asproxy.dll

ASProxy.dll

Astrill

It is installed as a Winsock Layered Service Provider (LSP) named “ASProxy over [MSAFD Tcpip [TCP/IP]]” as a layered chain entry. This is installed with Astrill.
Publisher:
Astrill  (signed and verified)

Product:
ASProxy.dll

Version:
2.1.2.6

MD5:
da1236307ef63b02652e64158c9d1f6f

SHA-1:
14d77894f9442eeab0a31ab39db6008d5b920619

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 10:11:33 AM UTC  (today)

File size:
362.4 KB (371,112 bytes)

Product version:
2.1.2.6

Copyright:
Copyright © 2010

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\Windows\System32\asproxy.dll

Digital Signature
Signed by:

Authority:
GlobalSign nv-sa

Valid from:
6/30/2011 9:55:57 PM

Valid to:
6/30/2014 9:55:57 PM

Subject:
CN=Astrill, O=Astrill, C=AU

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121F61ACD592FA15F6E46FE69285A269A64

File PE Metadata
Compilation timestamp:
7/27/2011 3:51:17 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:Iz2dHF9gNQabk6+IQy3YAMgWzzV6dGbaaHBl1i9LLUVJXUFhlt/iGUBD:Iz2T2NQabk6+Ip3LMF1629HBl1i49UrM

Entry address:
0x2EC61

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 27, 80, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, FF, 35, 34, 58, 05, 10, E8, F9, 28, 00, 00, 59, 85, C0, 74, 02, FF, D0, 6A, 19, E8, C9, 81, 00, 00, 6A, 01, 6A, 00, E8, 9F, 81, 00, 00, 83, C4, 0C, E9, 80, 80, 00, 00, 8B, FF, 55, 8B, EC, 83, EC, 20, 53, 33, DB, 39, 5D, 0C, 75, 1D, E8, 1B, EA, FF, FF, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, 51, E2, FF, FF, 83, C4, 14, 83, C8, FF, EB, 4D, 8B, 45, 08, 3B, C3, 74...
 
[+]

Entropy:
6.5859

Code size:
264 KB (270,336 bytes)

Winsock2 LSP
Name:
ASProxy over [MSAFD Tcpip [TCP/IP]]

Type:
Layered Chain Entry

Provider ID:
{C39AC3E0-5368-4E2A-B911-5881C9CE8DB2}


The file asproxy.dll has been discovered within the following program.

Astrill  by Astrill
www.astrill.com
About 8% of users remove it
 
Powered by Should I Remove It?

Scan asproxy.dll - Powered by Reason Core Security