Quick Start

README FIRST!: Command AntiVirus with F-PROT Professional® for NT Workstation

Command AntiVirus for NT Workstation
Command Software is proud to introduce Command AntiVirus Version 4.51
with our new HoloCheck(tm) scanning technology and CSS Central for true
centralized administration and deployment.  Our HoloCheck scanning
technology provides improved polymorphic virus detection and currently
detects over 20,200 viruses.
Before installing or running Command AntiVirus for the first time,
please verify that your Command AntiVirus disks are write-protected.
If you suspect your computer has a virus, boot from a floppy disk that
is write-protected and then scan for viruses.
To insure that your system is completely virus-free, reboot your
computer immediately after installing Command AntiVirus, and perform
a manual scan of your local drives.  This is especially important if
you have not been running anti-virus software prior to this.
For a list of international distributors of Command AntiVirus,
see the DISTRIB.TXT file.
The file called FILEINFO.TXT is a list of file descriptions and files that
have changed since the previous release.
Please read the Multi-Platform Quick Start Guide that is included with
the installation files. It provides installation instructions and an
overview of Command AntiVirus. To read the Multi-Platform Quick Start
Guide, double-click the file named MQCKST.EXE. The unzipped file
is an RTF file.
Please visit our web sites at or
for white papers on Centralized Administration and a User Guide
for setting up CSS Central. These papers cover both first time installations 
of CSAV version 4.51 and upgrading from CSAV version 4.0x.
Notes on Command AntiVirus for NT Workstation Version 4.51
Command AntiVirus' Holocheck(tm) scanning technology has been updated
to provide better detection and disinfection of Excel macro viruses.
We have also added heuristic scanning technology to provide greater 
protection against unknown virus threats.
We have added improved flexibility to the installation allowing the
installation of CSS Central to be turned off through the INI file.
We have modified the on-access protection so that system data files
are no longer scanned. This eliminates the possibility of their 
attributes being altered.
Scans after inactivity have been modified so that only one such scan 
runs at a time, and it stops when activity resumes.
Scans after Inactivity stop when activity resumes, displays the report
window, and does not reset the inactivity scan until the user responds.  
When scheduling scans or setting up tasks to scan Novell volumes 
using the Microsoft Client for NetWare, you must specify path names as
UNC drives rather than mapped drives. If mapped drives are specified 
under these conditions, the scans will not run. 
Notes on Command AntiVirus for NT Workstation (CSAV) version 4.50
Command AntiVirus boasts our HoloCheck(tm) scanning technology,
providing the most up-to-date virus protection. The most important
benefits of this technology are:
  *  Simplified updates. You can now update the SIGN.DEF and
     Macro.def files (which contain the most current virus signatures)
     without reinstalling all of the components. This method adds
     speed and efficiency to the new version of Command AntiVirus.
  *  Superior polymorphic virus detection. CSAV now offers
     unparalleled protection and elimination of polymorphic viruses
     including the dreaded Morphine, Anxiety and Spanska.
  *  Scanning of embedded (OLE) documents. Not only do we scan
     documents, but if an infected document is embedded in an Excel
     spreadsheet or PowerPoint document, Command AntiVirus will catch
     it and save you from becoming infected.
  *  Support for nested zip files.
New virus signatures have been added in this release.
F-MACRO.EXE is no longer included as a separate utility since all
of its features are now incorporated into the main scanner.
We have significantly changed our automatic update features. You can
use the full capabilities of CSS Central to automate the download and
deployment of files, or you can download manually and use the automatic
update features to distribute the updates. The directory structure now
utilized is different. We have provided utilities and features to
facilitate this migration. Documents explaining the upgrade process
from CSAV version 4.00 to CSAV version 4.50 as well as first time
installation and set-up are available. They can be found on the web 
through a link on the download page or by directly accessing the support
The ability to add user-defined strings is not supported by the
new design of CSAV.  The architecture of our HoloCheck technology makes
this feature obsolete without compromising protection.
The rescue disk will now contain the RESCUE.DAT file. Due to size
limitations, the rescue disk is no longer bootable. You
must have a separate bootable floppy disk for your machine.
SE_UTIL is no longer included in the CSAV for Windows 95 & Windows 98
file set.  However, SE_UTIL can still be downloaded from our FTP site.
