Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

16.4.3522.0110 0.37%
16.4.3508.0205 1.47%
16.4.3505.0912 12.87%
15.4.3555.0308 17.65%
15.4.3538.0513 3.68%
15.4.3508.1109 0.37%
15.4.3502.0922 1.10%
14.0.8117.0416 0.37%
14.0.8117.0416 28.31%
14.0.8117.0416 8.09%
14.0.8117.0416 0.37%
14.0.8117.0416 2.57%
14.0.8117.0416 4.78%
14.0.8117.0416 2.57%
14.0.8117.0416 0.37%
14.0.8117.0416 0.37%
14.0.8117.0416 0.37%
14.0.8117.0416 1.84%
14.0.8117.0416 1.10%
14.0.8117.0416 0.37%
14.0.8089.0726 7.35%
14.0.8089.0726 0.37%
14.0.8089.0726 0.37%
14.0.8089.0726 1.10%
14.0.8050.1202 1.84%

Relationships

Parent process
Related files

PE structurePE file structure
Show functions
Import table
advapi32.dll
RegCloseKey, RegEnumKeyExW, RegCreateKeyExW, RegOpenKeyExW, RegQueryValueExW, RegSetValueExW, FreeSid, CheckTokenMembership, AllocateAndInitializeSid, TraceEvent, GetTraceEnableFlags, GetTraceEnableLevel, GetTraceLoggerHandle, RegisterTraceGuidsW, UnregisterTraceGuids, ConvertStringSecurityDescriptorToSecurityDescriptorW, MakeAbsoluteSD, RegDeleteKeyA, CryptReleaseContext, CryptDestroyHash, CryptCreateHash, CryptAcquireContextW, CryptHashData, CryptGetHashParam, QueryServiceStatusEx, CloseServiceHandle, OpenServiceW, OpenSCManagerW, CryptDestroyKey, CryptDeriveKey, CryptEncrypt, CryptDecrypt, RevertToSelf, AccessCheck, IsValidSecurityDescriptor, SetSecurityDescriptorOwner, SetSecurityDescriptorGroup, SetSecurityDescriptorDacl, AddAccessAllowedAce, InitializeAcl, GetLengthSid, InitializeSecurityDescriptor, OpenProcessToken, OpenThreadToken, ImpersonateSelf, RegDeleteValueW, RegGetValueW, GetTokenInformation, RegOpenCurrentUser
comctl32.dll
ImageList_Create, ImageList_AddMasked, ImageList_Destroy, ImageList_GetIcon
crypt32.dll
CertFreeCertificateContext, CertGetNameStringW, CertVerifyCertificateChainPolicy
gdi32.dll
StretchBlt, CreateRoundRectRgn, CombineRgn, GetRgnBox, GetTextMetricsW, EnumFontFamiliesExW, GetClipRgn, CreateRectRgn, ExtSelectClipRgn, SelectClipRgn, SetStretchBltMode, PatBlt, LPtoDP, SetMapMode, SetViewportOrgEx, CreateDCW, CreateMetaFileW, SaveDC, SetWindowOrgEx, SetWindowExtEx, RestoreDC, CloseMetaFile, DeleteMetaFile, CreateRectRgnIndirect, CreatePen, LineTo, MoveToEx, BitBlt, CreateCompatibleDC, CreateCompatibleBitmap, GetStockObject, GetDeviceCaps, CreateFontIndirectW, GetObjectW, SetBkMode, SetTextColor, SelectObject, DeleteDC, SetBkColor, ExtTextOutW, DeleteObject, CreateSolidBrush
gdiplus.dll
GdipGetImageGraphicsContext, GdipDrawImageI, GdipDrawImageRectI, GdipCloneImage, GdipBitmapGetPixel, GdipCreateBitmapFromResource, GdipCreateBitmapFromScan0, GdipGetImageHeight, GdipCreateImageAttributes, GdipDisposeImageAttributes, GdipDeleteBrush, GdipGetImageWidth, GdipDisposeImage, GdipDeleteGraphics, GdipFree, GdipAlloc, GdipCreatePen1, GdipCreateBitmapFromFile, GdipCreateBitmapFromFileICM, GdipCreateBitmapFromStream, GdipCreateBitmapFromStreamICM, GdipCreateSolidFill, GdipSetPenDashStyle, GdipCreateFromHDC, GdipDrawRectangle, GdipFillRectangle, GdipDrawImageRectRect, GdipCloneBrush, GdipCreateStringFormat, GdipDeleteStringFormat, GdipCreateFontFamilyFromName, GdipDeleteFontFamily, GdipDeleteFont, GdipBitmapSetPixel, GdipCreateLineBrushFromRectI, GdipSetStringFormatAlign, GdipSetStringFormatLineAlign, GdipResetWorldTransform, GdipTranslateWorldTransform, GdipDrawLineI, GdipDrawRectangleI, GdipFillRectangleI, GdipDrawString, GdipCreateFont, GdipSaveImageToFile, GdipSaveImageToStream, GdipBitmapLockBits, GdipBitmapUnlockBits, GdipDrawImageRect, GdipDeletePen, GdipCreateBitmapFromGdiDib, GdipGetImageThumbnail, GdipGetImageDecoders, GdipGetImageDecodersSize, GdipReleaseDC, GdipGetDC, GdipCreateHBITMAPFromBitmap
imm32.dll
ImmGetContext, ImmGetCompositionStringW, ImmSetConversionStatus, ImmGetConversionStatus, ImmAssociateContext, ImmReleaseContext
iphlpapi.dll
GetIfEntry, NotifyRouteChange, GetAdaptersInfo, GetIpAddrTable, GetIpForwardTable, GetIpNetTable
kernel32.dll
DllMain
livenattrav.dll
CreateP2PUPnPNatManagerInternal, GetLiveEchoClient
