: 1. Open the Black List Editor.

2. Click Add.

3. The Add to Black List dialog is displayed. Select Publisher or File/Folder. If you have selected Publisher, browse to select the file to add its publisher. The publisher name is displayed if the file is digitally signed. Alternatively, if you have selected File/Folder, browse to select the file or folder. You can also enter the UNC path in the Enter UNC Path field.
4. Click OK. The Publisher or the File/Folder is added to the Black List.
Adding Executables or Folders to an Existing Black List using the Black List Editor
In addition to populating a new Black List, the Scan feature allows executables from a specific location to be added to an existing Black List. This location can be local, external, or on a network. Click Scan to launch the Black List Scan Destination dialog. This will search the selected location for any executables. Once the scan has finished, the results can be merged into the Black List. Individual folders and executables can be added by clicking Add. To open a previously created Black List, click Open and browse to the Black List file. Make any changes necessary with Add, Remove, Scan or Merge buttons. These buttons add and remove executables and folders from the Black List. They do not modify actual files or folders on the machine. Click the Black List Only button to delete the executables from the White List and ensure that they are a part of only the Black List. Multiple Black Lists can be opened and edited at the same time. Only one Black List can be set as an Active Black List at a time.

Click on the Users tab and select the user to be removed. Click Remove. This does not remove the users Windows user account; the user has now become an external user.
Enabling Anti-Executable Passwords
As an added layer of protection, Anti-Executable can attach a password to each user group. Passwords only apply to the members of the associated groups. To specify a password, ensure the Enable check box is selected. Enter the password in the New Password and Confirm Password fields. Click Apply to save the changes.
Termporary Execution Mode Tab
Temporary Execution Mode allows users to run any executable without any action from Anti-Executable for a specified period. During this period, the user is allowed to run any executable without any Whitelist restrictions. Once the Temporary Execution Mode period ends, Anti-Executable is Enabled. The following options are available for Temporary Execution Mode:
The following users have access to Temporary Execution Mode - select the check box to allow specific set of users to activate Temporary Execution Mode on their systems. Select All Users, Anti-Executable users or Anti-Executable Administrators only. Temporary Execution Mode log - select the check box to create log files during Temporary Execution Mode. Number of log files - specify the number of log files (up to a maximum of 10). The logging information is stored in the files serially. For example, if there are 3 files A,B and C, Faronics Anti-Executable first writes the error logs to file A. Once file A is full, it starts writing to file B and finally file C. Once file C is full, the data in file A is erased and new logging data is written to it. File size - Select the size of each file in MB. There can be a maximum of 10 log files of up to 10 MB each i.e total 100 MB.
Activating or Deactivating Temporary Execution Mode
Temporary Execution Mode can be activated in the following ways: From Faronics Core:
Activating Temporary Execution Mode: Select one or more workstations and select Anti-Executable > Temporary Execution Mode > x minutes (select up to 60 minutes, 24 hours or 7 days) Deactivating Temporary Execution Mode: Select one or more workstations and select Anti-Executable > Temporary Execution Mode > Disable

From the workstation: Activating Temporary Execution Mode: Right-click on the Anti-Executable icon in the System Tray and select Temporary Execution Mode > x minutes (select up to 60 minutes, 24 hours or 7 days) Deactivating Temporary Execution Mode: Right-click on the Anti-Executable icon in the System Tray and select Temporary Execution Mode > Disable
The following icon is displayed in the System Tray at the workstation when Temporary Execution Mode is activated:
A message appears at the workstation 3 minutes before the Temporary Execution Mode ends.
Blacklist restrictions will remain in effect during Temporary Execution Mode.
Automatic Windows Updates will be disabled during Temporary Execution Mode.
The Whitelist must be updated if new programs are installed. Otherwise, the newly installed programs will not be allowed to run once Temporary Execution Mode is deactivated.

Setup Tab

The Anti-Executable Administrator can setup Logging to log various user actions, apply various settings for Stealth Mode, set up Alerts and enable Deep Freeze Compatibility.
Setting Event Logging in Anti-Executable
Select Log to File to log events to the log file. The log files are saved on the workstation at S:/AEE/AE.log.

Monitor DLL Execution

Select the Monitor DLL Execution check box to monitor DLLs. If this check box is not selected, the DLLs will not be monitored even if they have been added to the Whitelist or Blacklist. If a selected Monitor DLL Execution check box is cleared, it displays a message Do you want to delete all the DLL entries in the Whitelist and Blacklist?. Click Yes to delete all the DLL entries from the Active Whitelist and Active Blacklist and No to retain the entries.
Anti-Executable Stealth Functionality
Stealth Mode is a group of options that control visual indication of Anti-Executable's presence on a system. Stealth Mode gives the option to the Administrator to hide the Anti-Executable icon in the Windows system tray, prevent the Alert from being displayed and prevent the splash screen from being displayed.

