README FIRST! Command AntiVirus for Windows 95 & Windows 98

Command Software is proud to introduce Command AntiVirus 
version 4.54 SP1 with our HoloCheck(tm) scanning technology.
Our HoloCheck scanning technology provides improved polymorphic 
virus detection and currently detects over 24,300 viruses.
Before installing or running Command AntiVirus for Windows 95 &
Window 98 the first time, please verify that your Command AntiVirus
disks are write-protected. If you suspect your computer has a virus,
boot from a floppy disk that is write-protected, and then scan
for viruses.
To insure that your system is completely virus-free, reboot your
computer immediately after installing Command AntiVirus, and perform
a manual scan of your local drives. This is especially important if
you have not been running antivirus software prior this installation.
For a list of international distributors of Command AntiVirus,
see the DISTRIB.TXT file.
The file called FILEINFO.TXT is a list of file descriptions and 
files that have changed since the previous release.
Please read the Multi-Platform Quick Start Guide that is included 
with the installation files. It provides installation instructions 
and an overview of Command AntiVirus for all platforms. The guide 
is located in a file named MQCKST.PDF. This file can be read with 
the Adobe(r) Acrobat(r) Reader that is included on the Command
AntiVirus CD.
The Command AntiVirus CD contains a folder named ADOBE. In
this folder, there is a README.TXT file that provides instructions on 
how to view the Multi-Platform Quick Start Guide. 
If you have downloaded Command AntiVirus, you will need Adobe 
Acrobat Reader to view the guide. You can download Acrobat
Reader from Adobe Systems Incorporated through our web site 
Notes on Command AntiVirus for Windows 95 and 98 (CSAV) 
Version 4.54 SP1 (Service Pack 1)
New virus signatures have been added in this release.
SCR (screen saver) and RTF (Rich Text Format) files are now
scanned by default. SCR files are scanned because they
are susceptible to some Windows 95/98 viruses. RTF files are
scanned because infected DOC files that have had their extensions 
changed to "RTF" can still infect other Word documents and
CSAV now scans for ASCII-based viruses such as BAT viruses, 
JavaScript viruses and malicious applications, and VBScript viruses.
CSAV also detects mIRC scripts containing malicious code.
Better detection for Excel macro and field viruses has been added.
The scanning of MDB files is improved. 
Disinfection for polymorphic viruses such as W97M/Class that are 
found in the wild is new and improved. Selective disinfection allows
you to remove the macro virus and all traces of the disinfection
process. In password-protected documents, CSAV removes the virus but 
leaves traces of the disinfection process behind. In both instances,
the original document is preserved.  
None for this release.
To update Command AntiVirus with this service pack, you must run
the service pack's SETUP.EXE program. Note that only the 
components that require updating will be modified.
If you plan to update to CSS Central version 1.04, update all
client stations to Command AntiVirus version 4.54 prior to performing 
the CSS Central update. This allows you to avoid complications 
that can arise due to changes that were made to the communication 
port settings in CSS Central version 1.04. 
Notes on Command AntiVirus for Windows 95 & Windows 98 
v. 4.54 
New virus signatures have been added for this release.
Command AntiVirus for Windows 95/98 is Year 2000-compliant. 
For more information regarding the functionality of Command 
Software products with regard to the Year 2000 issue, visit 
our web site at:
The scan engine has been optimized for faster scanning.
Specific improvements include faster on-access (real-time) scans
and faster scans of compound files such as Microsoft Word and 
Excel files.
Command AntiVirus for Windows 95/98 now detects Java viruses 
and Access 97 viruses. Disinfection ability will be added in an 
upcoming release.
On-demand scans now perform memory scanning by default.
Additional support for compressed executable files has been added. 
Specifically, compressed executables are scanned in memory. This
allows for faster scans of compressed files.
The server-to-workstation communications subsystem has been 
updated. As a result, the SETUP.INI file now contains a section 
called [PROTOCOLS]. You can use the keys in that section to:
	Install the TCP/IP agent
	Install the IPX/SPX agent	
	Change the default IP port
	Change the default SPX port	
Also, the default IP port has been changed from 2411 to 2412. 
