cyberhelpme Posted September 16, 2023 ID:1589381 Share Posted September 16, 2023 Hello, I don't know if this is the place so post this so please correct me if I'm wrong. I am running modded Minecraft through Curseforge and I believe that uses Overwolf. When playing I recieved a notification from MB as follows: -Blocked Website Details- Malicious Website: 1 , C:\Program Files (x86)\Overwolf\0.233.1.2\OverwolfBrowser.exe, Blocked, -1, -1, 0.0.0, , -Website Data- Category: Trojan Domain: banner.digitalpinkunicorns.hu IP Address: 65.21.200.174 Port: 443 Type: Outbound File: C:\Program Files (x86)\Overwolf\0.233.1.2\OverwolfBrowser.exe My knowledge fo cyber security is only above minimum so from here what I did was searched both the domain and IP on VirusTotal. The domain came up completely clean from detections while the IP had 1 detection as malicious (but many communicating files marked as malicious - my knowledge is limited on how this relates). I then checked these sites out through a secure sandboxed browser and (using my limited knowledge again) tried to view the page source for anything that I saw that would be suspisious but didn't seem to find anything. This post is less about reporting a false positive and more to get peace of mind. Am I at risk from a genuine trojan for using the Overwolf and related software? I have already blocked the sites from my firewall and blacklisted them on my antivirus. Link to post Share on other sites More sharing options...
Staff Solution BjelakovicL Posted September 17, 2023 Staff Solution ID:1589489 Share Posted September 17, 2023 Hi, Thanks for reporting. This will be fixed in the next database update. Link to post Share on other sites More sharing options...
Recommended Posts