McAfee AVERT Stinger it is a utility that helps you to detect and eliminate specific viruses. It does not replace the full anti-virus insurance, but it is rather a tool to give support to administrators and users when dealing with an infected system. McAfee AVERT Stinger utilizes next generation scan engine technology, including process scanning, digitally signed DAT files and effective scan. McAfee AVERT Stinger contains specific detection and remedy for W32/Poplip only. At this time, because of the nature of the infection algorithm, repair of files infected with w32/Poplip may not return the files to their origin, pre-infected state, and can cause problems with self-checking applications.
The program includes detection for all known variants: BackDoor-AQJ BackDoor-CEB Backdoo-CFB, BackDoor-JZ Bat/Mumu.worm exploit-DcomRpc, Exploit-LSASS IPCScan IRC.Flood.ap, IRC/Flood.bi IRC/Flood.cd NTServiceLoader, PWS_Narod PWS-Sincom.dll W32/Anig.worm, W32/Bagle@MM W32/Blaster.Worm (Lovsan) W32?Bugbear@MM, W32/Deborm.worm.gen W32/Doomjuice.worm W32/Dumaru, W32/Elkern.cav W32/Fizzer.gen@MM W32/FunLove, W32/Klez W32/Korgo.worm W32/Lirva., W32/Zafi.b.dam, W32/Zindos.worm, W32/Zotob.worm. Windows ME and XP is using a restore utility that backup selected files at the same time to the C:_Restore folder. The file name has been replaced: from "stinger.exe" to "s-t-i-n-g-e-r.exe" to avoid anti-stinger tactics used by Sober.p. An infected file could be stored there as a backup file, and VirusScan will be unable to delete these files. You must disable the System restore Utility to remove the infected files from the C:_Restore folder.
