KIS: 'Executable has changed'

03 Oct 23: One server was relocated, the server currently doesn't have a public IP address since in the meantime it is running on starlink. I wrote some additional tunnel code running separately to handle this. When the server is engaged the connection is 5600+ days uniform (since around 24 July 2008). In the unlikely case I disengaged the server because of some problem the retention is 1200-3800 days depending on newsgroup. If you experience any issue please let me know.

29 Nov 23: Because of encrypted and obfuscated posts flood mass posted by a few nzb indexing websites using usenet servers as private storage for their members to download the posts - the situation with the content is pretty chaotic since their purpose is to post in such a way, so users must use their website exclusively, when the website disappears - the encrypted posts just eat usenet providers' hard disk space uselessly. If you can't find something specific please let me know at alexbirj at gmail dot com what exactly you can't find for me to check how it is possible to retain the posts. Non-obfuscated posts shouldn't be affected at all, let me know if you notice anything missing.

29 Nov 23: The search protocol had to be upgraded to extend 3 byte (16M+) limit on the server side for number of sets per instance, so at least the version 5.8.3 is needed to access it, otherwise should be no any difference.
Post Reply
clarence
Posts: 9
Joined: Sun Sep 30, 2007 8:52 am

KIS: 'Executable has changed'

Post by clarence »

Every once in a while (twice per week maybe) Kaspersky Internet Security tells me that the executable has changed when issuing a search. Do I have to worry? Or is this part of how UE works?

Did anybody else notice this?
Top
alex
Posts: 4515
Joined: Thu Feb 27, 2003 5:57 pm

Post by alex »

UE doesn't change its own executable. Does it refer to UE.exe?

Maybe Kaspersky complaints the executable has changed after you've upgraded UE so it compares it to the older executable hash, why search triggers this notice I don't know. It might be the case if it is the first thing you do after starting UE is search; if you start UE and e.g. download new headers or article bodies it should give the same warning then.

Might be some bug in Kaspersky as well, something completely different, if so it is good it doesn't crash UE at all.
Top
clarence
Posts: 9
Joined: Sun Sep 30, 2007 8:52 am

Post by clarence »

Yes, it refers to UE.exe. And it has nothing to do with upgrading, because it does it at least once in a week and I haven't touched it inbetween. I even tried it on several computers with XP and vista.

Besides that, it seems to be necessary to add UE to the 'safe' applications list in KIS, just letting it past the firewall isn't sufficient, because there's an immediate drop in download-speed caused by the KIS networkflow analyzer.
Top
alex
Posts: 4515
Joined: Thu Feb 27, 2003 5:57 pm

Post by alex »

you can download and extract UE.exe under different name and compare it with your current executable to be sure.

e.g. if you extract it as UE2.exe in the dos prompt go to the UE.exe directory and type

fc /b UE.exe UE2.exe

if it gives "No differences found" it is just a Kaspersky fluke.
if the files are different you need to look what could change it.

yes, AV scaning gigabytes of article bodies/headers is not a good idea.
Top
Post Reply

Return to “Search service”