|
|
||||||||||||||
|
|
Archive File - README FIRST!: Command Antivirus for 2000 Professional
README FIRST! Command AntiVirus for Windows(r) 2000/XP Workstation Command Software is proud to introduce Command AntiVirus Version 4.62.4 with HoloCheck(tm) scanning technology. HoloCheck scanning technology detects tens of thousands of viruses and includes improved polymorphic virus detection. NOTE: After installing Command AntiVirus, we recommend that you perform a manual scan of your local drives to ensure that your system is virus-free. This is especially important if you have not been running anti-virus software prior to this installation. For a list of international distributors of Command AntiVirus, see the DISTRIB.TXT file. The file called FILEINFO.TXT is a list of file descriptions and files that have changed since the previous release. Please read the Multi-Platform Quick Start Guide that is included with the installation files. It provides installation instructions and an overview of Command AntiVirus for all platforms. The MQCKST.PDF file contains the Multi-Platform Quick Start Guide. This file can be read with the Adobe(r) Acrobat(r) Reader that is included on the Command AntiVirus CD. For instructions on how to install Acrobat Reader, see the README.TXT file that is located in the ADOBE folder on the CD. Acrobat Reader is not included with the downloadable versions of Command AntiVirus. You can download Acrobat Reader from Adobe Systems Incorporated through our web site at http://www.commandsoftware.com/service/tc-viewutil.html A Release Notes section is provided for each release. It contains the following topics: * Special Notes - contains important pre- and post-installation information that pertains to the release. * Product Enhancements - contains information about new virus signatures, scan engine improvements, and new features. * Fixes - contains updated information on previously reported problems that have been fixed. ____________________________________________________________ RELEASE NOTES Notes on Command AntiVirus for Windows NT/2000 Workstation (CSAV) Version 4.62.4 03 October 2001 SPECIAL NOTES * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.62.4 over any Beta version of Command AntiVirus, you MUST first uninstall the Beta version. * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.62.4 over Command AntiVirus for Windows NT/2000 Workstation Version 4.60, it is necessary for the installation program to perform an immediate restart of the computer. Therefore, we recommend that you use the SETUP.EXE that is provided instead of the CSAV.MSI. At the beginning of Setup, a dialog box displays giving you the option to cancel Setup. The installation will continue after the restart. * WARNING: At the end of the installation of Version 4.62.4, you may be prompted to restart your computer. You MUST restart for Dynamic Virus Protection (DVP) to be upgraded properly. * On slower running machines, Windows installer may hang during initialization. Restart the computer or go to the Windows Task Manager and stop any additional MSIEXEC.EXE files that are running. Then, restart the installation or uninstall. * Command AntiVirus will NOT quarantine across different drive letters, but it will block access to the files. * In manual and scheduled scanning, the Quarantine folder is excluded from scanning if the SCAN QUARANTINE FILES check box in the PROPERTIES dialog box is cleared. However, if you select the SCAN QUARANTINE FILES check box and then select the ACTION TO TAKE as QUARANTINE, the SCAN QUARANTINE FILES check box is dimmed, but the Quarantine folder is NOT excluded from scanning. This may be fixed in a future commercial release. * All viruses previously referred to as W95/x are now named W32/x. For example, W95/Nimda.A@mm is now called W32/Nimda.A@mm. NOTE: x represents a name variable. PRODUCT ENHANCEMENTS * Scan engine enhancements have been added to this release. It is now possible to disinfect some script viruses, for example, HTML files modified by the Nimda virus. * New virus signatures have been added in this release. FIXES * Particular types of VBS files caused the scan engine to false positive. The number of false positives has been decreased in this release. * Some customers reported that Dynamic Virus Protection (DVP) is not updating with Automatic Update. This has been fixed. ___________________________________ RELEASE NOTES Notes on Command AntiVirus for Windows NT/2000 Workstation (CSAV) Version 4.62.2 21 September 2001 SPECIAL NOTES * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.62.2 over any Beta version of Command AntiVirus, you MUST first uninstall the Beta version. * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.62.2 over Command AntiVirus for Windows NT/2000 Workstation Version 4.60, it may be necessary for the installation program to perform an immediate restart of the computer. Therefore, we recommend that you use the SETUP.EXE that is provided instead of the CSAV.MSI. At the beginning of Setup, a dialog box displays giving you the option to cancel Setup. The installation will continue after the restart. * WARNING: At the end of the installation of Version 