livetransport.dll
CreateObjectStoreService, CreateTransportService
msacm32.dll
acmStreamSize, acmFormatSuggest, acmMetrics, acmStreamPrepareHeader, acmStreamConvert, acmStreamUnprepareHeader, acmStreamClose, acmStreamOpen
msvcr110.dll
DllMain
msvcr80.dll
DllMain
msvcr90.dll
DllMain
netapi32.dll
NetApiBufferFree, NetServerGetInfo
ole32.dll
CreateILockBytesOnHGlobal, WriteClassStm, OleSetClipboard, RevokeDragDrop, GetHGlobalFromStream, CoTaskMemFree, CreateDataAdviseHolder, OleSaveToStream, CoCreateFreeThreadedMarshaler, StringFromCLSID, ReadClassStm, StgOpenStorageOnILockBytes, OleRun, StgCreateDocfileOnILockBytes, CoCreateInstance, CoSuspendClassObjects, CoCreateGuid, CoInitializeEx, CoUninitialize, CoGetInterfaceAndReleaseStream, CoMarshalInterThreadInterfaceInStream, CoAllowSetForegroundWindow, CoInitializeSecurity, OleUninitialize, CoRegisterClassObject, OleInitialize, CoRevokeClassObject, CoFreeUnusedLibraries, CLSIDFromString, CoSetProxyBlanket, CoInitialize, ReleaseStgMedium, StringFromGUID2, CreateStreamOnHGlobal, CLSIDFromProgID, OleLockRunning, CoTaskMemAlloc, OleRegEnumVerbs, OleRegGetUserType, OleRegGetMiscStatus, CreateOleAdviseHolder, CoWaitForMultipleHandles, IIDFromString, PropVariantClear, CoResumeClassObjects
presenceim.dll
CreatePlatformService, ParseAndSetMSNPPolicy
rpcrt4.dll
UuidFromStringA
setupapi.dll
SetupDiGetClassDevsExW, SetupDiEnumDeviceInfo, SetupDiGetDeviceRegistryPropertyW, SetupDiDestroyDeviceInfoList
shareanything.dll
ShareAnythingRegisterBehaviors
shell32.dll
SHGetFolderPathW, ShellExecuteW, ShellExecuteA, SHGetPathFromIDListW, SHBrowseForFolderW, SHGetMalloc, DragQueryFileW, SHFileOperationW, SHGetFileInfoW, ExtractIconExW, Shell_NotifyIconA, Shell_NotifyIconW, SHAppBarMessage, ShellExecuteExW, SHCreateDirectoryExW, SHGetFolderPathAndSubDirW, SHGetSpecialFolderPathW, SHQueryUserNotificationState, CommandLineToArgvW, SHGetKnownFolderPath
shlwapi.dll
UrlGetPartW, PathFindExtensionW, PathUnquoteSpacesW, PathRemoveArgsW, PathGetArgsW, PathAppendW, StrCmpIW, SHGetValueW, PathRemoveExtensionW, PathStripPathW, PathGetCharTypeW, PathIsDirectoryW, PathFileExistsW, SHCreateStreamOnFileW, PathRemoveFileSpecW, StrCmpNIA, StrStrIA, PathIsDirectoryEmptyW, PathFindFileNameW, UrlCombineW, StrRChrW, SHCreateStreamOnFileEx, StrStrIW, PathAddExtensionW, SHStrDupW
urlmon.dll
ObtainUserAgentString, CreateURLMonikerEx
user32.dll
DllMain
usp10.dll
ScriptItemize, ScriptBreak
uxcontacts.dll
DllMain, UXContactsUnInitProcess, TerminateUXContacts, InitializeUXContacts, UXContactsInitProcess
uxcore.dll
DllMain
uxctl.dll
UxControlsInitProcess, UxControlsCreateObject
uxtheme.dll
IsThemeActive
version.dll
VerQueryValueA, GetFileVersionInfoSizeW, GetFileVersionInfoW, GetFileVersionInfoA, GetFileVersionInfoSizeA, VerQueryValueW
wer.dll
WerReportSetParameter, WerReportCloseHandle, WerReportCreate, WerReportAddFile, WerReportSubmit
wininet.dll
InternetSetOptionA, InternetSetOptionW, InternetQueryOptionW, InternetInitializeAutoProxyDll, GetUrlCacheEntryInfoW, InternetGetConnectedStateExW, InternetCloseHandle, InternetSetStatusCallbackA, InternetQueryOptionA, InternetOpenA, InternetWriteFile, HttpEndRequestA, InternetReadFile, InternetQueryDataAvailable, InternetConnectA, HttpOpenRequestA, HttpAddRequestHeadersA, HttpQueryInfoA, InternetCrackUrlA, HttpSendRequestExA, InternetCrackUrlW, InternetCanonicalizeUrlW, InternetGetLastResponseInfoW
winmm.dll
waveInGetNumDevs, waveOutGetNumDevs
wldlog.dll
RetailLoggingFlush, RetailLoggingGetMemoryLog, RetailLoggingDirtyFlushLogs, UninitializeLogging, UninitializeModule, InitializeLogging, InitializeModule, RetailLoggingGetPath, GetZoneLevel, IsRetailLoggingEnabled, SetRetailLogging, ZoneLoggingEnabled, LogOutput
wlidux.dll
WlidUxCreateObject
ws2_32.dll
WSAIoctl, getnameinfo, WSCEnumProtocols, WSCGetProviderPath, WSACloseEvent, WSACreateEvent, freeaddrinfo, getaddrinfo
wtsapi32.dll
WTSRegisterSessionNotification, WTSUnRegisterSessionNotification, WTSQuerySessionInformationW, WTSFreeMemory