When Anti-Executable is not visible in the system tray, Administrators and Trusted users can launch Anti-Executable through the Ctrl + Alt + Shift + F10 hotkey. Stealth functionality has the following options: Hide Notification prevents the Alert from being displayed. Hide icon on system tray hides the Anti-Executable icon in the system tray. Disable splash windows disables the Anti-Executable splash window that is displayed before Anti-Executable is launched.
Deep Freeze Maintenance Compatibility
This feature is applicable only when Faronics Deep Freeze and Faronics Anti-Executable are installed on the computer.
The Deep Freeze Maintenance Mode Compatibility feature allows the Administrator to synchronize the Maintenance Modes of Deep Freeze and Anti-Executable. By enabling the Enable Deep Freeze Maintenance Mode Compatibility check box, Anti-Executable will automatically enter Maintenance Mode when Deep Freeze enters Maintenance Mode (Deep Freeze reboots Thawed in Maintenance Mode). By setting both Deep-Freeze and Anti-Executable to be in Maintenance Mode at the same time, any executable that is added to the computer, will not only be added to the Active White List, but will be retained by Deep Freeze once it freezes back the computer after the Maintenance Mode ends. Anti-Executable will stay in Maintenance Mode until shortly before the Maintenance Mode of Deep Freeze ends. Once Anti-Executable exits Maintenance Mode, it will add any new or updated executable files to the Active White List. When Deep Freeze exits its Maintenance Mode, it will reboot the computer Frozen with the updated White List. It is not possible to set Anti-Executable to Maintenance Mode if Deep Freeze Maintenance Mode Compatibility is enabled and Deep Freeze status is Frozen. This is because, changes made to the computer will be lost on reboot. If Anti-Executable is disabled, and Deep Freeze enters Maintenance Mode, Anti-Executable will continue to be disabled. Maintenance periods triggered by Deep Freeze will take precedence over any other Maintenance periods scheduled on Anti-Executable. For more information on Deep Freeze, visit http://www.faronics.com/deepfreeze.

Customizing Alerts

Anti-Executable Administrators can use the Alerts pane to specify the message and an image that appears whenever a user attempts to run an unauthorized executable. The following messages can be set: White List violation message displayed when a White List is violated. Black List violation message displayed when a Black List is violated.
Enter a message or use the default message provided. This text will be displayed in all alert dialogs whenever a user attempts to run an unauthorized executable. Choose a bitmap image by clicking Change and browsing to a file. The selected image will accompany the text in the alert dialog. Alert messages display the following information: Executable location Executable name Default or customized image Default or customized message
Uninstalling Anti-Executable
This chapter explains the procedure to uninstall Anti-Executable.
Uninstalling using the Setup Wizard
Anti-Executable can only be uninstalled when logged in as a user with Anti-Executable Administrator privileges and when Anti-Executable Protection is set to Disable. Complete the following steps to remove Anti-Executable: 1. Double-click the.msi file used to install Anti-Executable. The Installation Wizard is displayed.
2. Click Remove followed by Next.

3. Click Remove.

4. Click Finish to complete the uninstall.
5. Following a successful uninstall, a restart is required. Click Yes to restart immediately or No to restart later.
An immediate restart is recommended following uninstall.

STANDARD

Getting Started

Overview

The purpose of this guide is to get Anti-Executable installed and running on your computer without any issues. It provides a reference for many common questions that arise when installing and using this software. Anti-Executable Resources User guides, video tutorials, white papers, and other documentation on Anti-Executable Standard are available in the Faronics Content Library at http://www.faronics.com/library.

What is Anti-Executable?

Faronics Anti-Executable ensures workstation protection and productivity by allowing only approved programs to run. Anti-Executable prevents malware, unwanted or unlicensed programs from running. System Requirements Anti-Executable can be installed on the following operating systems: 32-bit edition of Windows XP SP3 and 64-bit edition of Windows XP SP2. 32- and 64-bit editions of Windows Server 2003, Windows Server 2008, Windows Vista, and Windows 7. Editions for Windows Server 2003 and Windows Server 2008 as well as Enterprise editions can be downloaded separately from http://www.faronics.com. Hardware specifications are the same as required by the host operating system. -
Installing Anti-Executable
When installing Anti-Executable Standard, close and disable all background utilities and antivirus software. Complete the following steps to install Anti-Executable Standard: 1. Double-click the appropriate MSI file to begin the installation process: - AEStd_32-bit_en.msi can be installed on 32-bit editions of Windows XP SP3, Windows Vista or Windows 7. - AEStd_64-bit_en.msi can be installed on 64-bit editions of Windows XP SP3, Windows Vista or Windows 7. Read the License Agreement and click the I accept the terms in the License Agreement check box. Click Next to continue. Enter the User Name and Organization. Enter a License Key in the License Key field to install a fully licensed edition of Anti-Executable Standard. If the Use Evaluation check box is selected, Anti-Executable will run as an evaluation version and will be fully operational for up to 30 days after installation. Select the folder where Anti-Executable is to be installed. Click Next. Specify the password for the Administrator and Trusted user of Anti-Executable. If you want to set the password later, do not specify the password for the Administrator and Trusted user and click Next. If you want Anti-Executable to automatically scan the non-removable local drives to create a White List and enable Anti-Executable protection after installation, select the checkbox and click Install. Otherwise, just click Install.

4. 5. 6.

7. 8. 9.
Restart the workstation after installation has completed. After the restart, access Anti-Executables settings by holding down the Shift key and doubleclicking the Anti-Executable icon in the Windows System Tray. Alternatively, the CTRL + ALT + SHIFT + F10 hotkey sequence can be used. If you did not select the check box in step 6, create a White List on the White Lists tab and enable Anti-Executable from the Status tab. Refer to the Anti-Executable Standard user guide for detailed information about the product.
After the workstation restarts, the only indication that Anti-Executable is installed is the Anti-Executable icon that appears in the System Tray next to the clock. The evaluation version of Anti-Executable Standard expires 30 days after installation. Anti-Executable will not protect your computer when it is expired. To deploy Anti-Executable to workstations using the Silent Install System or as part of an imaging process, please refer to the user guide.
The Anti-Executable Standard User Guide is available at: http://www.faronics.com/library Free technical support is available to you during your evaluation period. Contact our Technical Support department at 800-943-6422 or through http://www.faronics.com/support For further product, pricing, and ordering information, please contact the Customer Service Department at (800) 943-6422 or by email at customerservice@faronics.com