Mysterious Flash Installer

Thank you for your quick response. I know that it was not from the  "IT department pushed out an update last night". That is because there is no IT department. It is my personal computer at home. It is connected to the internet through a Wi-Fi connection to basic ATT service. I have four external hard drives connected through USB Hubs and that is all the network that there is.I do have Adobe allowed to update turned on.

But as far as running " a packet sniffer" I can only guess what that is, and no idea how to do that. I would like to "look through your system logs" but once again have no idea how to do that (Activity Monitor???). My computer knowledge is basically limited to basic internet, Adobe CC apps, and Blender. I can change the Administrative password if that would help. Thanks again.

Sorry, you tricked me with the codesign tool.  I figured you were an IT professional or something.  Most people don't know about cryptographic signatures and code signing. 

We did push an update last night, and when I download the NPAPI player manually, the vitals match yours.  Same date (I assume you're on central or eastern time), same filesize. I'd really like a cryptographic hash of it to be 100% certain that the bits are identical, but I don't know where the original file is mounted from..

Could you share the contents of /User/<you>/Library/Logs/FlashPlayerInstallManager.log?  I'm guessing that you'll see some activity from overnight that would explain those mounted disk images at the bottom of the file.  /var/log/install.log (you can view it from the commandline or with the Console application) should also show some evidence that an installation was kicked off.  The most recent stuff is at the bottom.

Thanks again for the quick response. Well I've been told that I'm pretty

tricky ( now I have that old 80's Tone Loc (?) song stuck in my head "He's

Tricky! YEAH He' Tricky!"). I allows search the forums first, that's how

you learn stuff. I think this is the file you want. Here is everything that

was on the Console window. It's greek to me, I don't know where to look.

And if it helps here is a link a Dropbox folder that has copies of the Log

folders that I found -

https://www.dropbox.com/sh/2lih9uuoxi0xi7d/AAAnfaFI2LCHqOnSybcG81N6a?dl=0

I will delete those tomorrow. Thanks for your help. It's sounding like

everything is legit, hope it is.

On Wed, Oct 10, 2018 at 1:15 PM jeromiec83223024 <forums_noreply@adobe.com>

Oh and yes Central Time USA

That's great news. I kind of figured it would be something like that. That

was from the console right? Because if it ever happens again I will know

what to look for that way.

I don't know if there was anything in those disks. I didn't open them, not

being sure what they were. And during the process of collecting the screen

shots and composing the forum letter ( In writing the forum post in

TextEdit a plain text editor) I grabbed the TextEdit window to far to the

right to move it out of the way to see behind it. An Apple (at least on my

machine) has this thing where if you let go of a window and the cursor is

off the screen, it just disappears and I can't figure how to get it back.

So I had to restart my machine to get the TextEdit Window back. When it

Restarted they were gone, unmounted. So I don't know.

THANKS A LOT. I feel much better that it's been shown to be nothing. I'm

going to delete those DropBox files and kill that link. Have a great day

you've been a lot of help.

On Wed, Oct 10, 2018 at 2:45 PM jeromiec83223024 <forums_noreply@adobe.com>

No problem.  You might think about running First Aid from the disk utility on MacOS (after making good backups), including scanning for and fixing any file system permission issues.  My guess is that it's a permission thing with the temporary files that were created when we did the usually-silent install.

Will do. Thanks again.

On Wed, Oct 10, 2018 at 4:09 PM jeromiec83223024 <forums_noreply@adobe.com>