Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

22917 14.29%
de789 28.57%
d8718 14.29%
f2637 14.29%
b65c0 28.57%
(Note, AnchorFree Inc publishes each variation of this file with the same version, but the hashes are unique.)

Relationships

Parent process
Related files

PE structurePE file structure

Show functions
Import table
advapi32.dll
CryptSetHashParam, CryptDestroyHash, CryptGetHashParam, CryptCreateHash, CryptReleaseContext, InitializeSecurityDescriptor, SetSecurityDescriptorDacl, SetKernelObjectSecurity, RegOpenKeyExA, RegEnumKeyExA, RegQueryValueExA, RegCloseKey, CryptSignHashA
crypt32.dll
CertCloseStore, CryptAcquireCertificatePrivateKey, CertFreeCertificateContext, CertFindCertificateInStore, CertOpenStore
iphlpapi.dll
FlushIpNetTable, IpRenewAddress, IpReleaseAddress, GetAdapterIndex, DeleteIPAddress, GetInterfaceInfo, GetPerAdapterInfo, GetAdaptersInfo, DeleteIpForwardEntry, CreateIpForwardEntry, GetIpForwardTable, AddIPAddress
kernel32.dll
LocalFree, FormatMessageA, GetLastError, GetStdHandle, SetFilePointer, CreateFileA, WaitForSingleObject, SetLastError, Sleep, GetCurrentProcessId, SetEnvironmentVariableA, DeleteFileA, GetTickCount, GetProcAddress, LoadLibraryA, FreeLibrary, SetEvent, ResetEvent, ReadFile, WriteFile, GetOverlappedResult, CloseHandle, DeviceIoControl, CancelIo, GetEnvironmentVariableA, CreateEventA, SetConsoleMode, GetConsoleMode, GetNumberOfConsoleInputEvents, ReadConsoleInputA, GetConsoleTitleA, SetConsoleTitleA, CreateSemaphoreA, ReleaseSemaphore, GetFileType, GetExitCodeProcess, CreateProcessA, GetStartupInfoA, GetModuleFileNameA, InterlockedExchange, InterlockedCompareExchange, TerminateProcess, GetCurrentProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, IsDebuggerPresent, QueryPerformanceCounter, GetCurrentThreadId, GetSystemTimeAsFileTime, AddAtomA, DeleteCriticalSection, EnterCriticalSection, ExitProcess, FindAtomA, GetAtomNameA, InitializeCriticalSection, IsDBCSLeadByteEx, LeaveCriticalSection, MultiByteToWideChar, WideCharToMultiByte
libeay32.dll
ASN1_BIT_STRING_free, ASN1_BIT_STRING_get_bit, ASN1_INTEGER_cmp, ASN1_INTEGER_get, ASN1_OBJECT_free, ASN1_STRING_to_UTF8, BIO_ctrl, BIO_free, BIO_free_all, BIO_new, BIO_new_file, BIO_new_mem_buf, BIO_read, BIO_s_file, BIO_s_mem, BIO_test_flags, BIO_write, BN_dup, BN_num_bits, CRYPTO_free, DES_check_key_parity, DES_ecb_encrypt, DES_is_weak_key, DES_set_key_unchecked, DES_set_odd_parity, DH_free, DH_size, ENGINE_by_id, ENGINE_cleanup, ENGINE_ctrl_cmd_string, ENGINE_free, ENGINE_get_first, ENGINE_get_id, ENGINE_get_name, ENGINE_get_next, ENGINE_load_builtin_engines, ENGINE_register_all_complete, ENGINE_set_default, ERR_clear_error, ERR_error_string, ERR_free_strings, ERR_get_error, ERR_load_strings, ERR_peek_error, ERR_put_error, EVP_CIPHER_CTX_block_size, EVP_CIPHER_CTX_cleanup, EVP_CIPHER_CTX_flags, EVP_CIPHER_CTX_init, EVP_CIPHER_CTX_iv_length, EVP_CIPHER_CTX_key_length, EVP_CIPHER_CTX_nid, EVP_CIPHER_CTX_set_key_length, EVP_CIPHER_block_size, EVP_CIPHER_flags, EVP_CIPHER_iv_length, EVP_CIPHER_key_length, EVP_CIPHER_nid, EVP_CipherFinal, EVP_CipherInit, EVP_CipherUpdate, EVP_DigestFinal, EVP_DigestInit, EVP_DigestUpdate, EVP_MD_CTX_cleanup, EVP_MD_block_size, EVP_MD_size, EVP_MD_type, EVP_PKEY_free, EVP_cleanup, EVP_get_cipherbyname, EVP_get_digestbyname, EVP_md5, EVP_sha1, HMAC_CTX_cleanup, HMAC_CTX_init, HMAC_Final, HMAC_Init, HMAC_Init_ex, HMAC_Update, MD4_Final, MD4_Init, MD4_Update, MD5, MD5_Final, MD5_Init, MD5_Update