Mohd

correct.. Ultimately, extensions are another doors for the attackers .. I have removed all the extensions and not even thinking to use them again! Thanks

As Marcos suggested, I uninstalled all extensions not only start chrome without extensions. Now it looks no more notifications about riskware are coming, Although still I don't know what this malware is doing on my PC and why most of malware protectors are not considering it as malware. Thanks all of you for your help

I changed all of them to aggressive including what you said but still ESET is not detecting the riskware. You are right regarding enabling two malware protection same time. But MBAM is discovering that threat if I run real-time enabled. I think nothing will stop the malware if it's disabled. I know no product provides 100% protection but As I found this riskware by another product and I'm using ESET as main protection product.. I hope to look for some one here to help in a proper solution.

I read a lot about wtrxus.com, the most giving it low rate and looks like a safe domain but some are dealing with it as malicious domain. From its behavior I beleive wtrxus.com is malicious domain as the Malwarebytes popup notification is almost appearing every minute (blocking something from communicating with outside). Yes you are correct I should not use both of them at the same time but ultimately Malwarebytes discovered some suspicious behavior in my PC and for that reason only I did not stop it although ESET must be the main security product.

You mean : Advanced setup==> Protections==> potentially unsafe applications it was off by default. I have changed it to "Balanced" now.

Marcos and itman.. Bellow may answer your questions. Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 8/19/23 Protection Event Time: 9:20 PM Log File: 25720e1e-3ebd-11ee-8287-005056c00001.json -Software Information- Version: 4.6.0.277 Components Version: 1.0.2114 Update Package Version: 1.0.74217 License: Trial -System Information- OS: Windows 10 (Build 19045.3324) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , C:\Program Files\Google\Chrome\Application\chrome.exe, Blocked, -1, -1, 0.0.0, , -Website Data- Category: RiskWare Domain: wtrxus.com IP Address: 147.182.140.228 Port: 443 Type: Outbound File: C:\Program Files\Google\Chrome\Application\chrome.exe (end)

Hello,, Recently I installed eset smart security premium and another Malware remover.. Eset did not detect any threat but the malware remover is blocking a riskware trying to communicate to outside server (Outbound).. It's annoying me but this continues message appearing showing the IP address including port number and the application used. Unfortunately, I'm not able to attach the message here! however, I'm communicating with them and waiting their analysis. My question is, Eset smart security supposed to provide full protection isn't it? why it did not detect such that riskware? Any tool provided by eset that detecting or protecting against above riskware? Thanks