20/10/2020

How to Utilize Stinger

Post By demavo 1 No Comments

It’s not a substitute for full antivirus protection, but an specialized tool to assist administrators and users when dealing with contaminated system. Stinger uses next-generation scanning technologies, such as rootkit scanning, and scan performance optimizations. It detects and eliminates threats identified under the »Threat List » option under Advanced menu options in the Stinger application.

McAfee Stinger now finds and eliminates GameOver Zeus and CryptoLocker.

How can you use Stinger?

  1. Download the most recent version of Stinger.
  2. When prompted, choose to save the file to a suitable location on your hard diskdrive, such as your Desktop folder.
  3. Once the downloading is complete, browse to the folder that contains the downloaded Stinger file, and run it.
  4. By default, Stinger scans for conducting procedures, loaded modules, registry, WMI and directory locations known to be used by malware to a system to keep scan times minimum. If necessary, click the »Customize my scanning » link to include extra drives/directories to your scan.
  5. Stinger has the capability to scan targets of Rootkits, which isn’t enabled by default.
  6. Click on the Scan button to start scanning the given drives/directories.
  7. By default, Stinger will repair any infected files it finds.
  8. Stinger Requires GTI File Reputation and runs network heuristics at Moderate level by default. If you choose »High » or »Very High, » McAfee Labs recommends you place the »On hazard detection » activity to »Report » only for the initial scan.

    To learn more about GTI File Reputation view the following KB articles

    KB 53735 – FAQs for International Threat Intelligence File Reputation

    KB 60224 – The best way to verify that GTI File Reputation is set up properly

    KB 65525 – Identification generically found malware (Global Threat Intelligence detections)

Read more https://freewindows10download.com/soft/mcafee-labs-stinger-64-bit At website Articles

Often Asked Questions

Q: I know I have a virus, but Stinger didn’t find one. What’s this?
A: Stinger isn’t a replacement for an entire anti-virus scanner. It is just supposed to detect and remove certain threats.

Q: Stinger discovered a virus that it could not fix. What’s this?
A: That is most likely due to Windows System Restore performance using a lock onto the infected file. Windows/XP/Vista/7 users must disable system restore before scanning.

Q: how Where is the scan log saved and how can I view them?
Within Stinger, navigate to the log TAB and the logs are displayed as record with time stamp, clicking onto the log file name opens the file from the HTML format.

Q: How Which would be the Quarantine files stored?

This listing does not include the results from running a scan.

Q: Why Are there any command-line parameters available when conducting Stinger?
A: Yes, even the command-line parameters have been exhibited by going to the help menu inside Stinger.

Q: I conducted Stinger and finally have a Stinger.opt file, what’s that?
A: When Stinger conducts it creates the Stinger.opt file which saves the recent Stinger configuration. When you run Stinger the next time, your previous configuration is employed as long as the Stinger.opt file is in precisely the identical directory as Stinger.

Q: Stinger updated elements of VirusScan. Is this expected behavior?
A: When the Rootkit scanning alternative is selected within Stinger tastes — VSCore files (mfehidk.sys & mferkdet.sys) to a McAfee endpoint will be upgraded to 15.x. These files are installed only if newer than what’s about the system and is needed to scan for the current creation of newer rootkits. If the rootkit scanning alternative is disabled in Stinger — the VSCore upgrade will not happen.

Q: How Can Stinger work rootkit scanning when installed through ePO?
A: We have disabled rootkit scanning from the Stinger-ePO package to limit the vehicle upgrade of VSCore components when an admin deploys Stinger to tens of thousands of machines. To enable rootkit scanning in ePO style, please use the following parameters while checking in the Stinger bundle in ePO:

–reportpath=%temp% –rootkit

Q: What versions of Windows are encouraged by Stinger?
A: Windows XP SP2, 2003 SP2, Vista SP1, 2008, 7, 8, 10, 2012, 2016, RS1, RS2, RS3, RS4, RS5, 19H1, 19H2. Moreover, Stinger requires the machine to get Web Explorer 8 or over.

Q: Which are the prerequisites for Stinger to execute at a Win PE surroundings?
A: when creating a custom Windows PE image, add support for HTML Application parts utilizing the directions offered in this walkthrough.

Q: How How can I obtain help for Stinger?
An: Stinger isn’t a supported program. McAfee Labs makes no guarantees relating to this item.

Q: how How can I add customized detections into Stinger?
A: Stinger has the option where a user can input upto 1000 MD5 hashes as a customized blacklist. During a system scan, if any files match the custom blacklisted hashes – the files will get deleted and noticed. This attribute is provided to assist power users that have isolated a malware sample(s) that no detection is available yet from the DAT files or GTI File Reputation.

  • During a scan, documents that fit the hash is going to have detection title of Stinger! . Full dat fix is applied on the file.
  • Documents which are digitally signed using a valid certificate or those hashes which are already marked as clean from GTI File Reputation will not be detected as a member of their customized blacklist. This is a safety feature to prevent users from accidentally deleting files.

    • Q: How How do conduct Stinger without the Real Protect component becoming installed?
    A: The Stinger-ePO bundle doesn’t execute Real Protect. To Be Able to run Stinger with no Real Protect becoming installed, do Stinger.exe –ePO

    Laisser un commentaire

    Votre adresse de messagerie ne sera pas publiée. Les champs obligatoires sont indiqués avec *