McAfee Stinger is a standalone utility used to detect and remove specific viruses.
McAfee Stinger now detects and removes GameOver Zeus and CryptoLocker.
How can you use Stinger?
Q: I understand I have a virus, but Stinger didn’t detect one. What’s this?
A: Stinger is not a substitute for a full anti virus scanner. It’s simply supposed to find and remove certain threats.
Q: Stinger found a virus it couldn’t fix. Why is this?
A: This is most likely due to Windows System Restore performance having a lock to the infected file. Windows/XP/Vista/7 consumers should disable system restore prior to scanning.
Q: Where’s the scanning log saved and how do I see them?More Here freewindows10download.com At our site
Inside Stinger, navigate into the log TAB and the logs have been displayed as record with the time stamp, clicking on the log file name opens the document from the HTML format.
Q: How Where are the Quarantine files stored?
A: The quarantine documents are saved under C:\Quarantine\Stinger.
A: The Threat List provides a listing of malware that Stinger is configured to detect. This listing doesn’t comprise the results of running a scan.
Q: Why Are there any command-line parameters accessible when running Stinger?
A: Yes, even the command-line parameters have been displayed by going to the help menu within Stinger.
Q: I conducted Stinger and finally have a Stinger.opt record, what’s that?
A: When Stinger conducts it creates the Stinger.opt file which saves the existing Stinger configuration. When you conduct Stinger the second time, your previous configuration is utilized as long as the Stinger.opt document is in precisely the exact same directory as Stinger.
Q: Stinger updated components of VirusScan. Is this expected behavior?
A: as soon as the Rootkit scanning alternative is chosen within Stinger preferences — VSCore documents (mfehidk.sys & mferkdet.sys) on a McAfee endpoint is going to be updated to 15.x. These documents are installed only if newer than what’s on the system and is required to scan for the current creation of newer rootkits. In case the rootkit scanning option is disabled inside Stinger — that the VSCore upgrade won’t occur.
Q: Does Stinger work rootkit scanning when deployed via ePO?
A: We have disabled rootkit scanning at the Stinger-ePO package to set a limit on the vehicle upgrade of VSCore parts when an admin deploys Stinger to thousands of machines. To Allow rootkit scanning in ePO style, please use the following parameters while assessing in the Stinger package in ePO:
For detailed directions, please refer to KB 77981
Q: What versions of Windows are encouraged by Stinger?
A: Windows XP SP2, 2003 SP2, Vista SP1, 2008, 7, 8, 10, 10, 2012, 2016, RS1, RS2, RS3, RS4, RS5, 19H1, 19H2. Furthermore, Stinger requires the device to have Web Explorer 8 or above.
Q: What are the requirements for Stinger to perform in a Win PE surroundings?
A: While developing a custom Windows PE picture, add support for HTML Application parts using the directions offered within this walkthrough.
Q: How do I get help for Stinger?
A: Stinger isn’t a supported application. McAfee Labs makes no guarantees about this product.
Q: how How can I add customized detections to Stinger?
A: Stinger gets the option where a user may input upto 1000 MD5 hashes as a custom blacklist. During a system scan, if any files fit the habit blacklisted hashes – the documents will get detected and deleted. This feature is provided to assist power users that have isolated an malware sample(s) that no detection is available yet in the DAT files or GTI File Reputation. To leverage this attribute:
- From the Stinger interface goto the Advanced –> Blacklist tab.
- Input MD5 hashes to be discovered either via the Enter Hash button or click on the Load hash List button to point to a text file containing MD5 hashes to be included in the scan.
- During a scan, all documents which fit the hash is going to have detection title of Stinger! . Total dat repair is used on the detected file.
- Documents which are digitally signed with a valid certificate or those hashes which are marked as blank from GTI File Reputation will not be detected as a member of their custom blacklist. This is a safety feature to prevent customers from accidentally deleting files.
Q: How do run Stinger with no Real Protect component becoming installed?
A: The Stinger-ePO bundle doesn’t execute Real Protect. In order to conduct Stinger with no Real Protect becoming installed, execute Stinger.exe –ePO