Not Verified Flash Players

I installed the latest versions of Adobe Flash Player for IE and Non IE..and when I go to IE add ons..it shows both versions as "Not Verified"..so does that mean theyre not legit flash players?..Again this came from File Hippo..I scanned them and no viruses detected

 

Are those installers digitally signed by Adobe?

 

I have been downloading all my programs from file hippo for years and havent had any problems until now..They are posted as the latest versions and look legit and scan as ok....I tried downloading flash player from the adobe site and everytime it says installation failed

 

FWIW, stand-alone installers can supposedly be downloaded from here (under the "Install in a firewall proxy server environment" section):

http://helpx.adobe.com/flash-player...nstall_in_a_firewall_proxy_server_environment

I just downloaded one, manually hashed it and checked that hash at VirusTotal, it checks out as I would expect.

 

Hey guys,

I use Secunia PSI and it was weird, I noticed the same thing. I mean, I trust Secunia and all, but the Flash Player installer exes were not signed like I thought they usually are. I scanned them and when I installed them checked to see if WSA placed them in monitor mode due to any suspicious behavior but it did not. And Secunia checked it off as patched and up-to-date, so I concluded that Adobe just stopped signing this.

 

All four of those installers at the page I linked to are signed. Do you get any warning on those?

 

I download them from Secunia directly and they use their own server for distribution I believe but they would (theoretically) never put an infected copy up for grabs.

 

I always use these installers.

 

Does IE report status of a non-IE plugin?

 

I'm just curious why these didn't have a digital signature? Doesn't Adobe normally sign these?

 

On the Secunia forum, I recenty read about some issues with their SPS/Secunia Packaging Service.
Perhaps this might account for the lack of signatures? Also, when you download the update, is it an Adobe/Flash installer or a Secunia installer?

 

I have downloaded the flash player installers the both ActiveX and none ActiveX 11.2.202.228 64bit version from filehippo on 03/30/2012 the both installers signed by Adobe.

 

Ah, after researching Secunia PSI and SPS, now I understand that Secunia is in at least some cases distributing update packages that are modified versions of the manufacturer's official uninstaller/installer. Edit: If Secunia only distributed unmodified official versions like other distribution sites, the report of an unsigned version from Secunia plus the report of an unsigned version from FileHippo would make me think that perhaps Adobe distributed an unsigned version temporarily which both just happened to grab.

 

Hi everyone,

Thanks for the replies!

Indeed I did use the auto-updater first and it failed unusually. I have been moving away from using that anyway tho because it takes soooo long as it runs in the background to take low resources but as a result is not good for quick patching.

I used the manual "install solution" which came from a Secunia URL as usual. The installers were not signed, but my maximized Webroot heuristics determined to auto-allow the program based on popularity, age, behavior, and cloud knowledge, and since it installed fine and Secunia registered it as patched, I assumed it was fine.

Probably, it is very very unlikely that a security firm that specializes in distributing updates would serve up mal-updates...I'm just worrying for nothing most likely.

 

Probably ...

I just chanced upon this thread, it interested me because I was having a HELL of a time trying to install the flash plug-in from Adobe's site on my laptop. My other machines are fine.

Guess what? I installed them (IE & non-IE) from File Hippo without incident or this dreaded pop-up:



AAAAAAGGGGGGGGGGGGGHHHHHHHHH!

So, good thread!

 

I'm pretty sure they're fine, Dr Web says the links are OK anyway.

 

Thanks for all the replies and advice