4.62.2, you may be prompted to restart your computer. You MUST restart for Dynamic Virus Protection (DVP) to be upgraded properly. * On slower running machines, Windows installer may hang during initialization. Restart the computer or go to the Windows Task Manager and stop any additional MSIEXEC.EXE files that are running. Then, restart the installation or uninstall. * Command AntiVirus will NOT quarantine across different drive letters, but it will block access to the files. * In manual and scheduled scanning, the Quarantine folder is excluded from scanning if the SCAN QUARANTINE FILES check box in the PROPERTIES dialog box is cleared. However, if you select the SCAN QUARANTINE FILES check box and then select the ACTION TO TAKE as QUARANTINE, the SCAN QUARANTINE FILES check box is dimmed, but the Quarantine folder is NOT excluded from scanning. This may be fixed in a future commercial release. PRODUCT ENHANCEMENTS * New virus signatures have been added in this release. FIXES * Some customers reported a slowdown when Command AntiVirus disinfects certain viruses. This problem occurred only during disinfection. This has been fixed. ____________________________ RELEASE NOTES Notes on Command AntiVirus for Windows NT/2000 Workstation (CSAV) Version 4.62.0 17 September 2001 SPECIAL NOTES * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.62.0 over any Beta version of Command AntiVirus, you MUST first uninstall the Beta version. * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.62.0 over Command AntiVirus for Windows NT/2000 Workstation Version 4.60, it is necessary for the installation program to perform an immediate restart of the computer. Therefore, we recommend that you use the SETUP.EXE that is provided instead of the CSAV.MSI. At the beginning of Setup, a dialog box displays giving you the option to cancel Setup. The installation will continue after the restart. * WARNING: At the end of the installation of Version 4.62.0, you may be prompted to restart your computer. You MUST restart for Dynamic Virus Protection (DVP) to be upgraded properly. * On slower running machines, Windows installer may hang during initialization. Restart the computer or go to the Windows Task Manager and stop any additional MSIEXEC.EXE files that are running. Then, restart the installation or uninstall. * Command AntiVirus will NOT quarantine across different drive letters, but it will block access to the files. * In manual and scheduled scanning, the Quarantine folder is excluded from scanning if the SCAN QUARANTINE FILES check box in the PROPERTIES dialog box is cleared. However, if you select the SCAN QUARANTINE FILES check box and then select the ACTION TO TAKE as QUARANTINE, the SCAN QUARANTINE FILES check box is dimmed, but the Quarantine folder is NOT excluded from scanning. This may be fixed in a future commercial release. PRODUCT ENHANCEMENTS * Scan engine enhancements have been added to this release, for example, an ELF scanner has been added to cover Unix(r) viruses in native Unix file format. The scan engine has also been enhanced to help detect some corrupted (non-working) samples of the Magistr virus. * New virus signatures have been added in this release. FIXES * Some customers reported a problem with saving .xls files to NetWare drive with Novell Client32 installed on the workstation. This has been fixed. * It was reported that long lines caused the VBS scanner not to identify some viruses precisely. Viruses were detected, but the exact name of the virus was not given. This has been fixed. * If you are running Dynamic Virus Protection (DVP) on a Server that is accessed by remote machines, DVP may NOT prevent the spread of virus infections to the remote machines when files are accessed. This has been fixed. * When you set the Action On Infection in DVP to Rename, Delete or Quarantine, these settings MAY NOT work properly on any remote or local drive other than C: drive. In these instances, DVP MAY display an error message stating that the action cannot be completed. However, CSAV does block access to the infected file. This has been fixed. ____________________________________________________________ RELEASE NOTES Notes on Command AntiVirus for Windows NT/2000 Workstation (CSAV) Version 4.61.5 06/21/01 SPECIAL NOTES * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.61.5 over any Beta version of Command AntiVirus, you MUST first uninstall the Beta version. * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.61.5 over Command AntiVirus for Windows NT/2000 Workstation Version 4.60, it is necessary for the installation program to perform an immediate restart of the computer. Therefore, we recommend that you use the SETUP.EXE that is provided instead of the CSAV.MSI. At the beginning of Setup, a dialog box displays giving you the option to cancel Setup. The installation will continue after the restart. * WARNING: At the end of the installation of Version 4.61.5, you may be prompted to restart your computer. You MUST restart for Dynamic Virus Protection (DVP) to be upgraded properly. * On slower running machines, Windows installer may hang during initialization. Restart the computer or go to the Windows Task