home

spyshelter.sys

Datpol

Publisher:
SpyShelter  (signed by Datpol)

Product:
SpyShelter

Description:
SpyShelter Driver

Version:
10.6.0.0 built by: Windows

MD5:
71a3b40380cfcea294ad8f7d961b08eb

SHA-1:
8d398638b7a581fd357c3f8317f455e3cb796a56

SHA-256:
894662311dc8df06f4c8ccc26738abb9a68f04f5dfc8b19d2e16d02481bfa0a4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/30/2024 10:18:39 AM UTC  (today)

File size:
353.9 KB (362,376 bytes)

Product version:
10.6

Copyright:
(C) Datpol. All rights reserved.

Original file name:
SpyShelterDrv.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\spyshelter.sys

Digital Signature
Signed by:
Datpol

Authority:
GlobalSign nv-sa

Valid from:
12/17/2015 7:54:53 AM

Valid to:
9/9/2016 10:37:53 AM

Subject:
CN=Datpol, O=Datpol, L=Olkusz, C=PL

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121B855E0C0CC521D24E52FEBEB543ED512

File PE Metadata
Compilation timestamp:
12/21/2015 4:27:08 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
6144:xuTT+7wfrhQPE+9XKiilqxn+5+dCJPtQ6Qf0EYuOLWeUf:v7+QcMaivxnwJCV/p8G

Entry address:
0xBFD8E

Entry point:
68, 63, A0, 66, 2D, E8, 0F, 74, 00, 00, 60, 8D, 64, 24, 2C, 0F, 84, 78, 9D, FB, FF, 68, BF, 39, 81, D0, 5F, 8D, 34, CD, AF, 45, BC, B5, 66, BF, 3A, F0, 8B, 7D, 08, 9C, 9C, 66, C7, 44, 24, 04, 5D, 7D, 8D, 35, 9A, 85, 08, 00, E8, 0E, 9C, FF, FF, 8D, 64, 24, 08, 0F, 84, 27, F6, FF, FF, 9C, FF, 34, 24, 89, 5C, 24, 04, 60, 8D, 64, 24, 28, E9, 45, 6D, 00, 00, 68, 64, 3E, B1, EF, 60, 2C, AC, F9, 34, BE, 66, 81, FD, 5F, 9F, F6, D0, F8, 2C, D2, 0F, A3, DB, E9, 5A, A4, 00, 00, 8B, 35, 3C, 20, 0D, 00, 9C, 8D, 64, 24...
 
[+]

Code size:
126 KB (129,024 bytes)

Scan spyshelter.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.