Due to the introduction of CSS Central, SE_UTIL will be phased out.
Command will support SE_UTIL through 12/1/98.  After that date,
customers can continue to use the utility though we will no longer
update it.
Our CSS Central module allows the addition of on-site or remote
computers or workgroups to your system.  Remote computers may be identified
by IP address (numerical) or by name.
Due to changes in the functionality of the scan engine, the tab for
Memory Scanning under Preferences|Active Protection now only shows
one option. When enabled, the first 640k of memory will be scanned.
Media such as Jazz drives are reported by different operating systems
as either Fixed or Removable media. Because of this, they cannot be
classified by Command AntiVirus as one or the other.  Jazz drives will be
scanned when Scan All Drives is selected or by installation of specific 
Platform specific command line scanners, referred to as console
versions, are new to this release.  These are designed to coordinate
with the on-access scanners of their respective operating systems,
providing seamless integration and interaction.
Based on your system configuration and scheduled scans, you may
encounter low memory situations when scanning large drives or file
sets. If you encounter this situation, increase your pagefile.sys
by 20 mb.  Other remedies include scanning smaller file sets,
deselecting zip files or deselecting "Show All Files Scanned".
We recommend that you do not enable Scan All Network Drives from
any of our workstation products. Performance on busy servers
may be adversely affected by the additional network traffic.
CSS Central is a separate program with its own installation. If you
need access to this new feature set, please contact your sales
representative at 800-423-9147.
Adding long names, whether filename or extension, in the Files to
Exclude list (through Preferences|Files to Include/Exclude) will result
in the files not actually being scanned because of truncation of the
CSS Central cannot deploy full product updates to computers that were
installed through a shared installation (setup netadmin).  If you want to
maintain this type of installation, you need to run setup netadmin
with version 4.5x of Command AntiVirus.  Task files, preferences and
component updates can be deployed through CSS Central.
Command AntiVirus for NT Workstation must be installed to an
NT workstation,  not a server. The server product cannot be installed
to a workstation.
There have been reports of errors during the installation of NT
indicating that a file cannot be found.  These seem to be false
messages.  Continuing results in a correct installation.
For former DataFellows customers only: If you use the silent
installation method, you must uninstall the DataFellows version
of anti-virus protection. This is because in the interactive
installation we ask you if you want to uninstall the DataFellows
product. Since we cannot do this for the silent installation, you
need to remove it manually.
Notes on Command AntiVirus for Windows NT (CSAV) v.4.00
Using Automatic Update
Automatic updates via the Update Now button occur silently
regardless of the InstallSilent and UnattendMode settings
CSAV 4.00's Automatic Update will install properly only
if you are updating from Command F-PROT Professional for
Windows NT version 3.01/2.27a.
Special notes for System Administrators:
1. In a shared location on the network, create a unique parent
   directory to store the .DEF and .FPT files.
        For example:  \\SERVER\SYS\NewFPROT
2. Download and extract the latest definition files and copy them
   to the unique directory.
3. Below the unique directory, create a subdirectory called SETUP.
        For example:  \\SERVER\SYS\NewFPROT\Setup
4. Copy all of the product files into this subdirectory.
   (Note: Copy the files from the product diskettes or from a
   downloaded copy. Do not use the files that are already installed
   in the installation directory.)
5. Make these changes to SETUP.INI
    A. If F-NET is currently installed, F-NET will be removed unless, prior to
    the update, you set the new version's SETUP.INI's "InstallFnet="
    value to "Yes"
       (For example: InstallFnet=Yes).
    B. Locate  AutoUpdateDir=   and type in the location of the unique
    directory (For example: AutoUpdateDir=\\SERVER\SYS\NewFPROT)
6. Save the changes.
7. Open Command AntiVirus and choose Preferences|Advanced and then
   click on the Automatic Update tab.
8. Verify that the path is correct in the text box.
9. Choose either "OK" or "Update Now".
If you select "OK", the update occurs automatically when the user
restarts the computer. Otherwise, if the user leaves the computer
on, the update will occur between 4 a.m. and 5 a.m.
