home

SpyShelterTDI.sys

Datpol Janusz Siemienowicz

Publisher:
SpyShelter  (signed by Datpol Janusz Siemienowicz)

Product:
SpyShelter

Description:
SpyShelter Firewall Driver

Version:
9.9.1.0 built by: WinDDK

MD5:
8e8279f2f1962ae284674524f0d7e612

SHA-1:
baf6c132d527ebe30f59cd8fec0289693a4e5b25

SHA-256:
6c85dc7acb33cba0bec85c92cf6ba139c69fc340fc27f16e8c55b83ca6cf3f9a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 7:24:35 AM UTC  (today)

File size:
121.3 KB (124,168 bytes)

Product version:
9.9.1

Copyright:
(C) Datpol. All rights reserved.

Original file name:
SpyShelterTDI.sys

File type:
Driver (Win64 SYS)

Language:
English (United States)

Common path:
C:\Program Files\spyshelter firewall\spysheltertdi.sys

Digital Signature
Signed by:
Datpol Janusz Siemienowicz

Authority:
GlobalSign nv-sa

Valid from:
11/5/2014 10:08:03 AM

Valid to:
1/8/2016 8:09:30 AM

Subject:
E=biuro@datpol.com, CN=Datpol Janusz Siemienowicz, O=Datpol Janusz Siemienowicz, L=Olkusz, S=Malopolskie, C=PL

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121D2FCC60F24553FA9E8F529B814703D51

File PE Metadata
Compilation timestamp:
6/1/2015 4:17:19 AM

OS version:
6.1

OS bitness:
Win64

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
3072:joVtA3wNZMWd7h9M3a+i2vPyuiCNApNRo5Bf/2NBW8T:g2kd7h9/kvsp7o5BiBL

Entry address:
0x1FB29

Entry point:
E9, 50, E9, FF, FF, 0F, 87, 79, 68, FF, FF, F5, 66, 0F, BA, E0, 03, E9, 29, 7F, 00, 00, 41, EF, 27, 47, 53, AB, C7, F2, 67, D5, D2, 22, 1F, 04, A8, 17, 91, 35, 17, E3, 33, CB, DF, CB, 58, 1D, 7C, 9E, A2, 2E, 1B, 92, 8F, CA, D3, 63, 34, 99, 0D, D5, 73, 72, A7, 42, E3, DF, 54, 75, D5, E6, 66, 86, BF, 3B, F9, B0, C3, C1, BA, B8, B6, CC, 2E, FC, DE, B4, 73, 9C, 97, 9D, B9, CE, D6, 3E, 83, 6A, 4D, E8, 04, 90, F0, 38, 0F, 40, 3C, E4, B4, 51, E3, B8, BD, 42, 29, 90, 02, 73, CB, 5B, D9, 5E, CF, 5F, A7, 8B, BE, 03...
 
[+]

Entropy:
7.3787

Packer / compiler:
tElock 0.99 - 1.0 private

Code size:
35.5 KB (36,352 bytes)

Scan SpyShelterTDI.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.