The default SPX port remains 34258. 
To provide improved compatibility with a variety of e-mail 
systems, CSAV now keeps MAPI sessions open only as long as
needed for individual operations. Prior to this, MAPI sessions
remained open as long as CSAV was running.
WINTDIST.EXE is now provided with CSAV for Windows 95/98. This
file automatically installs Windows Internet (WinInet) API 
system files that are used to provide better FTP functionality. 
These files also automatically hang-up the connection 
established by scheduled FTP downloads made through our 
separate CSS Central product. The WinInet files also provide
CSAV with better error reporting. 
A situation that effected the Automatic Update process is fixed. 
The problem involved the Automatic Update feature 
not retaining the automatic update path in the Windows registry.
Thus, subsequent automatic updates could not take place.
A problem with F-AGENT causing a general protection fault
in "module unknown at 0000:00000001" which was then followed 
by a stack dump has been fixed. The situation reportedly 
occurred only in systems that were using WinFax Pro or Anubis.
Some users reported that, despite modifying SETUP.INI so that CSAV
could be installed without DVP (on-access scanning), DVP was
still being installed by CSAV. This is fixed. 
In the F-AGENT section of SETUP.INI, setting the "CopyFile=" and
"ModifyCfg=" keys to "NO" would not prevent F-AGENT from being
installed. This is fixed. NOTE: Please see related
SETUP.INI information in the Special Notes section of 
this README file for this release.
Drag-Drop and Right Mouse file scans worked correctly only on 
read-only files. Trying to scan files with other attributes 
resulted in an "Access rights violation" error. This is fixed.
Drag-Drop and Right Mouse file scans now function properly.
Difficulties encountered with boot sector scans of LS-120 floppy 
diskettes have been corrected.
Occasionally, F-AGENT created a blank taskbar button. This
is fixed. 
Microsoft Access (MDB) database files are now scanned by default. 
If you determine that real-time scans are noticeably slower, remove 
the .MDB extension from the Files To Include list. Then, create a 
scheduled scan task that periodically scans all the files in your 
Microsoft Access folders.
Unless you are reinstalling the same version of Command
AntiVirus, we strongly recommend that you do not modify the
"CopyFile=YES" keys in the SETUP.INI file. Changing the
CopyFile value to "NO" may prevent the proper execution
of the "ModifyCfg" and "MakeIcon" keys. These keys are used
in advanced kinds of installations. If you do not have an 
in-depth knowledge of the product, please do NOT alter 
these keys.
The Automatic Update feature does not update certain CSAV files.
These files are:
Do not place the above-mentioned files in the Automatic Update 
component update directory for CSAV for Windows 95/98.
To provide flexible multi-language support, the following
files are now included in the product:
	FPROTLNG.DLL -- the language file for F-PROT
	FAGENLNG.DLL -- the language file for F-AGENT
	OLEAUT32.DLL -- provides OLE Automation support
	WINTDIST.EXE -- WinInet (Windows Internet API) system 
			files in a self-extracting format
If you are using F-PROT.EXE in your Windows 95/98 AUTOEXEC.BAT,
you may encounter difficulties getting into the operating
system. This situation may be the result of a video driver 
problem. To correct the situation, modify your AUTOEXEC.BAT 
so that the DOS "mode co80" command appears immediately before
and after the "F-PROT" command. For example:
	MODE co80
        MODE co80
Notes on Command AntiVirus for Windows 95 & Windows 98 v. 4.52
New virus signatures have been added in this release.
On some computers, manually setting the "Files to Exclude"
attributes inside the SETUP.INI file resulted in those attributes 
not being saved. This situation has been fixed.
The situation where manual scans turned the Archive bit ON for
scanned files has been corrected.  This solves a problem that 
some of our users had in performing incremental backups. 
A fix has been implemented for a warning message that would 
appear after an automatic update. That message erroneously 
reported that CSAV's on-access protection was not loaded.
