How to remove registration.exe

registration.exe

The module registration.exe has been detected as Worm.Ramnit

registration.exe
Remove registration.exe

File Details

Product Name:

Corel Corporation Registration
Company Name:

Corel Corporation
MD5: 1d0a5dfd899288ca4f0bab85ce8d07a2
Size: 560 KB
First Published: 2019-09-11 15:41:33 (5 years ago)
Latest Published: 2019-09-11 15:41:33 (5 years ago)
Status: Worm.Ramnit (on last analysis)
Analysis Date: 2019-09-11 15:41:33 (5 years ago)

Common Places:

%sysdrive%\data\deakstop\coreldraw 11.0\coreldraw 11.0\program files\corel\corel graphics 11

Geography:

100.0%

OS Version:

Windows 7 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x0005a000

PE Sections:

Name Size of data MD5
.text 208896 2d87cab628658cf816b32a8541138d70
.rdata 49152 7d0bc684322c3d419133b081e8df9a79
.data 20480 94af7467bd107126d91ac6588cf3991f
.rsrc 61440 33175effecf867309027bc51c85db2a8
lcpkeru 0 00000000000000000000000000000000
.text 229376 c073598a5e0234ebebcc5fcf553dbd9b

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for registration.exe
copyright for information about registration.exe