Manager and stop any additional MSIEXEC.EXE files that are running. Then, restart the installation or uninstall. * Command AntiVirus will NOT quarantine across different drive letters, but it will block access to the files. * When you set the Action On Infection in DVP to Rename, Delete or Quarantine, DVP may display an erroneous error message stating that the action cannot be completed. This message is incorrect. We recommend that you confirm that a Quarantine folder does exist and that the path to this folder is specified in the Preferences/ Advanced/Quarantine Path dialog box. * In manual and scheduled scanning, the Quarantine folder is excluded from scanning if the SCAN QUARANTINE FILES check box in the PROPERTIES dialog box is cleared. However, if you select the SCAN QUARANTINE FILES check box and then select the ACTION TO TAKE as QUARANTINE, the SCAN QUARANTINE FILES check box is dimmed, but the Quarantine folder is NOT excluded from scanning. This may be fixed in a future commercial release. PRODUCT ENHANCEMENTS * New virus signatures have been added in this release. FIXES * Particular types of VBS files caused the scan engine to false positive. The number of false positives has been decreased in this release. * Some Windows Portable Executables (PE) SYS files caused the scan engine to false positive. This has been fixed. * Some customers reported that when they access locally mapped shared directories, the system freezes. This has been fixed. ____________________________ RELEASE NOTES Notes on Command AntiVirus for Windows NT/2000 Workstation (CSAV) Version 4.61.4 05/17/01 SPECIAL NOTES * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.61.4 over any Beta version of Command AntiVirus, you MUST first uninstall the Beta version. * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.61.4 over Command AntiVirus for Windows NT/2000 Workstation Version 4.60, it is necessary for the installation program to perform an immediate restart of the computer. Therefore, we recommend that you use the SETUP.EXE that is provided instead of the CSAV.MSI. At the beginning of Setup, a dialog box displays giving you the option to cancel Setup. The installation will continue after the restart. * WARNING: At the end of the installation of Version 4.61.4, you may be prompted to restart your computer. You MUST restart for Dynamic Virus Protection (DVP) to be upgraded properly. * On slower running machines, Windows installer may hang during initialization. Restart the computer or go to the Windows Task Manager and stop any additional MSIEXEC.EXE files that are running. Then, restart the installation or uninstall. * If a user is using Microsoft(r) Excel 2000 and Microsoft Client or Gateway for Novell(r) NetWare(r), Command AntiVirus will detect and disinfect infected .XLS files, but at this time, it will NOT rename or quarantine them. * Command AntiVirus will NOT quarantine across different drive letters, but it will block access to the files. * In manual and scheduled scanning, the Quarantine folder is excluded from scanning if the SCAN QUARANTINE FILES check box in the PROPERTIES dialog box is cleared. However, if you select the SCAN QUARANTINE FILES check box and then select the ACTION TO TAKE as QUARANTINE, the SCAN QUARANTINE FILES check box is dimmed, but the Quarantine folder is NOT excluded from scanning. This may be fixed in a future commercial release. PRODUCT ENHANCEMENTS * None for this release. FIXES * Some users reported excessive consumption of CPU time. This has been fixed. * Some users reported false positives on SYS files. This has been fixed. * Some users reported false positives on particular VBS files. This has been fixed. _______ RELEASE NOTES Notes on Command AntiVirus for Windows NT/2000 Workstation (CSAV) Version 4.61.2 03/07/01 SPECIAL NOTES * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.61.2 over any Beta version of Command AntiVirus, you MUST first uninstall the Beta version. * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.61.2 over Command AntiVirus for Windows NT/2000 Workstation Version 4.60, it is necessary for the installation program to perform an immediate restart of the computer. Therefore, we recommend that you use the SETUP.EXE that is provided instead of the CSAV.MSI. At the beginning of Setup, a dialog box displays giving you the option to cancel Setup. The installation will continue after the restart. * WARNING: At the end of the installation of Version 4.61.2, you may be prompted to restart your computer. You MUST restart for Dynamic Virus Protection (DVP) to be upgraded properly. * On slower running machines, Windows installer may hang during initialization. Restart the computer or go to the Windows Task Manager and stop any additional MSIEXEC.EXE files that are running. Then, restart the installation or uninstall. * If a user is using Microsoft(r) Excel 2000 and Microsoft Client or Gateway for Novell(r) NetWare(r), Command AntiVirus will detect and disinfect infected .XLS files, but at this time, it will NOT rename or quarantine them. * Command AntiVirus will NOT quarantine across different drive letters, but it will block access to the files. * In manual and scheduled