We have a customer who is using our software on a machine using an unmanaged EndPoint installation. When we monitor the process created by our software on the customer machines, we can see that it contacts a certificate server - even though our application does not contain code which would do so. We don't see this activity on other machines. It is clear that the Sysfer.dll is being injected into this process. Is it possible that Endpoint is the source of this activity? If so, would there be Endpoint configuration settings which would control this?
Thanks for any insight!