Occasional system crashes on shutdown were determined to be 
related to an interaction with WinFax Pro. The problem has 
been fixed. Some customers had erroneously attributed the 
problem to Internet Explorer 4.0.  General Protection Faults 
and stack dumps caused by a possible conflict between F-Agent 
and WinFax Pro have also been fixed.
Problems involving invalid page faults caused by either (A) an 
R-Mouse scan of any file that results in an e-mail notification 
of an infection or (B) enabling "Mail infected files," performing
an on-demand scan and then closing the GUI have both been 
Manually scanning a read-only NetWare directory with the 
Command AntiVirus GUI set to "Disinfect" or "Disinfect/Query" 
would result in constant rescanning of the first virus-infected 
document encountered. That problem has been fixed.
Difficulties involving e-mail notifications not being sent from 
on-demand scans have been fixed. Please note that, unlike on-demand
scans, on-access scans are not designed to generate e-mail 
When e-mail addresses were added to SETUP.INI, they would not 
appear in the e-mail Address Book. This has been fixed.
A problem involving the use of our CSS Central product under 
Windows 95 has been fixed. The situation involved downloaded 
files being deployed to the BASEDIR folder rather than to a 
sub-folder of BASEDIR. The downloaded files now deploy to the
proper folder.
If you have installed F-PROT for DOS under Windows 95/98 and your 
AUTOEXEC.BAT file contains the line "F-PROT /hard /today", you may
encounter either system freezes or extraneous characters on 
your display. To correct those problems, modify your AUTOEXEC.BAT 
so that the DOS "mode" command appears immediately before and after 
the "F-PROT" command. For example:
	MODE co80
        MODE co80
If you want to run F-PROT for DOS under Windows 95/98, modify your
computer's AUTOEXEC.BAT to use the "mode" command as mentioned
If you have difficulty installing CSAV for Windows 95/98 while running
Amwin metering software, there are two workarounds to the problem:
     A) Disable Amwin during the Command AntiVirus installation
        process. Or...
     B) Check if CSAV for Windows 95/98 is being installed to
        a folder consisting of a long folder name.  If so,
        install CSAV for Windows 95/98 to a folder with a short
        folder name (for example, C:/CSAV95). 
Notes on Command AntiVirus for Windows 95 & Windows 98 v.4.51
Command AntiVirus' HoloCheck(tm) scanning technology has been updated
to provide better detection and disinfection of Excel macro viruses.
We have also added heuristic scanning technology to provide greater 
protection against unknown virus threats.
Notes on Command AntiVirus for Windows 95 & Windows 98 (CSAV) v.4.50
Command AntiVirus boasts our HoloCheck(tm) scanning technology,
providing the most up-to-date virus prevention. The most important
benefits of this technology are:
  *  Simplified updates. You can now update the SIGN.DEF and
     Macro.def files (which contain the most current virus signatures)
     without reinstalling all of the components. This method adds
     speed and efficiency to the new version of Command AntiVirus.
  *  Superior polymorphic virus detection. CSAV now offers
     unparalleled protection and elimination of polymorphic viruses
     including the dreaded Morphine, Anxiety and Spanska.
  *  Scanning of embedded (OLE) documents. Not only do we scan
     documents, but if an infected document is embedded in an Excel
     spreadsheet or PowerPoint document, Command AntiVirus will catch
     it and save you from becoming infected.
  *  Support for nested zip files.
New virus signatures have been added in this release.
To support Centralized Administration, we have changed the way CSAV
for Windows 95 & Windows 98 is referenced in the registry. The
installation program will now install to the HKEY_LOCAL_MACHINE
rather than to the HKEY_CURRENT_USER. When we install the 4.51 version
the existing entry will be converted. To successfully convert registry
entries that are in the current user, that user must be logged in. If
multiple users of the same machine have installed CSAV, those registry
entries may be left unconverted, but this will not harm the protection
offered by Command AntiVirus.
We have significantly changed our automatic update features. You can
use the full capabilities of CSS Central to automate the download and
deployment of files or you can download manually and use the automatic
update features to distribute the updates. The directory structure now
utilized is different. We have provided utilities and features to
facilitate this migration. Documents explaining the upgrade process
from CSAV version 4.00 to CSAV version 4.50 as well as first time
installation and set-up are available. They can be found on the web 
through a link on the download page or by directly accessing the support
We are proud to announce that CSAV for Windows 95 & Windows 98 and
CSS Central are fully compatible with Windows 98.