, OBJ_nid2sn, OBJ_obj2nid, OBJ_obj2txt, OBJ_txt2nid, OPENSSL_add_all_algorithms_noconf, PEM_read_bio_DHparams, PEM_read_bio_PrivateKey, PEM_read_bio_X509, PEM_read_bio_X509_CRL, PKCS12_free, PKCS12_parse, RAND_bytes, RAND_pseudo_bytes, RSA_free, RSA_generate_key, RSA_new, RSA_set_method, RSA_size, X509_CRL_free, X509_LOOKUP_ctrl, X509_LOOKUP_hash_dir, X509_NAME_ENTRY_get_data, X509_NAME_ENTRY_get_object, X509_NAME_cmp, X509_NAME_dup, X509_NAME_entry_count, X509_NAME_free, X509_NAME_get_entry, X509_NAME_get_index_by_NID, X509_NAME_oneline, X509_STORE_CTX_get_ex_data, X509_STORE_add_cert, X509_STORE_add_lookup, X509_STORE_set_flags, X509_free, X509_get_ext_d2i, X509_get_issuer_name, X509_get_pubkey, X509_get_serialNumber, X509_get_subject_name, X509_verify_cert_error_string, d2i_PKCS12_fp, d2i_X509, i2a_ASN1_INTEGER, sk_find, sk_free, sk_new, sk_new_null, sk_num, sk_pop_free, sk_push, sk_value
libpkcs11-helper-1.dll
pkcs11h_addProvider, pkcs11h_certificate_create, pkcs11h_certificate_deserializeCertificateId, pkcs11h_certificate_enumCertificateIds, pkcs11h_certificate_freeCertificate, pkcs11h_certificate_freeCertificateId, pkcs11h_certificate_freeCertificateIdList, pkcs11h_certificate_getCertificateBlob, pkcs11h_certificate_serializeCertificateId, pkcs11h_engine_setSystem, pkcs11h_forkFixup, pkcs11h_getMessage, pkcs11h_initialize, pkcs11h_logout, pkcs11h_openssl_createSession, pkcs11h_openssl_freeSession, pkcs11h_openssl_getX509, pkcs11h_openssl_session_getRSA, pkcs11h_openssl_session_getX509, pkcs11h_setForkMode, pkcs11h_setLogHook, pkcs11h_setLogLevel, pkcs11h_setPINCachePeriod, pkcs11h_setPINPromptHook, pkcs11h_setProtectedAuthentication, pkcs11h_setTokenPromptHook, pkcs11h_terminate
libssl32.dll
BIO_f_ssl, SSL_CIPHER_get_name, SSL_CIPHER_get_version, SSL_CTX_add_client_CA, SSL_CTX_check_private_key, SSL_CTX_ctrl, SSL_CTX_free, SSL_CTX_get_cert_store, SSL_CTX_load_verify_locations, SSL_CTX_new, SSL_CTX_set_cipher_list, SSL_CTX_set_client_CA_list, SSL_CTX_set_default_passwd_cb, SSL_CTX_set_info_callback, SSL_CTX_set_tmp_rsa_callback, SSL_CTX_set_verify, SSL_CTX_use_PrivateKey, SSL_CTX_use_PrivateKey_file, SSL_CTX_use_RSAPrivateKey, SSL_CTX_use_certificate, SSL_CTX_use_certificate_chain_file, SSL_CTX_use_certificate_file, SSL_alert_desc_string_long, SSL_alert_type_string_long, SSL_free, SSL_get_cipher_list, SSL_get_current_cipher, SSL_get_ex_data, SSL_get_ex_data_X509_STORE_CTX_idx, SSL_get_ex_new_index, SSL_get_peer_certificate, SSL_get_version, SSL_library_init, SSL_load_client_CA_file, SSL_load_error_strings, SSL_new, SSL_set_accept_state, SSL_set_bio, SSL_set_connect_state, SSL_set_ex_data, SSL_state_string_long, TLSv1_client_method, TLSv1_method, TLSv1_server_method
lzo2.dll
lzo1x_decompress_safe, lzo1x_1_15_compress, __lzo_init_v2
msvcr90.dll
DllMain
msvcrt.dll
DllMain
wininet.dll
InternetQueryOptionA
ws2_32.dll
WSAEnumNetworkEvents, WSAEventSelect, WSAGetOverlappedResult, WSASendTo, WSASend, WSARecvFrom, WSARecv, WSAWaitForMultipleEvents, WSACleanup, WSAGetLastError, WSASetLastError, WSAStartup, accept, bind, closesocket, connect, gethostbyname, getsockname, getsockopt, htonl, htons, inet_ntoa, ioctlsocket, listen, ntohl, ntohs, recv, select, send, setsockopt, socket

openvpn.exe

By AnchorFree Inc (Signed)

Remove openvpn.exe
MD5:   2291772c91beddb1d75b41f7ce7fb698
SHA1:   782d7aa4eda8571753bfed9c9b6573d59ccb18ce
SHA256:   96d8e553b7d0d85090d8daa9590f0d41428435858b5e64a0f2b19fa6f9067f9d

What is openvpn.exe?

