13:541 hr ago
Auto-handled
XCT-LIVE-TEST-01
BD · av
Trojan.LiveTest.001 quarantined — C:\Users\bryan\Downloads\setup.exe
AV quarantined the trojan successfully and the host appears to be a simulated live-test machine, no further action required beyond logging.
11:543 hr ago
Needs attention
DESKTOP-XACT-04
BD · fw
Outbound blocked 185.220.101.42:9001
Outbound connection attempt to known-bad IP (185.220.101.42, Tor exit node) on port 9001 from a desktop warrants investigation for potential malware or compromise, even though it was blocked.
11:543 hr ago
Needs attention
SRV-FILE-01
BD · av
Trojan.Generic.34521 quarantined — C:\Users\admin\Downloads\invoice.exe
Trojan quarantined on a file server in an admin account's Downloads folder warrants human review due to elevated privilege risk and potential lateral movement.
11:543 hr ago
Auto-handled
DESKTOP-XACT-01
BD · aph
Phishing URL aph_blocked — http://known-phish-site.example.com/login
Antiphishing module successfully blocked the phishing URL; no further action required.