Aryeh Goretsky

This is related to WPAD DNS activity:
https://findproxyforurl.com/wpad-introduction/
Appears WPAD has a number of security risks with the recommendation it be permanently disabled if not using IE11 or Edge as your browser: https://auth0.com/blog/heads-up-https-is-not-enough-when-using-wpad/

Hi All,
Thank you for the information, like has already been said I think the notification from ESET is a side affect of something else that is changing the domain suffix when connect to the VPN.
Something that might be of consideration is disabling the 'Auto-Detect' proxy configuration in Chrome / IE which will then stop the browser from looking for these configurations as 'wpad.domain.com' is the default search browser use if this setting is enabled and the information is not provided via DHCP. This should fix the issue for anyone that is still seeing this on their machine. Please note to disable the setting a browser restart will be required.
As @Marcos said the IP will be unblocked, if anyone is able to test the solution above that would be appreciated. 
Regards,

Hi Guys, 
A quick question are all of these machines that are affected domain joined machines?
Also is anyone using wpad to configure a proxy on the machines connecting to the VPN?
Regards,

https://www.comparitech.com/blog/vpn-privacy/remote-access-vpn/

Please carry on as follows:
- enable logging of blocked operations in the advanced HIPS setup
- reproduce the issue
- disable logging
- collect logs with ESET Log Collector and upload the generated archive here.

I will contact the conjars.org. Thank you for support.

Thanks. I spend too much time juggling backups, changing passwords, updating drivers, and security -- didn't want more things.

There will be no effect on 3rd party AVs. As long as another AV is registered in the system, Defender will stay disabled.

Applications on Android are quite limited in terms of functionality. Antivirus can detect malicious applications and files but it cannot access SMS/MMS or check network communication for instance. These are limitations of the operating system.
As Wiki says: Stagefright is the name given to a group of software bugs that affect versions 2.2 "Froyo" of the Android operating system. It's hard to believe that you would have such an old version of Android. It's not even supported by ESET so you would not install EMS on it either.

Please check the Detections logs which should provide more information about the email which was detected. There should be the time of receipt, subject and both the recipient and sender logged. If you receive email through IMAP(S) and the detection was called HTML/Fraud.something, it's most likely a known issue which will be addressed via an automatic module update soon. If you have a chance to log in via a web interface to the mail server and remove the troublesome email, please do so.

Also does version 13 have the same issues?

Even if you run a scan as an administrator, there will be dozens of files that cannot be scanned.

As the notice says, the files could not be scanned due to being exclusively used by the operating system or another application, or you don't have sufficient read permissions. Running a scan as an administrator should scan more files than if run as the current user without elevated permissions.

Good news! I was able to look up my invoice on Newegg and it included the activation key.
I'm good to go now.

IDM supports scanning of downloaded files with a command-line on-demand scanner. It's possible to use ecls for this purpose:

Thanks again @Marcos

That did it. I changed the scan action of IDM from "auto" to "scan" and ESET blocked it straight way. Tried with Chrome, Firefox, Edge Chromium (with microsoft store idm extension) and Brave browser. 

ESET blocked the download on all four browsers.

As for limiting the connections which I didn't have to do anyway so  I'm leaving it as it is.

I'll keep looking if it'll happen again after changing the setting.

Thank you for now!!!

Have you tried this?
https://help.eset.com/eis/13/en-US/idh_page_settings_antivirus.html?idh_config_gamer.html

I believe this is a Microsoft "techno-babble" issue.
These Win 10 non-security updates are classified in the Microsoft Update Catalog as Recommended updates versus Optional updates. However, Microsoft in its KB articles will note that they show under the Win 10 Update Settings section of Optional Updates.
A true Optional update is Silverlight, etc..

Thank you, Marcos. This was very helpful, I was able to find an alternative torrent client. Cheers.

The initial scan run after installation scans all files on local disks and cleans detected files. While malware, adware and riskware is cleaned automatically, potentially unwanted and unsafe applications require the user to select an action at the end of the scan.
We've run a test and files were cleaned and quarantined alright. Please collect logs with ESET Log Collector and upload the generated archive here for perusal.
 

To begin, Eset doesn't permanently delete files; it places them in Quarantine. They can always be restored from there after setting real-time scan exclusions for the files for whatever Eset detected. This is not recommended unless the files have also been verified by another malware scanning authority such as VirusTotal.
Eset scans by default are set to "Remedy detection if safe, ask otherwise." Safe in this context means file removal would not adversely affect system operation. Refer to the below screen shot on how to modify default scan cleaning behavior:

 

Eset has predefined categories a parent for example, could restrict a child household member from accessing. See the below screen shot for a few of them. The alert Eset is displaying is because and assumed the source that installed Eset on their household devices has restricted access to one or more of these categories. Obviously, your web site is classified in one of these parental control categories. I don't know what Eset uses to determine how a web site falls in one of the categories. But there are various web site rating concerns that do so.
 
 

If you are referring to web site ads, Eset will detect malicious ones. It doesn't detect all ads. You need a browser based add-on/extension such as uBlockOrigin to prevent ads from showing on a webpage.

Please submit any suspicious files you might have to samples[at]eset.com in an archive encrypted with the password "infected". ESET detects adware, potentially unwanted and unsafe applications, scam, phishing, malware as well as all other kind of threats.

Version 9 is an old one and is the latest one with support for Windows XP. On the other hand, v13.2 is the latest version for Windows. For Linux the latest is the legacy version 4.0.95.