msnmsgr.exe

Windows Live Messenger by Microsoft Corporation (Signed)

Remove msnmsgr.exe
Version:   14.0.8117.0416
MD5:   4fdeee42c2891d6cfca94fa37657f3ac
SHA1:   a64675dc30e620972fa33b28b6450af586659d07
SHA256:   42d6e42104bacade45b4899aabac5af28fdea8c436a22b98eebd86d5a434375c

What is msnmsgr.exe?

Windows Live Messenger (formerly named MSN Messenger) is an instant messaging client. Windows Live Messenger uses the Microsoft Notification Protocol (MSNP) over TCP (and optionally over HTTP to deal with proxies) to connect to Microsoft Messenger service

Overview

msnmsgr.exe executes as a process with the local user's privileges usually within the context of Windows Explorer. It is set to be run when the PC boots and the user logs into Windows (added to the Run registry key for the current user). It has been configured with a firewall exception which allows both inbound and outbound network communication without being blocked. It is installed with a couple of know programs including Windows Live Essentials published by Microsoft Corporation, Windows Live Essentials from Microsoft Corporation and Windows Live Essentials by Microsoft Corporation.

DetailsDetails

File name:msnmsgr.exe
Publisher:Microsoft Corporation
Product name:Windows Live Messenger
Typical file path:C:\Program Files\windows live\messenger\msnmsgr.exe
File version:14.0.8117.0416
Size:3.69 MB (3,872,080 bytes)
Certificate
Issued to:Microsoft Corporation
Authority (CA):Microsoft Corporation
Expiration date:Monday, March 7, 2011
Digital DNA
PE subsystem:Windows GUI
File packed:No
Code language:Microsoft Visual C++ 8.0
.NET CLR:No
More details

ResourcesPrograms

The following programs will install this file
Windows Live Essentials
 Microsoft Corporation
10% remove
Windows Live Essentials is a suite of freeware applications by Microsoft that aims to offer integrated and bundled e-mail, instant messaging, photo-sharing, blog publishing, and security services. Essentials programs are designed to integrate well with each other, with Microsoft Windows, and with other Microsoft web-based services such as SkyDrive and Outlook.com, so that they operate as a seamless whole.

