Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

b41fd 7.14%
aeac5 28.57%
dc0a8 7.14%
2c845 7.14%
ed179 7.14%
d6bb6 7.14%
b73da 14.29%
7a263 14.29%
166c4 7.14%
(Note, AnchorFree Inc publishes each variation of this file with the same version, but the hashes are unique.)

Relationships

Parent process
Related files

PE structurePE file structure

Show functions
Import table
advapi32.dll
CryptCreateHash, CryptDestroyHash, CryptGetHashParam, CryptReleaseContext, CryptSetHashParam, CryptSignHashA, InitializeSecurityDescriptor, RegCloseKey, RegEnumKeyExA, RegOpenKeyExA, RegQueryValueExA, SetKernelObjectSecurity, SetSecurityDescriptorDacl
crypt32.dll
CertCloseStore, CertFindCertificateInStore, CertFreeCertificateContext, CertOpenStore
iphlpapi.dll
AddIPAddress, CreateIpForwardEntry, DeleteIPAddress, DeleteIpForwardEntry, FlushIpNetTable, GetAdapterIndex, GetAdaptersInfo, GetInterfaceInfo, GetIpForwardTable, GetPerAdapterInfo, IpReleaseAddress, IpRenewAddress
kernel32.dll
AddAtomA, CancelIo, CloseHandle, CreateEventA, CreateFileA, CreateProcessA, CreateSemaphoreA, DeleteCriticalSection, DeleteFileA, DeviceIoControl, EnterCriticalSection, ExitProcess, FindAtomA, FormatMessageA, FreeLibrary, GetAtomNameA, GetConsoleMode, GetConsoleTitleA, GetCurrentProcessId, GetEnvironmentVariableA, GetExitCodeProcess, GetFileType, GetLastError, GetNumberOfConsoleInputEvents, GetOverlappedResult, GetProcAddress, GetStartupInfoA, GetStdHandle, GetTickCount, GetVolumeInformationA, InitializeCriticalSection, InterlockedExchange, LeaveCriticalSection, LoadLibraryA, LocalFree, ReadConsoleInputA, ReadFile, ReleaseSemaphore, ResetEvent, SetConsoleMode, SetConsoleTitleA, SetEnvironmentVariableA, SetEvent, SetFilePointer, SetLastError, SetStdHandle, SetUnhandledExceptionFilter, Sleep, WaitForSingleObject, WriteFile, GetModuleFileNameA, GetModuleHandleA, GetTempPathA, IsDBCSLeadByteEx, MultiByteToWideChar, TlsGetValue, VirtualProtect, VirtualQuery, WideCharToMultiByte
libeay32.dll
ASN1_BIT_STRING_free, ASN1_BIT_STRING_get_bit, ASN1_INTEGER_cmp, ASN1_INTEGER_get, ASN1_OBJECT_free, ASN1_STRING_to_UTF8, BIO_ctrl, BIO_free, BIO_free_all, BIO_new, BIO_new_file, BIO_new_mem_buf, BIO_read, BIO_s_file, BIO_s_mem, BIO_test_flags, BIO_write, BN_dup, BN_num_bits, CRYPTO_free, DES_check_key_parity, DES_ecb_encrypt, DES_is_weak_key, DES_set_key_unchecked, DES_set_odd_parity, DH_free, DH_size, ENGINE_by_id, ENGINE_cleanup, ENGINE_ctrl_cmd_string, ENGINE_free, ENGINE_get_first, ENGINE_get_id, ENGINE_get_name, ENGINE_get_next, ENGINE_load_builtin_engines, ENGINE_register_all_complete, ENGINE_set_default, ERR_clear_error, ERR_error_string, ERR_free_strings, ERR_get_error, ERR_load_strings, ERR_peek_error, ERR_put_error, EVP_CIPHER_CTX_block_size, EVP_CIPHER_CTX_cleanup, EVP_CIPHER_CTX_flags, EVP_CIPHER_CTX_init, EVP_CIPHER_CTX_iv_length, EVP_CIPHER_CTX_key_length, EVP_CIPHER_CTX_nid, EVP_CIPHER_CTX_set_key_length, EVP_CIPHER_block_size, EVP_CIPHER_flags, EVP_CIPHER_iv_length, EVP_CIPHER_key_length, EVP_CIPHER_nid, EVP_CipherFinal, EVP_CipherInit, EVP_CipherUpdate, EVP_DigestFinal, EVP_DigestInit, EVP_DigestUpdate, EVP_MD_CTX_cleanup, EVP_MD_block_size, EVP_MD_size, EVP_MD_type, EVP_PKEY_free, EVP_cleanup, EVP_get_cipherbyname, EVP_get_digestbyname, EVP_md5, EVP_sha1, HMAC_CTX_cleanup, HMAC_CTX_init, HMAC_Final, HMAC_Init, HMAC_Init_ex, HMAC_Update, MD4_Final, MD4_Init, MD4_Update, MD5, MD5_Final, MD5_Init, MD5_Update, OBJ_nid2sn, OBJ_obj2nid, OBJ_obj2txt, OBJ_txt2nid, OPENSSL_add_all_algorithms_noconf, PEM_read_bio_DHparams, PEM_read_bio_PrivateKey, PEM_read_bio_X509, PEM_read_bio_X509_CRL, PKCS12_free, PKCS12_parse, RAND_bytes, RAND_pseudo_bytes, RSA_free, RSA_generate_key, RSA_new, RSA_set_method, RSA_size, X509_CRL_free, X509_LOOKUP_ctrl, X509_LOOKUP_hash_dir, X509_NAME_ENTRY_get_data, X509_NAME_ENTRY_get_object, X509_NAME_cmp, X509_NAME_dup, X509_NAME_entry_count, X509_NAME_free, X509_NAME_get_entry, X509_NAME_get_index_by_NID, X509_NAME_oneline, X509_STORE_CTX_get_ex_data, X509_STORE_add_cert, X509_STORE_add_lookup, X509_STORE_set_flags, X509_free, X509_get_ext_d2i, X509_get_issuer_name, X509_get_pubkey, X509_get_serialNumber, X509_get_subject_name, d2i_PKCS12_fp, d2i_X509, i2a_ASN1_INTEGER, sk_find, sk_free, sk_new, sk_new_null, sk_num, sk_pop_free, sk_push, sk_value, BIO_f_base64, BIO_push, PEM_write_X509, X509_STORE_CTX_get_current_cert, d2i_PKCS12_bio
libpkcs11-helper-1.dll
pkcs11h_addProvider, pkcs11h_certificate_create, pkcs11h_certificate_deserializeCertificateId, pkcs11h_certificate_enumCertificateIds, pkcs11h_certificate_freeCertificate, pkcs11h_certificate_freeCertificateId, pkcs11h_certificate_freeCertificateIdList, pkcs11h_certificate_getCertificateBlob, pkcs11h_certificate_serializeCertificateId, pkcs11h_engine_setSystem, pkcs11h_forkFixup, pkcs11h_getMessage, pkcs11h_initialize, pkcs11h_logout, pkcs11h_openssl_createSession, pkcs11h_openssl_freeSession, pkcs11h_openssl_getX509, pkcs11h_openssl_session_getRSA, pkcs11h_openssl_session_getX509, pkcs11h_setForkMode, pkcs11h_setLogHook, pkcs11h_setLogLevel, pkcs11h_setPINCachePeriod, pkcs11h_setPINPromptHook, pkcs11h_setProtectedAuthentication, pkcs11h_setTokenPromptHook, pkcs11h_terminate
libssl32.dll
BIO_f_ssl, SSL_CIPHER_get_name, SSL_CIPHER_get_version, SSL_CTX_add_client_CA, SSL_CTX_check_private_key, SSL_CTX_ctrl, SSL_CTX_free, SSL_CTX_get_cert_store, SSL_CTX_load_verify_locations, SSL_CTX_new, SSL_CTX_set_cipher_list, SSL_CTX_set_client_CA_list, SSL_CTX_set_default_passwd_cb, SSL_CTX_set_info_callback, SSL_CTX_set_tmp_rsa_callback, SSL_CTX_set_verify, SSL_CTX_use_PrivateKey, SSL_CTX_use_PrivateKey_file, SSL_CTX_use_RSAPrivateKey, SSL_CTX_use_certificate, SSL_CTX_use_certificate_chain_file, SSL_CTX_use_certificate_file, SSL_alert_desc_string_long, SSL_alert_type_string_long, SSL_free, SSL_get_cipher_list, SSL_get_current_cipher, SSL_get_ex_data, SSL_get_ex_data_X509_STORE_CTX_idx, SSL_get_ex_new_index, SSL_get_peer_certificate, SSL_get_version, SSL_library_init, SSL_load_client_CA_file, SSL_load_error_strings, SSL_new, SSL_set_accept_state, SSL_set_bio, SSL_set_connect_state, SSL_set_ex_data, SSL_state_string_long, TLSv1_client_method, TLSv1_method, TLSv1_server_method
msvcrt.dll
DllMain
wininet.dll
InternetQueryOptionA
ws2_32.dll
WSACleanup, WSAEnumNetworkEvents, WSAEventSelect, WSAGetLastError, WSAGetOverlappedResult, WSARecv, WSARecvFrom, WSASend, WSASendTo, WSASetLastError, WSAStartup, WSAWaitForMultipleEvents, accept, bind, closesocket, connect, gethostbyname, gethostname, getsockname, getsockopt, htonl, htons, inet_ntoa, ioctlsocket, listen, ntohl, ntohs, recv, select, send, setsockopt, socket

openvpn.exe

By AnchorFree Inc (Signed)

Remove openvpn.exe
MD5:   aeac56ca08bfcc12e51485e637558846
SHA1:   2d29eb0fff3f9eb6a314fdae75abf08a536e20d4
SHA256:   c7cdade10ae43df322c58f639679b15020a3dbaf11311c31dfa345aaeafa428b

What is openvpn.exe?

