
           McAfee(r) Labs Stinger(tm) 
           Version 10.1.0.1929 built on May 25 2012	


--------------------------------------
About the Stinger

The stinger is for detecting and fixing malicious DNS server settings making use of one of the IPs in the list provided by FBI.
(http://www.fbi.gov/news/stories/2011/november/malware_110911/)
The use of malicious DNS servers that are not in the FBI list is out of scope. 

--------------------------------------
To run the Stinger

1.	Unzip the downloaded zip file to your local folder. e.g. C:\work.
2.	Make sure stinger.exe and BaitFile exist in the unzipped folder. 
               The BaitFile is not a malicious file and is used by the stinger to trigger detection and cleaning for malicious DNS settings. 
3.	Run the stinger as administrator. Right click on the stinger.exe and select Run as administrator.
4.	On the stinger, click on Add or Browse and specify the folder created in step1. (C:\work)
5.	You can select C: and click on Remove just to scan the BaitFile.
6.	Click on ScanNow.
7.	If your DNS IP falls into any of ranges provided by FBI, the stinger fixes the DNS setting.
8.	The stinger will create the registry backup TCIP_Registry_Backup.reg. Users can restore network settings with this file.
9.	If your system is not using the aforementioned Rogue DNS servers, the stinger will not trigger the detection.
10.	For non-DHCP settings, please contact your network administrator (or network provider) who may assist you to setup DNS settings.
11.	Reboot your machines.

