home

livecall.exe

Windows Live Call

Microsoft Corporation

Publisher:
Microsoft Corporation  (signed and verified)

Product:
Windows Live Call

Version:
1.5.204.0

MD5:
29913a6d6f3a438f6c72c59996068fda

SHA-1:
0ca974548f0e5b29bc730c09a7f3f05ced299899

SHA-256:
603e03e08901ac28394d28f6dc5fb48f40c09f3048c127d7803e8ee92e64e546

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/23/2024 5:17:34 AM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
infected with Win32.Parite.2
9.0.1.05190

File size:
473.5 KB (484,830 bytes)

Product version:
1.5.204.0

Copyright:
Copyright © 2006 Microsoft Corporation. All rights reserved.

Original file name:
livecall.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\windows live\messenger\livecall.exe

Digital Signature
Signed by:
Microsoft Corporation

Authority:
Microsoft Corporation

Valid from:
4/4/2006 7:43:46 PM

Valid to:
10/4/2007 7:53:46 PM

Subject:
CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Code Signing PCA, OU=Copyright (c) 2000 Microsoft Corp., O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
61469ECB000400000065

File PE Metadata
Compilation timestamp:
7/7/2007 2:11:36 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
12288:N5HW5pksgz7itCUJ85PbGfOKvQ6teI92mYbPCyeWxsYrwKdN+:rHW5pLMkCUJ85PbGdMmYbogtsKdN+

Entry address:
0x24789

Entry point:
E8, B8, 07, 00, 00, E9, 36, FD, FF, FF, CC, FF, 25, E8, 11, 40, 00, 53, 8A, 5C, 24, 08, F6, C3, 02, 56, 8B, F1, 74, 24, 57, 68, C6, 51, 42, 00, 8D, 7E, FC, FF, 37, 6A, 0C, 56, E8, 62, 03, 00, 00, F6, C3, 01, 74, 07, 57, E8, CF, FF, FF, FF, 59, 8B, C7, 5F, EB, 13, E8, F6, 09, 00, 00, F6, C3, 01, 74, 07, 56, E8, B9, FF, FF, FF, 59, 8B, C6, 5E, 5B, C2, 04, 00, CC, FF, 25, 4C, 12, 40, 00, CC, CC, 68, 45, 48, 42, 00, 64, FF, 35, 00, 00, 00, 00, 8B, 44, 24, 10, 89, 6C, 24, 10, 8D, 6C, 24, 10, 2B, E0, 53, 56, 57...
 
[+]

Code size:
196 KB (200,704 bytes)

Windows Firewall Allowed Program
Name:
C:\Program Files\Windows Live\Messenger\livecall.exe


Scan livecall.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.