Worm:Win32/Neeris.AN
Worm:Win32/Neeris.AN is a malicious computer worm that may exploit security vulnerabilities on your computer, drop malicious payloads and redirect you to infected websites. Worm:Win32/Neeris.AN edits the registry in order to set itself to run as a service when the computer system is restarted in the Safe mode. Worm:Win32/Neeris.AN obtains access to computers and replicates across current network vulnerability without your knowledge and authorization. Worm:Win32/Neeris.AN even blocks the computer users from accessing legitimate websites and diverts them to illegitimate websites. It is highly recommended removing Worm:Win32/Neeris.AN immediately from your computer before it could harm your PC system.
File System Details
Worm:Win32/Neeris.AN may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %ProgramFiles%\MSN\MSNIA\prestp.exe | |
| 2. | %ProgramFiles%\Windows NT\Accessories\wordpad.exe | |
| 3. | %ProgramFiles%\Windows NT\Pinball\PINBALL.EXE | |
| 4. | %ProgramFiles%\MSN\MSNIA\msniasvc.exe | |
| 5. | %ProgramFiles%\Windows Media Player\wmplayer.exe | |
| 6. | %ProgramFiles%\Windows NT\hypertrm.exe | |
| 7. | %Windir%\Temp\0001F008_Rar\csrsc.exe | |
| 8. | %ProgramFiles%\Internet Explorer\iedw.exe | |
| 9. | %ProgramFiles%\MSN\MsnInstaller\msninst.exe | |
| 10. | %ProgramFiles%\Windows NT\dialer.exe | |
| 11. | %System%\csrsc.exe |
Registry Details
Worm:Win32/Neeris.AN may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\System Bus Extender
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_IPFILTERDRIVER
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_ASC3360PR\0000\Control
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSpoolSvc
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\Streams Drivers
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_WINSPOOLSVC\0000\Control
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_ ASC3360PR
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\asc3360pr\Enum
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSpoolSvc\Enum
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\SRService
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_WINSPOOLSVC
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_IPFILTERDRIVER\0000
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\asc3360pr\Security
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSpoolSvc\Security
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.