scanning, the Quarantine folder is excluded from scanning if the SCAN QUARANTINE FILES check box in the PROPERTIES dialog box is cleared. However, if you select the SCAN QUARANTINE FILES check box and then select the ACTION TO TAKE as QUARANTINE, the SCAN QUARANTINE FILES check box is dimmed, but the Quarantine folder is NOT excluded from scanning. This may be fixed in a future commercial release. PRODUCT ENHANCEMENTS * New virus signatures have been added in this release. * This release contains the following scan engine enhancements: - Scanning of Visio files is now supported. Heuristics scanning is now in place to help detect unknown Visio viruses. - Scanning of PIF files is now supported. PIF viruses can now be listed. - Scanning of PHP viruses is now supported. - Heuristics scanning is now in place to help detect unknown VBS viruses such as new variants of LoveLetter. - Our HoloCheck technology has been improved to detect a few new polymorphic viruses. * Increased cache. * Reduced CPU usage. FIXES * Some users experienced a problem with starting Command AntiVirus on slow computers. This has been fixed. * Some users reported that the Microsoft(r) Windows(r) Installer (MSI.EXE) was not automatically installing when they used SETUP.EXE to install Command AntiVirus. This has been fixed. _______ RELEASE NOTES Notes on Command AntiVirus for Windows NT/2000 Workstation (CSAV) Version 4.61.1 03/05/01 SPECIAL NOTES * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.61.1 over Command AntiVirus for Windows NT/2000 Workstation Version 4.60, it is necessary for the installation program to perform an immediate restart of the computer. Therefore, we recommend that you use the SETUP.EXE that is provided instead of the CSAV.MSI. At the beginning of Setup, a dialog box displays giving you the option to cancel Setup. The installation will continue after the restart. * WARNING: At the end of the installation of Version 4.61.1, you may be prompted to restart your computer. You MUST restart for Dynamic Virus Protection (DVP) to be upgraded properly. * On slower running machines, Windows installer may hang during initialization. Restart the computer or go to the Windows Task Manager and stop any additional MSIEXEC.EXE files that are running. Then, restart the installation or uninstall. * If a user is using Microsoft(r) Excel 2000 and Microsoft Client or Gateway for Novell(r) NetWare(r), Command AntiVirus will detect and disinfect infected .XLS files, but at this time, it will NOT rename or quarantine them. * Command AntiVirus will NOT quarantine across different drive letters, but it will block access to the files. * In manual and scheduled scanning, the Quarantine folder is excluded from scanning if the SCAN QUARANTINE FILES check box in the PROPERTIES dialog box is cleared. However, if you select the SCAN QUARANTINE FILES check box and then select the ACTION TO TAKE as QUARANTINE, the SCAN QUARANTINE FILES check box is dimmed, but the Quarantine folder is NOT excluded from scanning. This may be fixed in a future commercial release. PRODUCT ENHANCEMENTS * None for this release. FIXES * It was reported that after upgrading to Command AntiVirus 4.61, the EXPLORER.EXE task function used a major portion of the system resources causing a significant decline in system performance. This has been fixed. _______ RELEASE NOTES Notes on Command AntiVirus for Windows NT/2000 Workstation (CSAV) Version 4.61 02/01/01 SPECIAL NOTES * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.61 over Command AntiVirus for Windows NT/2000 Workstation Version 4.60, it is necessary for the installation program to perform an immediate restart of the computer. Therefore, we recommend that you use the SETUP.EXE that is provided instead of the CSAV.MSI. At the beginning of Setup, a dialog box displays giving you the option to cancel Setup. The installation will continue after the restart. * WARNING: At the end of the installation of Version 4.61, you may be prompted to restart your computer. You MUST restart for Dynamic Virus Protection (DVP) to be upgraded properly. * On slower running machines, Windows installer may hang during initialization. Restart the computer or go to the Windows Task Manager and stop any additional MSIEXEC.EXE files that are running. Then, restart the installation or uninstall. * If a user is using Microsoft(r) Excel 2000 and Microsoft Client or Gateway for Novell(r) NetWare(r), Command AntiVirus will detect and disinfect infected .XLS files, but at this time, it will NOT rename or quarantine them. * Command AntiVirus will NOT quarantine across different drive letters, but it will block access to the files. * In manual and scheduled scanning, the Quarantine folder is excluded from scanning if the SCAN QUARANTINE FILES check box in the PROPERTIES dialog box is cleared. However, if you select the SCAN QUARANTINE FILES check box and then select the ACTION TO TAKE as QUARANTINE, the SCAN QUARANTINE FILES check box is dimmed, but the Quarantine folder is NOT excluded from scanning. This may be fixed in a future commercial release. PRODUCT ENHANCEMENTS * None for this release. FIXES * The problem with shutting down after upgrading