OpenVPN is an open source software application that implements virtual private network (VPN) techniques for creating secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It uses a custom security protocol. OpenVPN can be extended with third-party plug-ins or scripts which can be called at defined entry points.

About openvpn.exe (from AnchorFree Inc)

OpenVPN is a robust and highly flexible tunneling application that uses all of the encryption, authentication, and certification features of the OpenSSL library to securely tunnel IP networks over a s

Overview

openvpn.exe executes as a process under the SYSTEM account with extensive privileges (the system and the administrator accounts have the same file privileges) typically within the context of its parent openvpnas.exe (by AnchorFree Inc). This is typically installed with the program Hotspot Shield 2.67 published by AnchorFree Inc and is most likely removed by most users once installed (64% removed). The file is digitally signed by AnchorFree Inc which was issued by the VeriSign certificate authority (CA).

DetailsDetails

File name:openvpn.exe
Typical file path:C:\Program Files\hotspot shield\bin\openvpn.exe
Size:618.86 KB (633,712 bytes)
Certificate
Issued to:AnchorFree Inc
Authority (CA):VeriSign
Effective date:Sunday, March 27, 2011
Expiration date:Sunday, April 13, 2014
Digital DNA
PE subsystem:Windows Console
Entropy:6.164818
File packed:No
Code language:Microsoft Visual C++
.NET CLR:No
More details

ResourcesPrograms

The following program will install this file
AnchorFree Inc
  64% remove
If you are using the free Service, AnchorFree may deliver third-party Advertisements within the content of any web page accessed. Advertisements may be injected into the top of the page, inserted directly into the page content, or even displayed to overlay the page. A “hotspot” is a Wi-Fi connection access point. Usually this type of connection is public; therefore, it is completely insecure. Hotspot Shield allows you to create a VPN, ...
Network connections
  • [UDP] listens on port 63467
  • [UDP] listens on port 3453

  • ResourcesResource utilization

    (Note: statistics below are averages based on a minimum sample size of 200 unique participants)
    Averages
     
    CPU
    Total CPU:0.01569712%
    0.028634%
    Kernel CPU:0.00787475%
    0.013761%
    User CPU:0.00782237%
    0.014873%
    Kernel CPU time:5,703 ms/min
    100,923,805ms/min
    Context switches:6/sec
    284/sec
    Memory
    Private memory:1.56 MB
    21.59 MB
    Private (maximum):3.48 MB
    Private (minimum):2.48 MB
    Non-paged memory:1.56 MB
    21.59 MB
    Virtual memory:34.15 MB
    140.96 MB
    Virtual memory (peak):40.83 MB
    169.69 MB
    Working set:3.47 MB
    18.61 MB
    Working set (peak):5.27 MB
    37.95 MB
    Resource allocations
    Threads:2
    12
    Handles:91
    600
    GUI GDI count:4
    103

    BehaviorsProcess properties

    Integrety level:Undefined
    Platform:32-bit
    Command lines:
    • openvpn --service hotspotshield_exit_1 1 --config "C:\Program Files\hotspot shield\config\config.hvpn" --cv 0 --auth-user-pass download-394-conduit_2.67_sip173.245.64.181_5245 --management 127.0.0.1 56700 --management-hold --management-query-passwords --management-client --remote 173.245.64.181 5245 --hand-window 10
    • openvpn --service hotspotshield_exit_1 1 --config "C:\Program Files\hotspot shield\config\config.hvpn" --cv 0 --auth-user-pass p102-364-conduit_2.67_sip23.21.30.46_5245 --management 127.0.0.1 56700 --management-hold --management-query-passwords --management-client --remote 23.21.30.46 5245 --hand-window 10
    Owner:SYSTEM
    Parent process:openvpnas.exe (by AnchorFree Inc)

    Windows OS versionsDistribution by Windows OS

    OS versiondistribution
    Windows 7 Ultimate 35.71%
    Microsoft Windows XP 28.57%
    Windows 7 Professional 14.29%
    Windows 7 Ultimate N 14.29%
    Windows XP Professional 7.14%

    Distribution by countryDistribution by country

    United States installs about 30.00% of openvpn.exe.

    OEM distributionDistribution by PC manufacturer

    PC Manufacturerdistribution
    MSI 100.00%
    Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

    Download it for FREE