The ability to add user-defined strings is not supported by the
new design of CSAV.  The architecture of our HoloCheck technology makes
this feature obsolete without compromising protection.
The rescue disk will now contain the RESCUE.DAT file. Due to size
limitations, the rescue disk is no longer bootable. You must have a
separate, clean, bootable floppy disk for your machine.
Command AntiVirus now fully supports Client32/IntranetWare. As a result,
you may notice that the access denied error messages have changed when
using these clients. You may see an error message stating the path
and name of the infected file followed by "Program Not Found" and
an input box for the location of the file, or you may see a message
titled "Error Copying File" with the text "Cannot copy :
The folder is empty".
The added support for Client32/IntranetWare includes DVP detecting
infections on a NetWare server and the ability to delete, disinfect,
and rename these infected files.
Due to changes in the functionality of the scan engine, the tab for
Memory Scanning under Preferences|Active Protection now only shows
one option. When enabled, the first 640k of memory will be scanned.
Media such as Jazz drives are reported by different operating systems
as either Fixed or Removable media. Because of this, they cannot be
classified by Command AntiVirus as one or the other. Jazz drives will
be scanned when Scan All Drives is selected or by the creation of
specific tasks.
Platform specific command line scanners, referred to as console
versions, are new to this release.  These are designed to coordinate
with the on-access scanners of their respective operating systems,
providing seamless integration and interaction.
Based on your system configuration and scheduled scans, you may
encounter low memory situations when scanning large drives or file
sets. If you encounter this situation, increase your pagefile.sys
by 20 mb.  Other remedies include scanning smaller file sets,
deselecting zip files or deselecting "Show All Files Scanned".
We recommend that you do not enable Scan All Network Drives from
any of our workstation products. Performance on busy servers
may be adversely affected by the additional network traffic.
CSS Central is a separate program with its own installation. If you
need access to this new feature set, please contact your sales
representative at 800-423-9147.
Adding long names, whether filename or extension, in the Files to
Exclude list (through Preferences|Files to Include/Exclude) will result
in the files not actually being scanned because of truncation of the
For former DataFellows customers only: If you use the silent
installation method, you must uninstall the DataFellows version
of anti-virus protection. This is because in the interactive
installation we ask you if you want to uninstall the DataFellows
product. Since we cannot do this for the silent installation, you
need to remove it manually.
Notes on Command AntiVirus for Windows 95 (CSAV) v.4.00
Using Automatic Update
Automatic update will only work if you have version 3.01/2.27a
installed prior to this update.
  Special notes for System Administrators:
1. In a shared location on the network, create a unique parent
   directory to store the .DEF and .FPT files.
        For example:  S:\NewFPROT
2. Download and extract the latest definition files and copy them
   to the unique directory.
3. Below the unique directory, create a subdirectory called SETUP.
        For example:  S:\NewFPROT\Setup
4. Copy all of the product files into this subdirectory.
   (Note: Copy the files from the product diskettes or from a
   downloaded copy. Do not use the files that are already installed
   in the installation directory.)
5. Make these changes to SETUP.INI
    A. If F-NET is currently installed, F-NET will be removed unless, prior to
    the update, you set the new version's SETUP.INI's "InstallFnet="
    value to "Yes"
       (For example: InstallFnet=Yes).
    B. Locate  AutoUpdateDir=   and type in the location of the unique
    directory (For example: AutoUpdateDir=S:\NewFPROT)
6. Save the changes.
7. Open F-PROT Professional and select Preferences|Advanced and then
   click on the Automatic Update tab.
8. Verify that the path is correct in the text box.
9. Select either "OK" or "Update Now".
If you select "OK" the update occurs automatically when the user
restarts the computer or if the user leaves the computer on, between
4 a.m. and 5 a.m.
