Kaspersky AV users should update the AV signature files if they encounter this false detection message:
QUOTE: One of our readers has alerted us to the fact that Kaspersky AV has identified tcpip.sys as malware on his Windows 7 32bit hosts – the file is flagged as “HEUR:Trojan.Win32.Generic“. Microsoft’s Windows File Protection feature prevented it from quarantining this critical file, but his end users were all treated to the error message. Kaspersky has verified that this is resolved in their latest update. If you’re seeing this issue, get your AV to “phone home” for the fix!