home

spyshelter.sys

Datpol Janusz Siemienowicz

It runs as a Windows kernel mode device driver named “Spyshelter”.
Publisher:
SpyShelter  (signed by Datpol Janusz Siemienowicz)

Product:
SpyShelter

Description:
SpyShelter Driver

Version:
9.1.00.00 built by: Windows

MD5:
dfc56a2f7b02d8b7c27e161dce214e9c

SHA-1:
aaeeaa720c6a1cd2438656298c1dc3d915adac8c

SHA-256:
b080161b350295e6b553c40164dd95409a75996744e8dde5ed5c0c025cfb9944

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/2/2024 7:17:01 PM UTC  (today)

File size:
377.8 KB (386,912 bytes)

Product version:
9.1

Original file name:
SpyShelterDrv.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Program Files\spyshelter premium\spyshelter.sys

Digital Signature
Signed by:
Datpol Janusz Siemienowicz

Authority:
GlobalSign nv-sa

Valid from:
11/1/2013 10:08:56 AM

Valid to:
12/8/2014 5:09:30 PM

Subject:
E=biuro@datpol.com, CN=Datpol Janusz Siemienowicz, O=Datpol Janusz Siemienowicz, L=Olkusz, S=Malopolskie, C=PL

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
112176D4B94E84F997B75286D5F8613C2EFD

File PE Metadata
Compilation timestamp:
7/1/2014 2:10:03 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
6144:0+nor/ejMFHc5U7pMv+t47Q9YI32kGls1gMoAPq2DQO+WWs+m76pdBxq0:0tCjMlc5MmK/YiG+1HFjhzadR

Entry address:
0xB07C3

Entry point:
9C, C7, 04, 24, A4, CA, BC, 30, 60, E8, BC, E1, 00, 00, A3, 70, 69, 9E, 0D, 0E, 04, E5, 37, 2C, 7D, 47, 2C, 5B, F3, 96, 1D, E6, 61, 8A, 57, BC, 8E, 4D, A4, AD, 8A, FF, D0, FD, 85, 90, E3, CC, 37, 50, B8, 7B, 0A, BB, 52, 26, 4F, 83, 89, AA, 97, C7, 7D, 04, 54, 2B, 92, E6, CC, A1, C5, 55, 6D, 87, BA, 06, A1, A5, 16, 09, EF, 86, BE, 7F, CE, D0, 48, 3D, 3B, 9E, A0, 89, 9C, 0F, 41, 16, 7A, 63, 40, B3, C7, 7D, 04, 8C, 68, 33, 0F, 04, F0, 35, 94, 53, CD, D0, B2, 70, 1E, 19, 17, 51, 25, CF, 5E, 71, 66, 32, 6A, DC...
 
[+]

Code size:
128.5 KB (131,584 bytes)

Driver
Display name:
Spyshelter

Description:
Spyshelter driver

Type:
Kernel device driver (KernelDriver)

Group:
FSFilter Activity Monitor

Depends on:
FltMgr


Scan spyshelter.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.