If F-PROT Professional is already installed with a service
account and you want to re-install it or install CSAV 4.00
by using either the "setup silent -fClient.ins" or the "LSilent.bat"
option in order to preserve the previous service account, you need to
modify the section called [Network Install]. That section is located
in the SETUP.INI file. Please note that the [Network Install] section
does not exist until "SETUP NETADMIN" is run. Therefore, after you have
run SETUP NETADMIN, you can perform the following two steps to
preserve the previous service account:
  1. Set "EnableNetworkScans" to "0". For instance:
	                - or -
     During "setup netadmin", you can say that you do not
     want your users to be able to run scheduled network scans.
     This will automatically set the EnableNetworkScans
     value to "0".
  2. In the [Network Install] section, create a variable called
     "UsePrevServiceAccount" and set it to equal a value of "1".
     For instance:
     (Caution: "UsePrevServiceAccount" does not exist: it must be
     created in [Network Install].)
New virus signatures have been added in this release.
DVP can now perform real-time scans of NetWare drives under
NetWare Client 32.
A problem involving filenames with accented characters being
duplicated as zero-byte files after a scan has been corrected.
DVP now correctly releases file handles on .DOC and .XLS files.
Prior to this fix, those file types would be renamed and the
files would be reported as being open. The user then had to
rename the file to access it.
A problem with F-AGENT loading the LANGUAGE.DLL has been corrected.
R-Mouse now appears properly on the drop-down menu when CLIENT.BAT
is used.
CSAV is an acronym for "Command AntiVirus" -- the new name of
our anti-virus product line. Prior to the name change, the product
line was referred to as "Command's F-PROT Professional."
If you are using a MAPI mail system then, in the Command AntiVirus
SETUP.INI file, it is required that e-mail addresses
used for CSAV's messaging function have information in front of
the "@" symbol. For instance, "[email protected]" is a legitimate
address form. However, "" is an invalid address form.
If you wish to copy additional files during the installation process,
be sure that the files are located in the installation directory.
Then, in SETUP.INI, place the names of those files in the [UserFiles]
section.  To add files, you need to supply each file name with its
own "UserFile=" line.  For example, if you were adding files called
"file1.txt" and "file2.txt" the UserFile lines in the [UserFiles]
section would appear as:
If you choose to place an additional file (or files) in a
different directory and the [UserFile] section in SETUP.INI
has a "UserFile=" statements for that file
(for example, UserFile03=file3.txt), a "Browse" option appears
during the installation process. That option allows you to enter
the path leading to that file.
If you launch a task scan from the shared read-only network drive,
the error message "Could not write to Scan Network Drives" informs
you that the system could not write to the task directory file.
This is an operating system rights limitation that occurs on NT,
NetWare or local drives when the shared folder is set to read-only.
To eliminate this error message, you can set the task files attribute
to read-only.
If one of your options in "Preference|Network" is set to mail infected
files, infected files detected by a scheduled scan will not be mailed.
This limitation effects only scheduled scans. Notification will still
be written to the Event Viewer.
Users without administrator rights will not be able update Command
AntiVirus for Windows NT on their systems if the system administrator
does not include the update path in SETUP.INI prior to deployment.
If you have computers in a workgroup that you would like to modify
via Command's Account Manager (CSS-AMGR.EXE), perform the
following steps:
	1) Make sure that all the workgroup's computers are
           turned on.
	2) Log onto the administrator's computer or server
	   using an administrator account that is also an
           administrator's account on the workgroup computers.
	3) Launch the CSS-AMGR.EXE program and perform the option
	   of your choice (either Option 1 or Option 3).
The second step mentioned above is required as the utility will
display only domain computers for CSS-AMGR modification despite
checking all the computers located in the network/domain including
those in the workgroup.
Command Software Systems has greatly expanded its technical support to
include a variety of electronic services. You may contact us at any one
of the following:
Command Software Systems, Inc.
1061 E. Indiantown Rd., Suite 500
Jupiter, FL  33477
     Voice: 561/575-3200 8:00 am to 8:00 pm EST.
     Fax: 561/575-3026
     BBS: 561/575-1281
     CIS: 75300,3645 (Type GO PCVENF at any CIS ! prompt. We're in section 9.)
Internet: [email protected], [email protected]
World Wide Web:
In Europe contact:
Command Software Systems, Inc.
UK Branch
Ground Floor
Millbank Tower
London SW1P 4QP
   Voice: +44 171 931-9301
     Fax: +44 171 931-9302
     BBS: +44 171 931-9303
Internet: [email protected]
          [email protected]
          [email protected]