home

SpyShelterWFP.sys

Datpol Janusz Siemienowicz

It runs as a Windows kernel mode device driver named “SpyshelterFw”.
Publisher:
SpyShelter  (signed by Datpol Janusz Siemienowicz)

Product:
SpyShelter

Description:
SpyShelter Firewall Driver

Version:
9.9.1.0 built by: WinDDK

MD5:
23d22e287b810fe8e15ba11a0e50b683

SHA-1:
f98915d647dc303d46077409814b41cfc2845701

SHA-256:
65fda9e7e4bdc989b4f1c336996155c8870cb3361944053bbb0e515e1d9faea5

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 7:50:02 AM UTC  (today)

File size:
82.3 KB (84,232 bytes)

Product version:
9.9.1

Copyright:
(C) Datpol. All rights reserved.

Original file name:
SpyShelterWFP.sys

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\Program Files\spyshelter firewall\spyshelterwfp.sys

Digital Signature
Signed by:
Datpol Janusz Siemienowicz

Authority:
GlobalSign nv-sa

Valid from:
11/5/2014 7:08:03 PM

Valid to:
1/8/2016 5:09:30 PM

Subject:
E=biuro@datpol.com, CN=Datpol Janusz Siemienowicz, O=Datpol Janusz Siemienowicz, L=Olkusz, S=Malopolskie, C=PL

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121D2FCC60F24553FA9E8F529B814703D51

File PE Metadata
Compilation timestamp:
6/1/2015 1:17:21 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
1536:7DNuZhBMNvxxyT6dnr5trRpTS7KdODr88UAeWEkBhPO12:8ZhBMNvxET6dnrPr7TfOmOEk+2

Entry address:
0xE26E

Entry point:
60, 60, C7, 44, 24, 3C, FD, 97, E1, 0C, E8, 2A, 82, 00, 00, 89, 34, 24, C7, 44, 24, 20, 84, A9, B9, 78, C7, 04, 24, DA, 15, A8, 06, 8D, 64, 24, 20, E9, 32, 20, 01, 00, E8, 54, 00, 00, 00, 00, 00, 4B, 65, 42, 75, 67, 43, 68, 65, 63, 6B, 45, 78, 00, F9, E8, D2, F9, 00, 00, 0F, 82, 70, C8, 00, 00, 55, 88, 24, 24, FF, 74, 24, 04, C2, 08, 00, 01, C7, E8, 45, 59, 00, 00, 66, 0F, C9, 8B, 7C, 24, 04, 0F, 91, C5, 8B, 5C, 24, 08, 9C, 88, 04, 24, 8D, 64, 24, 10, 0F, 86, 4D, 81, 00, 00, 66, 0F, BE, CA, 59, 60, E9, DA...
 
[+]

Code size:
28 KB (28,672 bytes)

Driver
Display name:
SpyshelterFw

Type:
Kernel device driver (KernelDriver)


Scan SpyShelterWFP.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.