to Command AntiVirus 4.60 when NetWare(r) Client 32 is installed has been fixed. * The problem with Dynamic Virus Protection (DVP) not detecting virus infections on remote drives has been fixed. * A problem with some corrupt RAR files causing General Protection Faults (GPFs) has been fixed. _______ RELEASE NOTES Notes on Command AntiVirus for Windows NT/2000 Workstation (CSAV) Version 4.60 01/05/01 SPECIAL NOTES * If you are installing Command AntiVirus for Windows NT/2000 Workstation Version 4.60 over a previous version of Command AntiVirus, it is necessary for the installation program to perform an immediate restart of the computer. Therefore, we recommend that you use the SETUP.EXE that is provided instead of the CSAV.MSI. At the beginning of Setup, a dialog box displays giving you the option to cancel Setup. The installation will continue after the restart. * WARNING: At the end of the installation of Version 4.60, you may be prompted to restart your computer. You MUST restart for Dynamic Virus Protection (DVP) to be upgraded properly. * On slower running machines, Windows installer may hang during initialization. Restart the computer or go to the Windows Task Manager and stop any additional MSIEXEC.EXE files that are running. Then, restart the installation or uninstall. * WARNING: Dynamic Virus Protection (DVP) does NOT detect virus infections on remote drives. This will be fixed in a future commercial release. * If a user is using Microsoft(r) Excel 2000 and Microsoft Client or Gateway for Novell(r) NetWare(r), Command AntiVirus will detect and disinfect infected .XLS files, but at this time, it will NOT rename or quarantine them. * Command AntiVirus will NOT quarantine across different drive letters, but it will block access to the files. * In manual and scheduled scanning, the Quarantine folder is excluded from scanning if the SCAN QUARANTINE FILES check box in the PROPERTIES dialog box is cleared. However, if you select the SCAN QUARANTINE FILES check box and then select the ACTION TO TAKE as QUARANTINE, the SCAN QUARANTINE FILES check box is dimmed, but the Quarantine folder is NOT excluded from scanning. This may be fixed in a future commercial release. PRODUCT ENHANCEMENTS * This release contains scan engine enhancements that include detection for the W95/MTX.9244 virus and X97M/Jini-A1 misdisinfected viruses. * You can now use the /ARCHIVE switch to: - decode and scan messages in TNEF format - decode and scan UU-encoded messages - decompress and scan ACE files NOTE: If you are using the GUI to initiate a scan, in the PROPERTIES dialog box under FILE TYPES TO SCAN, select SCAN NON-EXECUTABLE COMPRESSED FILES. * The speed of scanning CAB files has been improved. * The Rescue Disk process has been updated. To create a Rescue Disk set now requires three (3) 3.5" high-density diskettes. The addition of the /LOADDEF switch allows you to perform a complete scan during recovery to detect and disinfect any virus-infected files. The rescue disk process involves two phases. The first phase focuses on recovery by detecting and removing any executable, boot sector, and MBR-infecting viruses that inhibit or prevent system startup. After successful recovery, the second phase focuses on scanning and disinfecting all remaining virus-infected files, for example, macro virus-infected files. To assure a successful rescue, you must perform both phases. To test the rescue disk set complete Steps 1 through 10 of Phase One. To use the rescue disk set, complete both Phase One and Phase Two. To perform Phase One, follow these steps: 1. Turn off your computer. 2. Place a virus-free, write-protected bootable diskette into drive A. 3. Turn on your computer. 4. If you are prompted to enter a new date and a new time, press Enter for each. 5. Remove the bootable diskette and insert Rescue Disk 1 into drive A. 6. At the A prompt, type the following: f-prot /hard /disinf /loaddef 7. Press Enter. The system prompts you to insert a diskette with SIGN.DEF. 8. Insert Rescue Disk 2 into drive A and press Enter. The system prompts you to insert a diskette with SIGN2.DEF. 9. Insert Rescue Disk 3 into drive A and press Enter. A scan of your hard drive begins immediately. If any viruses are detected, allow CSAV to disinfect them. 10. When the scan is complete, remove Rescue Disk 3 from drive A. 11. Proceed to Phase Two. To perform Phase Two, follow these steps: 1. Restart your computer as normal. 