I'm running ESET Internet Security 14.0.22.0 on Windows 10.
A short while ago, EIS generated a yellow "Application Modified" popup alerting me that egui.exe had been modified and was trying to connect to the network. The popup gave me the option to "disable rules" or "keep rules" for the firewall. I chose "keep rules" because I trust ESET.
Now, I'm wondering if something is wrong because I wouldn't expect ESET to trigger an alert about its own GUI. Note, below, that modification of signed and trusted applications is allowed, so I should only get a notification about programs that are not signed and trusted. Since I got an alert, does that mean that i have a virus named egui.exe? Or that egui.exe has been replaced or modified by a malicious program?
Configuration Notes:
ESET firewall filtering mode is set to "Automatic mode"
No firewall rules are defined under Advanced firewall settings
Application modification detection is enabled
Allow modification of signed (trusted) applications is enabled