What's the problem between AV vendor and Chinese Windows OS?

Discussion in 'other anti-virus software' started by R8y, Dec 20, 2007.

Thread Status:
Not open for further replies.
  1. R8y

    R8y Registered Member

    Nov 5, 2007
    South Africa
    Another false positive, this time Kaspersky flagged explorer.exe in Chinese Windows XP as Worm.Win32.huhk.c
    As showned in this screen shot http://www.cnbeta.com/upimg/071220/Aoouch_150700.jpg
    If user select the recommended action prompt by Kaspersky, which is to delete such threat, the OS will boot without explorer shell and render useless to users.

    VT result:http://www.virustotal.com/resultado.html?30ba9a3b23828f00aef8467102ed85bd

    Kaspersky had corrected such FP several hours later. First Symantec, Now Kaspersky, doesn't it make us wonder the QA of virus definition for these vendors, maybe they should have better whitelist or include if not already Chinese OS computer to test their definition before release to the public?
    Last edited: Dec 20, 2007

    MAPKOBKA Registered Member

    Jun 29, 2007

    A false positive was unfortunately released with signature updates yesterday evening.

    As soon as it became apparent there was a problem, the signature was fixed and an urgent update was rolled out to fix the false detection.
    A "fix" was quickly provided on the KL forum to restore explorer functionality and there was help available to users who were running into problems.

    explorer.exe would have been moved to the Kaspersky backup, from where it can be restored, by following the steps in the support FAQ: http://support.kaspersky.com/viruses/computers?qid=208279581

    After following those steps, you should have full use of your computer again.

    Users who are still running into problems after following the article above, are advised to contact tech support here: http://support.kaspersky.ru/helpdesk.html?LANG=en
  3. Baldrick

    Baldrick Registered Member

    May 11, 2002
    South Wales, UK
    For your information this is one of very, very few such occurences that I have experienced whilst using KIS, and I have been doing so for a number of years. As MAPKOBKA says these things to happen. And when they do you will find no one better IMHO than the Kaspersky Lab at providing a very fast response for their customers...usually no more than a couple of hours after they have ben notified of the issue.
Thread Status:
Not open for further replies.