home

spyshelter.sys

Datpol Janusz Siemienowicz

It runs as a Windows kernel mode device driver named “Spyshelter”.
Publisher:
SpyShelter  (signed by Datpol Janusz Siemienowicz)

Product:
SpyShelter

Description:
SpyShelter Driver

Version:
10.0.0.0 built by: Windows

MD5:
3f2f25267cd5f10a725bd436de6d34aa

SHA-1:
5552932168cf08f61291b3cc5f39ef0fbc357233

SHA-256:
774d533036aed698159ec7ed63b9d6925a18d70b29f244ae753615f45b35157b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 7:38:14 AM UTC  (today)

File size:
432.3 KB (442,632 bytes)

Product version:
10.0

Copyright:
(C) Datpol. All rights reserved.

Original file name:
SpyShelterDrv.sys

File type:
Driver (Win32 SYS)

Common path:
C:\Program Files\spyshelter premium\spyshelter.sys

Digital Signature
Signed by:
Datpol Janusz Siemienowicz

Authority:
GlobalSign nv-sa

Valid from:
11/5/2014 11:08:03 PM

Valid to:
1/8/2016 9:09:30 PM

Subject:
E=biuro@datpol.com, CN=Datpol Janusz Siemienowicz, O=Datpol Janusz Siemienowicz, L=Olkusz, S=Malopolskie, C=PL

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121D2FCC60F24553FA9E8F529B814703D51

File PE Metadata
Compilation timestamp:
7/29/2015 6:01:02 AM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
6144:IiQSdWa7HygpAr6htlPHa334WhUR/d5F9R85Ej0nzwXUnhYrPAsw9q3bwnn8W8an:IkwedhC33ef9eqj+wknOHw9Dn8xn9A

Entry address:
0xE64FD

Entry point:
9C, 60, 9C, 9C, C7, 44, 24, 28, E2, 9D, E0, 01, E9, 22, 51, FB, FF, 8D, 64, 24, 0C, 0F, 84, EA, 1F, 00, 00, 66, F7, D1, E8, B8, 23, FF, FF, F8, 09, DA, 40, 9F, 89, 7B, 1D, FD, 0A, B1, B2, CC, 3F, 0E, 03, 35, A0, 7F, 8C, 33, 30, AE, 0D, 14, ED, 57, BA, A9, 7E, F0, 4B, A5, 28, CB, BF, 2D, E2, 60, A6, FB, D9, 47, 2C, DA, 49, 58, C5, A0, 1E, 44, 70, 5E, 03, 7C, 12, 37, 8E, CD, 2A, 41, 26, D3, B3, B8, 6F, 74, BD, 99, 17, E0, 07, 41, E9, 02, 69, 56, DC, 62, D9, BF, 94, B8, C7, C5, 60, EB, CC, B8, 9A, 0D, 02, 10...
 
[+]

Code size:
153 KB (156,672 bytes)

Driver
Display name:
Spyshelter

Description:
Spyshelter driver

Type:
Kernel device driver (KernelDriver)

Group:
FSFilter Activity Monitor

Depends on:
FltMgr


Scan spyshelter.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.