home

KerishDoctor.exe

Kerish Doctor

OOO AMA

This is installed with Kerish Doctor 2015.
Publisher:
Kerish Products  (signed by OOO AMA)

Product:
Kerish Doctor

Version:
4.60

MD5:
a5ab9f564be635e97db0d01566ee938e

SHA-1:
5382f09b793c21202e78a9107db8ee81df755a06

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/29/2024 1:30:59 AM UTC  (today)

File size:
3.7 MB (3,851,952 bytes)

Product version:
4.60

Copyright:
Kerish Products 2005-2015. All rights reserved.

Trademarks:
Kerish Products 2005-2015. All rights reserved.

Original file name:
KerishDoctor.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Documents and Settings\{user}\Application data\kerish products\kerish doctor\binary\kerishdoctor.exe

Digital Signature
Signed by:
OOO AMA

Authority:
Thawte, Inc.

Valid from:
8/27/2014 3:00:00 AM

Valid to:
9/27/2015 2:59:59 AM

Subject:
CN=OOO AMA, OU=IT, O=OOO AMA, L=Voronezh, S=Voronezh region, C=RU

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
10113097A9F7A4FC6296AF8DC613AB0D

File PE Metadata
Compilation timestamp:
2/20/2015 12:07:08 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:POd5EWHQFsf9w48aHiTyPsU0cw3i0xAzVIO8k5/8B:eHQ+w4tHiTnrbyWAzVV

Entry address:
0x1DE36

Entry point:
55, 8B, EC, 83, C4, F0, B8, 00, 10, 40, 00, E8, 01, 00, 00, 00, 9A, 83, C4, 10, 8B, E5, 5D, E9, B2, F6, F6, 00, 6A, 53, C3, 35, 06, A1, EE, 78, 8F, C4, A6, 8E, 43, 6C, A8, CA, E2, 7F, 8D, 9D, 11, 48, 30, B0, 31, A9, 89, A3, 73, 20, A4, E3, ED, EA, 86, 97, 7F, 8A, D2, 5A, FB, 8D, 04, 97, EB, 84, 2F, FF, D6, 10, 71, 52, 7F, 41, 44, 47, 40, EB, 51, E7, A6, E7, BB, 8F, 7D, 2A, F8, E2, F7, 43, 34, 96, 1B, B2, B5, E8, 64, E8, FF, 37, B4, 78, 8C, BC, 62, 8A, 47, 4D, 91, 08, 55, 32, 3C, 36, 2B, 8A, 57, 60, 02, 92...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
6.4 MB (6,729,728 bytes)

The file KerishDoctor.exe has been discovered within the following program.

Kerish Doctor 2015  by Kerish Products
www.kerish.org
About 3% of users remove it
 
Powered by Should I Remove It?

Scan KerishDoctor.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.