home

SpyShelterKb.sys

Datpol

It runs as a Windows 64-bit kernel mode device driver named “SpyshelterKb”.
Publisher:
SpyShelter  (signed by Datpol)

Product:
SpyShelter

Description:
SpyShelter Additional Driver

Version:
10.8.3.0 built by: WinDDK

MD5:
da0f3638a09513445d845ae9e73e5ab7

SHA-1:
889206bb9800a289cdf7583849f314dda987e437

SHA-256:
a3e1bb28f2090c75cdb0195b788460d43c43f138a572d7bbf717ad7602eae4ac

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
2/25/2025 1:16:03 AM UTC  (today)

File size:
866 KB (886,824 bytes)

Product version:
10.8.3

Copyright:
(C) Datpol. All rights reserved.

Original file name:
SpyShelterKb.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Program Files\spyshelter free anti-keylogger\spyshelterkb.sys

Digital Signature
Signed by:
Datpol

Authority:
GlobalSign nv-sa

Valid from:
9/9/2015 5:37:53 PM

Valid to:
9/9/2016 5:37:53 PM

Subject:
CN=Datpol, O=Datpol, L=Olkusz, C=PL

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121C3B40F5627D2C5927A0D3740680419CC

File PE Metadata
Compilation timestamp:
8/5/2016 10:12:39 AM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
24576:LMPXY7r03KmAC5O2IpJRzygAjC2xW7u88uD:L6Yv0Nz82IpJRkjC+UnD

Entry address:
0x16E805

Entry point:
68, EE, 57, 1E, 2F, E8, 88, 94, 09, 00, FF, D0, 48, 8B, 6C, 24, 50, 85, C0, E9, 05, 8B, 09, 00, C8, 33, 95, EF, E9, DF, 48, 96, EF, 2A, 28, 4F, 96, EF, 45, AB, 4F, 96, EF, FB, 7E, 87, 96, E8, A6, 3A, 81, 6A, 14, BE, 00, BD, 69, 11, 86, 78, BA, 69, 10, B4, 66, BA, 69, 0F, E6, 54, BD, 69, 10, 95, C7, BD, 69, 11, 52, 78, BA, 69, 10, 03, 39, BD, 69, 10, 88, 46, BA, 69, 10, 1F, AD, BA, 69, 10, ED, 58, 72, 69, 17, 88, 0C, 74, 95, EB, F0, C6, 48, 96, EE, 3C, 46, 4F, 96, EF, F2, B0, 58, 95, F0, 2C, AA, 17, 00, AA...
 
[+]

Code size:
62 KB (63,488 bytes)

Driver
Display name:
SpyshelterKb

Type:
Kernel device driver (KernelDriver)

Depends on:
SpyShelter


Scan SpyShelterKb.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.