- The European multinational has made its PQREMOVE application, which can eliminate Opaserv from affected computers, available to all users free of charge.
MADRID, October 1, 2002
Panda Software's technical support services have started receiving reports of incidents involving the new worm Opaserv (W32/Opaserv). This malicious code has a large capacity to spread through networks, making it particularly dangerous in corporate environments. For this reason Panda Software has made the PQREMOVE http://service.pandasoftware.com/library/virusCard.jsp?Virus=W32/Opaserv application available to all users, free of charge. This tool effectively detects and eliminates this new virus from affected computers.
Since it appeared just a few hours ago, Opaserv has occupied fourth place in the ranking of the most frequently detected viruses by the free online scanner Panda ActiveScan.
Opaserv spreads across networks and copies itself to the system as ScrSvr.exe, going memory resident. The worm also inserts an entry in the Windows Registry in order to ensure it is run every time the computer is started up.
Furthermore, Opaserv tries to connect to an Internet address, http://www.opasoft.com, possibly in order to download applications and run them on infected computers. However, the address above is currently unavailable.
In order to avoid infection, Panda Software recommends that users update their antivirus solutions immediately. The multinational antivirus developer has already made the corresponding update for its antivirus available to users. This update, which detects and removes W32/Opaserv, can be downloaded from
http://www.pandasoftware.com/. More technical details about W32/Opaserv at:
http://service.pandasoftware.es/library/virusCard.jsp?Virus=W32/Opaserv. From the same address, you can also download the free PQREMOVE application that eliminates Opaserv from affected computers.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.