Secunia CSI7
Create Profile
Our Commitment
Open Discussions
My Threads
Create Thread

Forum Thread: Adobe Flash Player Zombie

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:

This thread has been marked as resolved.
Theophil. Adobe Flash Player Zombie
Member 14th Jun, 2010 13:47
Ranking: 0
Posts: 29
User Since: 5th Jan, 2009
System Score: N/A
Location: DE

I have followed the instructions of Maurice (Thank you very much!) - see under Vulnarabilities / Theophil - successfully - except that I am experiencing new problems now. Although I have tried everything suggested (even running auto update after installing the new Versions) there are Adobe Flash Player files left, marked as "Zombie file", as well under Vista as under Windows 7. Inspite of the fact that it says "Low Risk" I still don't like it as the pop-up-windows tells me that there are insecure programs. Just to add: Of course I found the uninstall-tool supplied bei Adobe and additionally I installed the new versions as well - no change. Obviously the Zombie Files were unimpressed...

Files of the Zombies:

- Opera Plugins: I have been testing Opera a long time ago but it then has been uninstalled. Can I just delete the complete file? (Vista)

- 2 x Windows / System 32 Macromed Flash ... .ocx (both on Vista and Windows 7). In this case I have no clue what to do.

By the way: Why is it not possible to copy from Secunia PSI and to fill in here? It would be so much easier to deliver proper details in this forum.

Anybody out there to help again?
Thank you!

Windows 7 Professional 64 Bit SP1
Windows Vista SP2
Windows Updates always up to date
Secunia PSI 2.0 including automatic updates

Post "RE: Adobe Flash Player Zombie" has been selected as an answer.
ddmarshall RE: Adobe Flash Player Zombie
Dedicated Contributor 14th Jun, 2010 15:18
Score: 1209
Posts: 961
User Since: 8th Nov 2008
System Score: 98%
Location: UK
The last time I used the Adobe uninstaller, even though I had closed everything down, it showed 'delete on reboot' entries when 'show details' was selected. If you haven't restarted this could be why the entries are still there.

The only ocx file you need in the Flash folder is Flash10h.ocx. You can delete any older ones.

I don't use Opera but I thought it used the same plugin as all the other browsers apart from Internet Explorer. This plugin is in the macromed\flash folder as well. If you are detecting something in an old Opera folder and you no longer have Opera, try renaming it and see if it causes a problem.

This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
Theophil. RE: Adobe Flash Player Zombie
Member 14th Jun, 2010 19:56
Score: 0
Posts: 29
User Since: 5th Jan 2009
System Score: N/A
Location: DE
1. As I had uninstalled Opera a long time ago I thought that I could safely delete the relevant files which I did. After reboot I experienced no troubele - and PSI reacted accordingly i. e. one risk less.

2. The other risk was still there. I chose to download the Adobe uninstall-tool again and this time I read that page with more attention. One is advised not to run it immediately (which I had done before - stupid) but to save it and after that to close all applications especially those which may be using the Player. OK, I followed all these instructions, ran the tool again - and after reboot there is no risk left.

Thank you !!!

Windows 7 Professional 64 Bit SP1
Windows Vista SP2
Windows Updates always up to date
Secunia PSI 2.0 including automatic updates
Was this reply relevant?

This thread has been marked as locked.

 Products Solutions Customers Partner Resources Company
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
Technology Partners
 About us

© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability