• Adobe emits emergency patch for Flash hole malware is exploiting right this minute
![]() | Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years. Thanks, CNET Support |
Discussion is locked
I went to a website I go to regularly this morning and was informed that I had an old version of FlashPlayer and that Avant (the browser I use for that site only) couldn't load the page until I installed the latest version....and the site provided the link to get it updated. It took me to the Adobe site, downloaded and installed the update with a reboot of the system. I got to the site again, everything was fine until about ten minutes into it, when a new popup page came up over the site page, and all it said was "TrueKey". I closed the popup, closed the webpage, and saw a shortcut link on my desktop that also said "TrueKey". I did a search and found it to be an installation of the "Intel Security TrueKey" app, that I never installed but after a search on Bing, it appears to be a 'password protector' program. Went to the Start Menu and found the newly installed app, and uninstalled it immediately, with a new reboot, and it was gone.
Ran a Malware Bytes system scan, which found a 'pup' and got rid of that as well...and a new reboot.
All seems well, and came here to ask about this and found your thread....checked my version for Edge, Firefox, and Avant (controlled mainly by Chrome), and I have the .205 version mentioned in your post as the newest correct version.
So, my question, finally, is should I go to Adobe and run their program again? And another couple of questions, what in hell is TrueKey and can I assume I'm 'clean' of it after the uninstall, and how did it get to me in the first place?
Adobe Flash sends all sorts of goodies along with the website download.. And unless you watch carefully, it installs like a bad penny. Now that you've uninstalled TrueKey, it should be gone as it's not really malware but most don't need it.
In my case, for operating systems before Windows 8/10 and for browsers such as Firefox, I don't do the typical download of Flash, instead I use the direct download links below to download the uninstaller and installers for Flash. They are the offline installers for Flash and don't tend to have the same junkware attached, but I still watch carefully during the install.
First, uninstall Flash by using the Flash Uninstaller at the link below..
http://helpx.adobe.com/en/flash-player/kb/uninstall-flash-player-windows.html
After that's done, then download and run the appropriate manual Flash player installer from the link below. If running two browsers, you may need both installers.
Flash Player for IE 32& 64 bit:
https://fpdownload.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_23_active_x.exe
Flash Player for Non-IE browser (Opera, Firefox etc):
https://fpdownload.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_23_plugin.exe
Hope this helps.
Grif
I always watch for 'hidden' install programs, like Google et al, and never saw anything with FlashPlayer this time, which was why I was wondering about this. Since I have Intel hardware stuff on this computer, I wondered also if Intel itself brought this in as an 'update', but I guess they are behaving themselves. Thanks again for the explanation, but it would have been nice to have had the option to opt out of any additional installations from Adobe.
When I updated Adobe Flash in Firefox today, the very first screen (before it even downloaded) had two checkboxes: one for a McAfee security product, and one for Intels Truekey (seems like some sort of password manager). I unchecked the 2 boxes and those programs didn't install.
Maybe you forgot to uncheck?
Kees