home

spyshelter.sys

Datpol

It runs as a Windows 64-bit kernel mode device driver named “Spyshelter”.
Publisher:
SpyShelter  (signed by Datpol)

Product:
SpyShelter

Description:
SpyShelter Driver

Version:
10.2.0.0 built by: Windows

MD5:
a10e80fb203bbff35d3f1e72db433d1a

SHA-1:
211aa62a733983de6fd125e1380e3243975483bb

SHA-256:
33e14941f5e433dad7f49689a08d24506e117ab6f02b3286a72f7a6374375451

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
2/25/2025 4:01:55 AM UTC  (today)

File size:
1016.3 KB (1,040,680 bytes)

Product version:
10.2

Copyright:
(C) Datpol. All rights reserved.

Original file name:
SpyShelterDrv.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Program Files\spyshelter free anti-keylogger\spyshelter.sys

Digital Signature
Signed by:
Datpol

Authority:
GlobalSign nv-sa

Valid from:
9/10/2015 2:45:39 PM

Valid to:
9/9/2016 5:37:53 PM

Subject:
CN=Datpol, O=Datpol, L=Olkusz, C=PL

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121773958921AADBD140FA20DCFF3EE2E49

File PE Metadata
Compilation timestamp:
9/18/2015 11:00:19 AM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
24576:ZC02/INIQisCjxxGQNqJt9xyrYgMsw0mabViWMoTMRm05A5dNC:mCis+7GQ5rYgMswuUWMVRm05QQ

Entry address:
0x16E87D

Entry point:
68, DC, 8B, F4, FF, E8, D6, 0C, 0D, 00, 62, 8C, E8, FF, 1A, 6F, 71, 17, 00, 97, 2B, D0, E8, FF, E1, 9C, 56, E8, FF, AC, 73, 35, 17, 00, 7F, 73, 99, 17, 00, F1, 69, 18, E8, FF, 8B, 01, 93, 17, 00, B3, C2, 88, 17, 00, CA, 84, 61, E8, FF, 86, 28, 9C, 17, 00, 32, 7C, 26, 17, 00, 1E, EB, DB, E8, FF, 73, 0F, 7A, 17, 00, CD, B0, FC, 17, 00, C0, 9F, 9F, E8, FF, F3, BF, 33, E8, FF, 5D, 85, B2, 17, 00, AF, A5, 39, E8, FF, 7F, 2B, C0, E8, FF, AA, F3, 1F, DA, FF, FF, FF, 37, C2, 47, 16, 00, 7B, 74, E1, 25, FF, FF, FF...
 
[+]

Code size:
1008.5 KB (1,032,704 bytes)

Driver
Display name:
Spyshelter

Description:
Spyshelter driver

Type:
Kernel device driver (KernelDriver)

Group:
FSFilter Activity Monitor

Depends on:
FltMgr


Scan spyshelter.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.