Infected web resource detected

Options

Hello everyone,

I'm receiving numerous notifications like this:

Feature: Online Threat Prevention
We blocked this dangerous page for your protection:
[*url removed by @Flexx*]
Accessed by: powershell.exe
Dangerous pages attempt to install software that can harm the device, gather personal information, or operate without your consent.

The issue is that I don't know the location of the PowerShell that's being executed to determine what's happening. Is there any way to obtain this information?

Any recommendations to follow would be greatly appreciated.

Thanks in advance

Tagged:

Comments