Thanks for your responses/explanations.
Can you lead me to a better analysis program, which
shows the real activity (thread-specific use) of FF7 ?
I used:
- Process Explorer
- Process Lasso
- System Explorer
- Samurize
I hope you can help me with this annoying problem. When FF7 is started a DNS/TCP
request is called by
C:\Windows\SysWOW64\rundll32.exe. I don't like "home calls",
so i disallowed it in my firewall. The event manager has an entry with
go.microsoft.com.
Do you know this problem ?
Problem solved.I started
URLSnooper for analysis and removed my firewall entry (
rundll32.exe).
Then i started
ff7.exe. As expected
rundll32.exe did several requests to Micro$oft.
After this i closed
ff7.exe and started it again repeatedly. ==> No more requests.
It seems that Micro$oft likes Final Fantasy 7.
This was sniffed by
URLSnooper:
http://go.microsoft.com/fwlink?linkid=30219&locale=de-DE&clientType=VISTA_GAMES&clientVersion=6.1.2
http://go.microsoft.com/fwlink/?linkid=30219&locale=de-DE&clientType=VISTA_GAMES&clientVersion=6.1.2
http://go.microsoft.com/fwlink/?linkid=30219&locale=de-DE&clientType=VISTA_GAMES&clientVersion=6.1.2
http://movie.metaservices.microsoft.com/locater/WMServiceLocater.asmx/GetServiceLocationsForClient?locale=de-DE&clientType=VISTA_GAMES&clientVersion=6.1.2
http://movie.metaservices.microsoft.com/locater/WMServiceLocater.asmx/GetServiceLocationsForClient?locale=de-DE&clientType=VISTA_GAMES&clientVersion=6.1.2
http://www.w3.org/2001/XMLSchema-instance
http://www.w3.org/2001/XMLSchema
http://www.microsoft.com/Microsoft.WindowsMedia.Services.Platform.Apps.Mds.Locater
https://games.metaservices.microsoft.com/games/SGamesWebService.asmx
http://gamesfeedback.metaservices.microsoft.com/gamesFeedback/GamesFeedbackWebService.asmx
Xhttp://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20Secure%20Server%20Authority
Vhttp://crl.microsoft.com/pki/mscorp/crl/Microsoft%20Secure%20Server%20Authority
Ahttp://corppki/crl/Microsoft%20Secure%20Server%20Authority
Rhttp://www.microsoft.com/pki/mscorp/Microsoft%20Secure%20Server%20Authority
Ahttp://corppki/aia/Microsoft%20Secure%20Server%20Authority
http://mscrl.microsoft.com/pki/mscorp/crl/mswww
http://crl.microsoft.com/pki/mscorp/crl/mswww
http://corppki/crl/mswww
http://www.microsoft.com/pki/mscorp/mswww
http://corppki/aia/mswww
http://cybertrust.omniroot.com/repository.cfm0
http://www.public-trust.com/cgi-bin/CRL/2018/cdp.crl0
http://www.public-trust.com/cgi-bin/CRL/2018/cdp.crl
http://www.public-trust.com
http://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20Secure%20Server%20Authority