If you are using UNC path names in the Automatic Update feature of
F-PROT Professional for Windows 95 version 3.01 and you are updating
to Command AntiVirus v.4.00, you must first install v.4.00's F-AGENT.EXE
and FACON32.DLL files. You can either perform a full installation of
this version of Command AntiVirus without using the update feature
or follow these steps:
1. Close F-AGENT (right click on the icon and select close.)
2. Copy F-AGENT.EXE and FACON32.DLL to your product directory.
3. After the two files are copied, restart F-AGENT to enable the
   automatic updating process.
For Automatic Update to work properly (silently and transparently)
from F-PROT Professional version 3.01 to Command AntiVirus
version 4.00, follow the steps above. Note that, from version
4.00 onward, automatic updates occur silently regardless of the
SETUP.INI settings.
New virus signatures have been added in this release.
A problem involving filenames with accented characters being
duplicated as zero-byte files after a scan has been corrected.
Two NETDISK-related issues have been addressed:
    1) NETDISK now functions normally. The problem involved a
       missing file on installation disk #3 that was required for
       proper NETDISK operation.
    2) Redundant screen messaging by NETDISK has been corrected.
A problem with F-AGENT loading the LANGUAGE.DLL has been corrected.
CSAV is an acronym for "Command AntiVirus" -- the new name of
our anti-virus product line. Prior to the name change, the product
line was referred to as "Command's F-PROT Professional."
If Command's F-PROT Professional is installed on the network and
workstations are accessing the F-PROT files, an update cannot occur
while those files are in use. For this reason, updates should be
processed when the workstations are not using
Command's F-PROT Professional. To update to Command AntiVirus
from Command's F-PROT Professional, make sure that all workstations
are shut down before starting the updating process.
If you wish to copy additional files during the installation process,
be sure that the files are located in the installation directory.
Then, in SETUP.INI, place the names of those files in the [UserFiles]
section.  To add files, you need to supply each file name with its
own "UserFile=" line.  For example, if you were adding files called
"file1.txt" and "file2.txt" the UserFile lines in the [UserFiles]
section would appear as:
If you choose to place an additional file (or files) in a
different directory and the [UserFile] section in SETUP.INI
has a "UserFile=" statements for that file
(for example, UserFile03=file3.txt), a "Browse" option appears
during the installation process. That option allows you to enter
the path leading to that file.
If you launch a task scan from the shared read-only network drive,
the error message "Could not write to Scan Network Drives" informs
you that the system could not write to the task directory file.
This is an operating system rights limitation that occurs on NT,
Netware or local drives when the shared folder is set to read-only.
To eliminate this error message, you can set the task files attribute
to read-only.
If you are using a MAPI mail system then, in the Command AntiVirus
SETUP.INI file, it is required that e-mail addresses
used for the CSAV messaging function have information in front of
the "@" symbol. For instance, "[email protected]" is a legitimate
address form. However, "" is an invalid address form.
Users of Internet Explorer 4.0 may find that the F-AGENT icon
does not appear in the system tray.  This situation usually occurs
when Internet Explorer 4.0 is configured to use its Active Desktop
feature. If you remove the Active Desktop feature, the icon
should display properly. Command Software is currently
investigating why the F-AGENT icon does not display properly
when Active Desktop is enabled.
Notes on Command's F-PROT Professional for Windows 95 v.3.01/2.27a
New virus signatures have been added in this release.
Selective disinfection of Office 97 documents is now possible.
Automatic updates can now be performed across networks.
Administrator privileges are required to perform such updates.
Each time F-AGENT is launched, it checks the .DEF and .FPT files.
If only those files have changed since the previous launching of
F-AGENT, then those files are updated. In addition, the SETUP.INI
file is also checked. If that file has been updated, then F-PROT
Professional for Windows 95 will perform a full silent update.
An Automatic Update tab is now available through the
Preferences|Advanced option. That tab contains (1) a text field
for setting the location of the remote setup files and (2) the
option to update F-PROT Professional for Windows 95 manually.
Users can now use task files located at an alternate location: the
location can be either local or remote. The alternate location can
be set in the newly added Alternate Task page located in the
Advanced Options menu item.