2. Use Command AntiVirus to perform a scan of your local hard drives. This scan detects and disinfects any remaining virus-infected files on your computer. After completing the Phase Two scan, you can now return to computing as normal. FIXES * The level of generated false positives for macro viruses has been reduced. * In DVP scanning, the Quarantine folder was not being excluded from scanning. This has been fixed. * The problem with files with read-only, hidden, or system attributes not being quarantined when a virus is detected through Dynamic Virus Protection has been fixed. _____________ RELEASE NOTES Notes on Command AntiVirus for Windows NT/2000 Workstation (CSAV) Version 4.59.4 07/17/00 SPECIAL NOTES * If you are installing Command AntiVirus for Windows NT/2000 Version 4.59.4 over a previous 4.59 Beta or commercial version, you MUST first uninstall the previous 4.59 version and restart the computer. * When you install Command AntiVirus for Windows NT/2000, you may be asked to restart your computer. Click YES to restart and continue with the installation. Click NO to postpone the installation until you restart at a later time. If you select this option, the installation will continue after the restart. If you are installing Command AntiVirus through Group Policy or through the Command AntiVirus Automatic Update feature, the computer will be restarted automatically. You will NOT be asked if you want to restart. * WARNING: Dynamic Virus Protection (DVP) does NOT detect virus infections on NetWare file servers. This will be fixed in a future commercial release. * Files with read-only, hidden, or system attributes might not be renamed, quarantined, or deleted when a virus is detected through Dynamic Virus Protection. This will be fixed in a future commercial release. * In DVP scanning, the Quarantine folder is NOT being excluded from scanning. This will be fixed in a future commercial release. * In manual and scheduled scanning, the Quarantine folder is excluded from scanning if the SCAN QUARANTINE FILES check box in the PROPERTIES dialog box is cleared. However, if you select the SCAN QUARANTINE FILES check box and then select the ACTION TO TAKE as QUARANTINE, the SCAN QUARANTINE FILES check box is dimmed, but the Quarantine folder is NOT excluded from scanning. This may be fixed in a future commercial release. * UPDATING DEFFILES To provide protection against new viruses, we update the Command AntiVirus definition files (deffiles) frequently. You can download the file called DEFMSP.EXE from the Command Software web site at www.commandcom.com. DEFMSP.EXE is a self-extracting file that contains the latest deffiles patch (.MSP). You can then distribute the patch through Group Policy onto the computers that were specified in the original deployment configuration. We recommend that you perform an administrative installation of the deffiles patch to your software distribution points (SDPs). This allows you to apply and distribute the patch easily through Group Policy. To perform an administrative installation of the deffiles patch, at the command line, type the following and press ENTER. msiexec /a csav.msi /p csav.msp NOTE: Be sure to select the same network path that you used for the original SDP. The name of the CSAV MSP file changes with each update. DISTRIBUTING THE DEFFILES PATCH THROUGH GROUP POLICY To distribute the deffiles patch follow these steps: 1. In the Console Root Tree of the Microsoft Management Console, click the plus sign next to the Group Policy object that you selected for Command AntiVirus. This action expands this item. Then, expand Computer Configuration and Software Settings. 2. Click Software Installation. The right-hand pane now lists Command AntiVirus. 3. Right-click Command AntiVirus. The system displays a drop-down menu. 4. Select All Tasks and click Redeploy application. The system displays a dialog box asking you if you want to continue. 5. Click Yes. Your redeployment is complete. Command AntiVirus with the updated deffiles will be reinstalled onto the computers that were specified in the original deployment configuration the next time the computers are started. APPLYING THE DEFFILES PATCH USING THE COMMAND LINE To apply the deffiles patch using the command line, type the following. CAUTION: This command is case-sensitive and MUST be entered as shown: msiexec /p filename.msp REINSTALL=ALL NOTE: The file name will change with each update. DISTRIBUTING THE DEFFILES PATCH THROUGH AUTOMATIC UPDATE Automatic Update NOTE: Stand-alone (non-networked) users of Command AntiVirus can continue to use the standard installation method for updates as they will derive little benefit from this method. If you have several workstations, each with a different operating system, you can perform a partial or full-product update of Command AntiVirus on each workstation directly from a server by using our Automatic Update feature. This feature provides system administrators with the ability to distribute and update the program quickly on multiple workstations in a multi-platform environment with no user interaction. Automatic Update also allows you to update an individual workstation on demand by using the Update Now button. Automatic Update operates by placing Command AntiVirus files in a unique parent directory in a shared location on the network. When the user logs on to the computer, the automatic update process compares the dates (versions in CSAV for Windows NT/2000) of the files on the workstation with those on the server. If the server dates are newer, the workstations automatically update themselves with the newer program files. For example, if only the definition (*.DEF) files have changed since the last update, then only those files will be updated. If a new version is available, then the program begins a complete setup. In Command AntiVirus for Windows NT/2000, the user sees only a progress bar and error dialog boxes for both full-product