Detections
Analytics

CCI|CCI-001243

Title

Configure malicious code protection mechanisms to block malicious code; quarantine malicious code; and/or take organization-defined action(s) in response to malicious code detection.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
DTAM029 - McAfee VirusScan On Delivery Email Scan Policies, when a threat is found, must be configured to clean attachments as the first action.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM029 - McAfee VirusScan On Delivery Email Scanner Properties, When a threat is found, must be configured to clean attachments as the first action.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM039 - McAfee VirusScan On Delivery Email Scan Policies must be configured to clean attachments as the first action for when an unwanted program is found.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM039 - McAfee VirusScan On Delivery Email Scanner Properties must be configured to clean attachments as the first action for When an unwanted program is found.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM056 - McAfee VirusScan On-Demand scan actions, When a threat is found must be configured to clean files automatically as first action.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM056 - McAfee VirusScan On-Demand scan actions, When a threat is found must be configured to clean files automatically as first action.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM057 - McAfee VirusScan On-Demand scan actions, When a threat is found must be configured to delete files automatically if first action fails.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM057 - McAfee VirusScan On-Demand scan actions, When a threat is found must be configured to delete files automatically if first action fails.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM135 - McAfee VirusScan Unwanted Programs Policy must be configured to detect spyware.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM135 - McAfee VirusScan Unwanted Programs Policies must be configured to detect spyware.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM136 - McAfee VirusScan Unwanted Programs Policy must be configured to detect adware.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM136 - McAfee VirusScan Unwanted Programs Policies must be configured to detect adware.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM145 - McAfee VirusScan Access Protection Rules Common Standard Protection must be set to block and report when common programs are run from the Temp folder.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM145 - McAfee VirusScan Access Protection Rules Common Standard Protection must be set to block and report when common programs are run from the Temp folder.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM146 - McAfee VirusScan Access Protection Rules Common Standard Protection must be set to prevent hooking of McAfee processes.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM146 - McAfee VirusScan Access Protection: Common Standard Protection must be set to prevent hooking of McAfee processes.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM148 - McAfee VirusScan Access Protection Rules Anti-Spyware Maximum Protection must be set to block and log execution of scripts from the Temp folder.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM148 - McAfee VirusScan Access Protection: Anti-Spyware Maximum Protection must be set to block and log execution of scripts from the Temp folder.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM155 - McAfee VirusScan On-Demand scan actions, When an unwanted program is found must be configured to clean files automatically as first action.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM155 - McAfee VirusScan On-Demand scan actions, When an unwanted program is found must be configured to clean files automatically as first action.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM158 - McAfee VirusScan On-Delivery Email Scan Policies must be configured to send a notification email to the IAO, IAM, and/or ePO administrator when a threatened email message is detected - bSendMailToUserWindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM158 - McAfee VirusScan On-Delivery Email Scan Policies must be configured to send a notification email to the IAO, IAM, and/or ePO administrator when a threatened email message is detected.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM158 - McAfee VirusScan On-Delivery Email Scanner must be configured to send a notification email to the IAO, IAM and/or ePO administrator when a threatening email message is detected.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM158 - McAfee VirusScan On-Delivery Email Scanner must be configured to send a notification email to the IAO, IAM and/or ePO administrator when a threatening email message is detected. - bSendMailToUserWindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM161 - McAfee VirusScan Access Protection Policies must be configured to enable access protection.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM161 - McAfee VirusScan Access Protection Properties must be configured to enable access protection.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM162 - McAfee VirusScan On Delivery Email Scan Policies, When a threat is found, must be configured to clean attachments as the first action and delete attachments if the first action fails.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM162 - McAfee VirusScan On Delivery Email Scanner Properties, when a threat is found, must be configured to delete attachments if the first action fails.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM163 - McAfee VirusScan On Delivery Email Scan Policies must be configured to delete attachments if the first action fails for when an unwanted program is found.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM163 - McAfee VirusScan On Delivery Email Scanner Properties must be configured to delete attachments if the first action fails for when an unwanted attachment is found.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM164 - McAfee VirusScan On-Demand scan actions, When an unwanted program is found must be configured to delete files automatically if first action fails.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM164 - McAfee VirusScan On-Demand scan actions, When an unwanted program is found must be configured to delete files automatically if first action fails.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAM170 - McAfee VirusScan Access Protection Rules Anti-spyware Maximum Protection must be set to block and report when block execution of all programs from temp folder.WindowsDISA McAfee VirusScan 8.8 Local Client STIG v6r1
DTAM170 - McAfee VirusScan Access Protection Rules Anti-Spyware Maximum Protection must be set to block and report when common all programs are run from the Temp folder.WindowsDISA McAfee VirusScan 8.8 Managed Client STIG v6r1
DTAVSEL-003 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x must be configured to enable On-Access scanning.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6
DTAVSEL-003 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x must be configured to enable On-Access scanning.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5
DTAVSEL-004 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to decompress archives when scanning.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6
DTAVSEL-004 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to decompress archives when scanning.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5
DTAVSEL-005 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to find unknown program viruses.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6
DTAVSEL-005 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to find unknown program viruses.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5
DTAVSEL-006 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to find unknown macro viruses.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5
DTAVSEL-006 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to find unknown macro viruses.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6
DTAVSEL-007 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to find potentially unwanted programs.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5
DTAVSEL-007 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to find potentially unwanted programs.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6
DTAVSEL-008 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to scan files when being written to disk.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6
DTAVSEL-008 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to scan files when being written to disk.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5
DTAVSEL-009 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to scan files when being read from disk.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6
DTAVSEL-009 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to scan files when being read from disk.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5
DTAVSEL-010 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to scan all file types.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5
DTAVSEL-010 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to scan all file types.UnixMcAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6