The Help files contain a new feature that provides Internet access
directly from the opening help screen. There are two icons available
for this purpose. One takes you to our home page and the other takes
you to the page for obtaining an update. You must have Internet
capability and a browser to use this feature.
We have modified our installation and uninstall programs. All options
available in the F-PROT Professional graphical user interface
are now configurable via SETUP.INI and are commented in that file.
The Add/Remove Programs uninstallation no longer leaves behind
occasional files or registry entries.
Disinfection of the Office 97 Laroux virus is now possible.
A memory-related problem involving IFSMGR has been fixed.
On rare occasions, blue screens were reported when scanning .XLS files.
That problem has been fixed.
The installation default for F-NET is now set to NO. If you need
F-NET installed, change its setting in the SETUP.INI file
to YES.
Real-time detection is not functional for networked drives running under
Novell NetWare Client 32. However, manual and scheduled scans function
Within the pathway for alternate tasks, the use of the
%UserID% parameter is not functional in this Beta. However that
functionality will be included in the commercial release.
The Internet feature in the Help files requires the presence of the
following files: INTETWH16.DLL, INETWH32.32 and SETBROWS.EXE. These
files need to be in the same directory as the help file.
Special Notes from previous versions of Command's F-PROT Professional
In an effort to reduce the size of the readme files we remove most of
the notes from older versions as they become less relevant. We leave
certain notes which are still pertinent.
Notes on F-PROT Professional for Windows 95 v2.27.1
DVP.VXD automatically deletes any infected file written to the
directory pointed to by the TEMP environment variable. This improves
F-PROT Professional's ability to handle e-mail attachments that
are infected.
Notes on F-PROT Professional for Windows 95 v2.27
For Administrators: There are 3 new settings available in the
SETUP.INI file. They are:
  ScanHMA=       This allows you to enter either YES or NO to
                 have F-PROT Professional scan the High Memory Area.
                 The default is YES. Example: ScanHMA=YES
                 Located in [ActiveProtection]
  InstallFNET=   This allows you to enter either YES or NO to
                 have F-PROT Professional install F-NET.EXE to the hard
                 drive. The default is YES. Example:INSTALLFNET=YES
                 Located in [F-PROT for Windows NT]
  F-NET.EXE provides workstation to FPN server communication, preserves
  the last access date when network files are scanned, and it allows
  compressed and migrated to be skipped during a network scan. If a
  person selects NO and already has the product installed, it will
  still remove F-NET on the next installation. This setting should be
  used if you are not using Netware servers, otherwise, F-PROT32 may
  give an error saying "Unable to propagate servers ".
  PrevReq=       This allows you to enter either YES or NO to
   PrevReqMsg=   have F-PROT Professional check to see if a previous
                 version of F-PROT Professional is installed on your
                 system. This is useful in preventing an unauthorized
                 installation. The default is NO.
                 Example: PrevReq=YES. If you use this option you can
                 also enter a custom message. Example:
                 PrevReqMsg=Call Ext.12 if you wish to install F-PROT
                 Located in [SETUP]
Modifications should be made to SETUP.INI prior to installation.
Command Software Systems has greatly expanded its technical support to
include a variety of electronic services. You may contact us at any one
of the following:
Command Software Systems, Inc.
1061 E. Indiantown Rd., Suite 500
Jupiter, FL  33477
     Voice: 561/575-3200 8:00 am to 8:00 pm EST.
     Fax: 561/575-3026
     BBS: 561/575-1281
     CIS: 75300,3645 (Type GO PCVENF at any CIS ! prompt. We're in section 9.)
Internet: [email protected], [email protected]
World Wide Web:
In Europe contact:
Command Software Systems, Inc.
UK Branch
Ground Floor
Millbank Tower
London SW1P 4QP
   Voice: +44 20 7 9319301
     Fax: +44 20 7 9319302
     BBS: +44 20 7 9319303
Internet: [email protected]
          [email protected]
          [email protected]









Command Software, Inc. Command Software Systems, Inc.
1061 East Indiantown Road · Suite 500
Jupiter · FL   33477
Phone: (561) 575-3200