eEye Digital Security

instead of updating our Flash Player all the time, we have opted to remove/uninstall the software from machines that don't require it (no internet connection).

however, when i scan, i get this finding:  under the tested value, the registry key does not exist on the target PC.

thank you.

 Did you uninstall the Flash Player using Adobe's uninstaller tool?

http://kb.adobe.com/selfservice/viewContent.do?externalId=tn_14157&sliceId=2

I know that Flash is a pain in the *** to uninstall and does not completey uninstall itself properly using the Add/Remove Programs function in windows most of the time.  I have had similiar issues in the past until I started using their tool.

This may not even help your situation, but it is worth a try.

 yup.  used the tool.  after i used the tool, i had different finding...i'll post that one later :-)

would rather solve this one first.

i have even went as far as reloading the flash then uninstalling it again.  no joy.

not sure what to do.  i have MANY PCs like this too.

 Interesting ...

What OS are you running?

What version of Flash are you having these issues with?  (IE ActiveX or Firefox packaged version?)

     We may have to wait until one of the eEye guys can assist with this one.  I am not the best with the Retina stuff.

Have you tried the Adobe Flash Player installer?

http://www.adobe.com/shockwave/download/alternates/

 This is because it was delivered starting with Windows XP.

To Fix:

Go to the following link and download the correct update for your operating system.

http://www.microsoft.com/technet/security/bulletin/MS06-069.mspx

Once this has been installed you may be hit for a different Flash Player issue.

Remove the following file:

%System Drive%\Windows\System32\Macromed\Flashplayer\Flash6.ocx

I found this file in \Windows\System32\Macromed\Flash\Flash6.ocx

As admin I could not delete the file even with /f.

I could rename it however.  MD5...: b729ba1592acacb47f2b06dd3d5753fa does not show as an infected file.

I presume I'd have to bring the system down to properly delete the file or killbox it.

rcarvalh:

instead of updating our Flash Player all the time, we have opted to remove/uninstall the software from machines that don't require it (no internet connection).

however, when i scan, i get this finding:  under the tested value, the registry key does not exist on the target PC.

 

Description:	Success
Tested Value:	CMP,T,ECL,SOFTWARE\Microsoft\Active Setup\Installed Components\{5056b317-8d4c-43ee-8543-b9d1e234b8f4}
Found Value:

thank you.

The audit you are referring to is for a Microsoft provided update for Adobe Flash that came preinstalled on Windows.  I believe since the time of your post that the audit has been updated.  Such is sometimes the case with audits as new information becomes available or as time progresses.  Send me a PM if this is still an issue and I will give you some one on one help.