and component updates. Getting Started NOTE: To use the Automatic Update feature in Command AntiVirus for Windows NT/2000, Command AntiVirus must be installed on each workstation. For new installations, you must run CSAV.MSI at the workstation or use Group Policy to roll out the new product. NOTE: Once you complete the automatic update process, workstations are updated automatically each time you place updated files in the automatic update directory and its subdirectories. Updates occur at each login or if the user is logged on, at a preconfigured time. For example, the default time is between, 4 a.m. and 5 a.m. F-AGENT (the yellow C in the lower right corner of the system tray) must be active for updates to occur automatically. As soon as an update takes place, the program does not automatically update again for at least 24 hours. NOTE: If the updated files require that you restart your system for the changes to take effect, the system displays the following message: We have updated some files in this release. These files and some settings will not take effect until a reboot is performed. In the interim your system remains fully protected. Creating the Automatic Update Directory To create the automatic update directory, follow these steps: 1. In a shared location on the network, create a unique parent directory to store the update files. This directory is referred to as the automatic update directory. For example: S:\NEWFPROT 2. Create a subdirectory for each platform to be updated. For example: S:\NEWFPROT\CSAV2K 3. It is necessary to create subdirectories under each platform directory. These subdirectories will be used to contain full product, component updates, and definition files. For example, you may want to create the following directory structure: S:\NewFPROT S:\NewFPROT\CSAV2K S:\NewFPROT\CSAV2K\FULL S:\NewFPROT\CSAV2K\COMP S:\NewFPROT\CSAV2K\SIGN 4. Download and extract the latest update files, for example, the definition (.DEF) files. 5. Copy all of the product files into their respective subdirectory. For example, you would copy the definition files that you extracted in Step 4 into the S:\NEWFPROT\CSAV2K\SIGN subdirectory. 6. Using Notepad or any text editor, create a file named CSSFILES.INI in the root of the automatic update directory. For each platform specified in the automatic update directory structure, create a section in this .INI file. An example CSSFILES.INI file follows: [Win95-ANTIVIR] BaseDir=S:\NewFPROT\CSAV95 FULLPROD=full\ COMPONT=comp\ DEFFILES=sign\ [NT40_S-ANTIVIR] BaseDir=S:\NewFPROT\CSAVNTS FULLPROD=full\ COMPONT=comp\ DEFFILES=sign\ [NT40_W-ANTIVIR] BaseDir=S:\NewFPROT\CSAVNTW FULLPROD=full\ COMPONT=comp\ DEFFILES=sign\ [WIN2000_S-ANTIVIR] BaseDir=S:\NewFPROT\CSAV2000S FULLPROD=full\ COMPONT=comp\ DEFFILES=sign\ [WIN2000_W-ANTIVIR] BaseDir=S:\NewFPROT\CSAV2000W FULLPROD=full\ COMPONT=comp\ DEFFILES=sign\ CAUTION: If automatic updates are performed by multiple workstations over a network, the CSSFILES.INI file must use Universal Naming Convention (UNC) paths. 7. Save the changes to the CSSFILES.INI file. Use the Command AntiVirus Custom Installation Wizard to make changes to the Automatic Update settings in Preferences. You can also change the time the update takes place. Then, use Windows Group Policy to deploy the changes throughout the network. For more information, refer to Customizing Your Installations and Deploying Command AntiVirus through Group Policy located previously in this chapter. Setting the Automatic Update Path Manually NOTE: You must be a member of the local Administrators group to perform this task. To set the path to the automatic update directory, follow these steps: 1. Open Command AntiVirus. 2. Click Preferences. The system displays a drop-down menu. 3. Click Advanced. The system displays the Advanced dialog box. 4. Click the Automatic Update tab. The system displays the Automatic Update dialog box. 5. Click Browse. The system displays the Browse Open dialog box. 6. Select the drive\path of the automatic update directory. For example: S:\NEWFPROT The directory path must point to the automatic update directory which contains the CSSFILES.INI regardless of whether you are performing partial or full-product updates. NOTE: If the drive is not mapped, click Network. Select the correct path and click OK to connect the drive. The system returns to the Browse Open dialog box. 7. Click OK. The system returns to the Automatic Update dialog box with the selected path entered in the text field. Be sure that you have entered the correct path to the automatic update directory. Updates will be made from the path that you have specified. NOTE: When the drive\path selected is a network drive, use the Make UNC button to convert it to a Universal Naming Convention (UNC) path. 8. Click OK. CAUTION: In Command AntiVirus for Windows 95/98, there are no restrictions to prevent the user from changing the path of the automatic update directory. If the user changes the path, the updates will be made from the path specified. If you are administering CSAV on your network through CSS Central, you can prevent users from changing the automatic update directory path by locking