BehaviorsBehaviors

Startup files (user) run
Runs under the registry key 'HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'msnmsgr' → "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
Windows firewall allowed programs
Exceptions allow programs to access to the Internet through an outbound connections
  • Firewall exception for 'C:\Program\Windows Live\Messenger\msnmsgr.exe'
  • Firewall exception for 'C:\Program Files\Windows Live\Messenger\msnmsgr.exe'
  • Firewall exception for 'C:\Programas\Windows Live\Messenger\msnmsgr.exe'
  • Firewall exception for 'C:\Program Files\Windows Live\Messenger\msnmsgr.exe'
  • Firewall exception for 'C:\Program Files\Windows Live\Messenger\msnmsgr.exe'
  • Firewall exception for 'C:\Program Files\Windows Live\Messenger\msnmsgr.exe'

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.02807673%
0.028634%
Kernel CPU:0.01345616%
0.013761%
User CPU:0.01462057%
0.014873%
Kernel CPU time:822 ms/min
100,923,805ms/min
Context switches:3/sec
284/sec
Memory
Private memory:18.88 MB
21.59 MB
Private (maximum):34.7 MB
Private (minimum):3.3 MB
Non-paged memory:18.88 MB
21.59 MB
Virtual memory:158.92 MB
140.96 MB
Virtual memory (peak):166.73 MB
169.69 MB
Working set:6.13 MB
18.61 MB
Working set (peak):34.85 MB
37.95 MB
Resource allocations
Threads:26
12
Handles:640
600
GUI GDI count:125
103
GUI GDI peak:151
142
GUI USER count:99
49
GUI USER peak:132
71

BehaviorsProcess properties

Integrety level:Medium
Platform:32-bit
Command line:"C:\Program Files\windows live\messenger\msnmsgr.exe" /background
Owner:User
Parent process:explorer.exe (Windows Explorer by Microsoft Corporation)

ResourcesThreads

Averages
 
msnmsgr.exe (main module)
Total CPU:0.04808041%
0.272967%
Kernel CPU:0.02067963%
0.107585%
User CPU:0.02740078%
0.165382%
CPU cycles:1,085,120/sec
5,741,424/sec
Context switches:3/sec
79/sec
Memory:3.71 MB
1.16 MB
MSVCR90.dll
Total CPU:0.00560825%
Kernel CPU:0.00501310%
User CPU:0.00059515%
CPU cycles:100,440/sec
Memory:652 KB
MSVCR80.dll
Total CPU:0.00102866%
Kernel CPU:0.00000000%
User CPU:0.00102866%
CPU cycles:11,725/sec
Memory:620 KB
ntdll.dll
Total CPU:0.00051248%
Kernel CPU:0.00051248%
User CPU:0.00000000%
CPU cycles:1,892/sec
Memory:1.23 MB
uccapi.dll
Total CPU:0.00007837%
Kernel CPU:0.00004702%
User CPU:0.00003135%
Memory:4.62 MB

Common loaded modules

These are modules that are typiclaly loaded within the context of this process.

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Microsoft Windows XP 49.00%
Windows 7 Home Premium 18.00%
Windows 7 Ultimate 14.50%
Windows 7 Professional 3.50%
Windows Vista Home Premium 3.00%
Windows 8.1 1.50%
Windows Vista Business 1.50%
Windows 8 Pro 1.50%
Windows 7 Starter 1.50%
Windows 8 1.50%
Windows 7 Enterprise 1.00%
Windows 7 Home Basic 1.00%
Windows Seven Black Edition 1.00%
Windows Vista™ Home Premium 0.50%
Windows 8 Enterprise 0.50%
Windows 8 Pro with Media Center 0.50%

Distribution by countryDistribution by country

United States installs about 24.87% of Windows Live Messenger.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Hewlett-Packard 14.84%
Dell 12.50%
ASUS 10.94%
Acer 10.16%
Gateway 9.38%
Toshiba 7.81%
American Megatrends 7.81%
Sony 7.81%
Intel 6.25%
GIGABYTE 4.69%
Samsung 3.13%
Lenovo 1.56%
MSI 1.56%
Sahara 1.56%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE