Hello @Kay and happy holidays.
With the recent events and focus on securing working from home for many companies, our company/security team was auditing all of our builds and applications. They came across some interesting behavior that they want to ensure is part of SuRun and is working as it is intended and not something trying to take advantage of it. If you could review the details below and just let us know your thoughts that would be great. If this is not clear, just let me know what you need as I am just the middle man here.
Thanks
This is what we are seeing on our scanning:
C:\windows\SuRun.exe /QUIET /TESTAA 4916 00007FF83A0A3E98 C:\windows\system32\EaseOfAccessDialog.exe 211
parentprocess: sethc.exe
parentprocesspath: C:\Windows\System32\sethc.exe
pid: 4856
process: SuRun.exe
processcmdline: C:\windows\SuRun.exe /QUIET /TESTAA 828 00007FFC521F3E98 C:\windows\system32\EaseOfAccessDialog.exe 211
processpath: C:\Windows\SuRun.exe