You guys are too much, first the issue with updating last week causing issues
http://forum.kaspersky.com/index.php?showtopic=55045

Now this
http://www.kaspersky.com/support/viruses/c...s?qid=208279581

Come on, get your act together. A lot of people like us pay good money for hundreds of licenses.

Is it really that difficult to scan file systems for each OS supported before you push updates out to the general public, to ensure false positives like this do not wipe out entire operating systems?

Anyways, I had a machine that rebooted itself after Kaspersky removed Explorer.exe
Since the above article had yet to be published, I thought my recent installation of Kaspersky on this particular PC had caused the problem, so I removed the Kaspersky directories by slaving the drive off of another computer.

Here was the procedure I used to repair that OS, which was XP.

1. Find OS CD that matches your service pack level.
2. Boot off CD, choose R for recovery console.
3. Login and type expand d:\i386\explorer.ex_ c:\windows
4. Now you should be able to boot, make sure the first thing you do is update Kaspersky. Once that is done, scan c:\windows\explorer.exe, make sure it no longer quarantines it.

Hope this helps someone.

We have been having the same problem quite a bit lately. We have about 200 XP Pro workstations all running KAV 6.0. 12 of them have done this so far and I have been able to fix them all but this is rather troublesome. Its pretty ridiculous that I have to carry around a USB thumb drive with a copy of explorer.exe on it to fix computers that get hosed.

Not to mention all the other problems we have had with KAV 6.0 so far.

I have tried the fix mentioned and when I hit the enter key it returned an 'access denied' response. Any recommendations? This is the second workstation out of 23 that I manage which is having this issue with the deletion of explorer.exe

Well I think that if you type the wrong administrator password, it will not let you in, so that is not likely.

Can you try a dir to make sure that explorer is indeed completely gone from c:\windows, and make sure the CD you are using matches the OS you have (i.e. you can't use a SP1 disk with SP2 installed).

Guys, we didn't need an external source to get the explorer.exe back. What we did was pull up the KAV GUI and tell the application to restore the exe back to the Windows folder.

Now I was using V5 so this may differ slightly but should still work for V6:

1. The machine comes up and shows a blank background
2. Hit CTRL-ALT-DEL and select Task Manager
3. From the Menu, select File->New Task
5. Browse to the Kaspersky Install folder and click kav.exe or avp.exe if you use V6.
6. The Kaspersky AV GUI should now be visible so UPDATE YOUR PATTERN FILE if it has not already done so.
5. In V5, I navigated to Backup Storage and told it to restore the explorer.exe
6. From Task Manager, I clicked File->New Task and entered explorer.exe to ensure the desktop was restored (or just reboot)


V6 users should be able to locate the exe and release it from quarentine. We are still on V5 given some VPN compatibility issues with V6.

I hope this helps.