Python is a general-purpose, interpreted high-level programming language whose design philosophy emphasizes code readability. Its syntax is said to be clear and expressive. Python has a large and comprehensive standard library. Python supports multiple programming paradigms, primarily but not limited to object-oriented, imperative and, to a lesser extent, functional programming styles. Python is often used as a scripting language for web applications.

Overview

openvpn.exe executes as a process under the SYSTEM account with extensive privileges (the system and the administrator accounts have the same file privileges) typically within the context of its parent capiws.exe. This is typically installed with the program OpenVPN Connect published by OpenVPN Technologies. The file is digitally signed by AnchorFree Inc which was issued by the VeriSign certificate authority (CA).

DetailsDetails

File name:openvpn.exe
Typical file path:C:\Program Files\openvpn technologies\openvpn client\etc\..\core\openvpn.exe
Size:394 KB (403,456 bytes)
Certificate
Issued to:AnchorFree Inc
Authority (CA):VeriSign
Expiration date:Monday, April 14, 2014
Digital DNA
PE subsystem:Windows Console
File packed:No
Code language:Microsoft Visual C++ 9.0
.NET CLR:No
More details

ResourcesPrograms

The following program will install this file
OpenVPN Technologies
3% remove
OpenVPN is an open source software application that implements virtual private network (VPN) techniques for creating secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. OpenVPN allows peers to authenticate each other using a pre-shared secret key, certificates, or username/password. When used in a multiclient-server configuration, it allows the server to release an authenti...
Network connections
  • [UDP] listens on port 60384

  • ResourcesResource utilization

    (Note: statistics below are averages based on a minimum sample size of 200 unique participants)
    Averages
     
    CPU
    Total CPU:0.00001432%
    0.028634%
    Kernel CPU:0.00000707%
    0.013761%
    User CPU:0.00000725%
    0.014873%
    Kernel CPU time:10,312 ms/min
    100,923,805ms/min
    CPU cycles:150,666/sec
    17,470,203/sec
    Memory
    Private memory:3.8 MB
    21.59 MB
    Private (maximum):4.86 MB
    Private (minimum):4.86 MB
    Non-paged memory:3.8 MB
    21.59 MB
    Virtual memory:34.16 MB
    140.96 MB
    Virtual memory (peak):39.43 MB
    169.69 MB
    Working set:4.86 MB
    18.61 MB
    Working set (peak):7.25 MB
    37.95 MB
    Page faults:21,081/min
    2,039/min
    I/O
    I/O read transfer:0 Bytes/sec
    1.02 MB/min
    I/O read operations:1/sec
    343/min
    I/O write transfer:98 Bytes/sec
    274.99 KB/min
    I/O write operations:1/sec
    227/min
    I/O other transfer:643 Bytes/sec
    448.09 KB/min
    I/O other operations:13/sec
    1,671/min
    Resource allocations
    Threads:3
    12
    Handles:127
    600

    BehaviorsProcess properties

    Integrety level:System
    Platform:32-bit
    Command line:openvpn --errors-to-stderr --log-append "C:\Program Files\openvpn technologies\openvpn client\etc\log\andrew_vpn_redfoundry_com_autologin_p0966.log" --win-sys env --config stdin --auth-nocache --management 127.0.0.1 56842 --management-hold --management-client --management-query-passwords --management-query-remote --management-up-down --allow-pull-fqdn --auth-retry nointeract --push-peer-info --setenv uv_ascli_ver 1.8.3 --setenv uv_plat_rel 7
    Owner:SYSTEM
    Parent process:capiws.exe

    Windows OS versionsDistribution by Windows OS

    OS versiondistribution
    Windows 8 Pro with Media Center 33.33%
    Windows 8 Pro 16.67%
    Microsoft Windows XP 16.67%
    Windows 7 Professional 16.67%
    Windows 7 Ultimate 16.67%

    Distribution by countryDistribution by country

    United States installs about 60.00% of openvpn.exe.

    OEM distributionDistribution by PC manufacturer

    PC Manufacturerdistribution
    Acer 40.00%
    Dell 40.00%
    Hewlett-Packard 20.00%
    Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

    Download it for FREE