the preferences on remote computers. For more information, refer to Writing the New Preferences to the Remote System(s) in the CSS Central chapter of the Command AntiVirus Multi-Platform Quick Start Guide. In Command AntiVirus for Windows NT and Command AntiVirus for Windows NT/2000, the user must be assigned to a local Administrators group to change the automatic update directory path from the Preferences menu. In Command AntiVirus for Windows NT/2000, you can also prevent the users from modifying the default settings for the items on the Command AntiVirus Preferences menu. For more information, refer to Customizing Your Installation Settings located previously in this chapter. NOTE: To turn off the Automatic Update feature, leave the automatic update directory blank. Using the Update Now Button The Update Now button allows the user to update the individual workstation immediately. NOTE: In Command AntiVirus for Windows NT/2000, to use the Update Now button, the user must be a member of the local Administrators group. PRODUCT ENHANCEMENTS * Dynamic Virus Protection (DVP) now scans for Master Boot Record (MRB) and Boot Sector viruses. FIXES * None for this release. _____________ RELEASE NOTES Notes on Command AntiVirus for Windows NT/2000 Workstation (CSAV) Version 4.59.1 - New Release 6/26/00 SPECIAL NOTES * If you are installing Command AntiVirus for Windows NT/2000 Version 4.59.1 over a previous 4.59 Beta version, you MUST first uninstall the previous 4.59 Beta version. * When you install Command AntiVirus for Windows NT/2000, you may be asked to restart your computer. Click YES to restart and continue with the installation. Click NO to postpone the installation until you restart at a later time. If you select this option, the installation will continue after the restart. If you are installing Command AntiVirus through Group Policy or through the Command AntiVirus Automatic Update feature, the computer will be restarted automatically. You will NOT be asked if you want to restart. * WARNING: Dynamic Virus Protection (DVP) does NOT detect virus infections on NetWare file servers. This will be fixed in the next commercial release. * Files with read-only, hidden, or system attributes might not be renamed, quarantined, or deleted when a virus is detected through Dynamic Virus Protection. This will be fixed in the next commercial release. * The Quarantine folder is NOT being excluded from scanning. This will be fixed in the next commercial release. * The Rename option when a virus is found through Dynamic Virus Protection now renames the file with ".Infected" added to the original name. You can select the Rename option through the Preferences/Active Protection dialog box. * The Quarantine option when a virus is found through Dynamic Virus Protection now renames the file with ".Quarantined" added to the original name. You can select the Quarantine option through the Preferences/Active Protection dialog box. * All files (except the sample FPT files) are now stored in lower case on the disk sets. This change was made to accommodate both Microsoft Installer (which is case-sensitive to files installed from the Internet) and case-sensitive servers (such as NetWare, UNIX) that may host the installation and updates. * Modules shared between CSAV and CSS Central are now installed to the system's Common Files folder. For example, there will be only one copy of CSSFTP.EXE and one copy of CSSFTP.INI. Some programs have also been modified during installation to register an application-specific path to these shared folders. Therefore, you will be unable to start them from a "Command Prompt" or "MS-DOS Prompt" window, but you will be able start them from Windows Explorer or a shortcut. * The F-PROT32.EXE and CCENTRAL.EXE installation programs no longer accept a user name and password for the CSS-AVS service. CSS-AVS only runs under the local system account. If you have scheduled tasks that scan network drives, these tasks may no longer scan those drives. * User Task Files are now in a subdirectory of the profile directory named Command Software/Command AntiVirus/Tasks. Users' tasks will now roam with them when they move to another Win32 computer. However, the CSS-AVS service does not have permission to read the location of the user task directories and, therefore, user tasks can no longer be scheduled tasks. F-PROT32.EXE will NOT enable the schedule button on user tasks, F-AGENT will not show a user task as being scheduled, and CSS-AVS will not execute a user task. To execute a scheduled task through CSS-AVS, make the task file a system task by moving it to the system task file folder, or by creating a new system task with the same properties. NOTE: As an alternative, you should use the Windows System Task Scheduler to run F-PROT.EXE, CSAVNTC.EXE, or CSAV95C.EXE. * F-NET has been recompiled as a 32-bit program. The 32-bit NetWare API DLLs are not part of the CSAV installation. Instead, the DLLs can be installed with the Novell NetWare client for Windows 2000/NT. * All log files produced by Automatic Update or Update Deffiles now to go to the system's temp directory. This is necessary because a regular user cannot write to the
|
|