home

spyshelter.sys

Datpol Janusz Siemienowicz

It runs as a Windows 64-bit kernel mode device driver named “Spyshelter”.
Publisher:
SpyShelter  (signed by Datpol Janusz Siemienowicz)

Product:
SpyShelter

Description:
SpyShelter Driver

Version:
10.8.6.0 built by: Windows

MD5:
b9bd6887d4b0eb4a3de740aedfe0c333

SHA-1:
b18d65523155b649a909e48694d8971811a599f3

SHA-256:
2634e3981a5587995be436f0c5088697e5c929817c4fc7334640907ef2f67967

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/30/2024 3:34:24 PM UTC  (today)

File size:
1.8 MB (1,907,600 bytes)

Product version:
10.8.6

Copyright:
(C) Datpol. All rights reserved.

Original file name:
SpyShelterDrv.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Program Files\spyshelter firewall\spyshelter.sys

Digital Signature
Signed by:
Datpol Janusz Siemienowicz

Authority:
GlobalSign nv-sa

Valid from:
8/25/2016 5:55:30 PM

Valid to:
8/26/2017 2:49:24 PM

Subject:
CN=Datpol Janusz Siemienowicz, O=Datpol Janusz Siemienowicz, L=OLKUSZ, C=PL

Issuer:
CN=GlobalSign CodeSigning CA - G3, O=GlobalSign nv-sa, C=BE

Serial number:
7F3EA61EAE04BAEDC14B924C

File PE Metadata
Compilation timestamp:
1/5/2017 10:15:09 AM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

Entry address:
0x2C9B29

Entry point:
68, 61, C7, 39, 1F, E8, 36, B4, 17, 00, 00, 00, 00, 50, 73, 47, 65, 74, 43, 75, 72, 72, 65, 6E, 74, 50, 72, 6F, 63, 65, 73, 73, 49, 64, 00, 00, 00, 4B, 65, 51, 75, 65, 72, 79, 50, 65, 72, 66, 6F, 72, 6D, 61, 6E, 63, 65, 43, 6F, 75, 6E, 74, 65, 72, 00, CE, AF, 3E, 41, 74, 78, 8B, 3E, 01, FA, 9E, 14, C1, 7E, A2, CA, 26, C1, 7E, 22, 2B, 26, C1, FE, E8, D9, 26, C1, FE, 26, 0B, 26, C1, BE, 5B, 0C, 26, C1, 7E, 03, 1A, 26, C1, 3E, 08, 15, 26, C1, BE, 8D, 98, 26, C1, FE, CB, 8D, 26, C1, 3E, D4, A8, 0A, C1, FE, 0E...
 
[+]

Entropy:
7.9552  (probably packed)

Code size:
203 KB (207,872 bytes)

Driver
Display name:
Spyshelter

Description:
Spyshelter driver

Type:
Kernel device driver (KernelDriver)

Group:
FSFilter Activity Monitor

Depends on:
FltMgr


Scan spyshelter.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.