April 6, 2026

When Photoshop meets spyware vibes

Article URL →HN comments →

Adobe modifies hosts file to detect whether Creative Cloud is installed

Fans accuse Adobe of “going full malware” as it secretly rewrites your computer’s address book

TLDR: Adobe has been caught silently editing a hidden system file to see if its Creative Cloud apps are on your computer, just by you visiting its website. The community is split between calling it clever, calling it malware-adjacent, and wondering why security tools aren’t freaking out over it.

Adobe has been caught quietly editing a hidden system file on Windows and Mac computers just to figure out if its Creative Cloud design apps are already installed – and the internet is furious… and also kind of impressed. One commenter flat-out asked when “a commercial software suite becomes malware,” while another shot back that calling the reason “stupid” is just over-the-top drama, saying the idea is fine, the way it’s done is the real problem.

In plain English: Adobe is scribbling its own notes into your computer’s internal address book so, when you visit their site, they can tell if you’ve got their apps. To some, that’s a creepy “who gave you permission to touch that?” moment. One user wondered how Microsoft’s Defender antivirus isn’t “screaming” about this. Others shrugged and said: if you don’t like Adobe messing with your system, don’t use Adobe.

Then there’s the nerdy appreciation corner: a few people actually called it a “nifty” hack that could let the website launch Adobe apps directly, like magic. The thread turned into a mini soap opera: one camp slams the article’s author for being “holier than thou,” another cries spyware, and a third is just posting duplicate links and watching the chaos with popcorn. Classic internet drama.

Key Points

  • Adobe’s Creative Cloud installer adds entries to the hosts file on Windows and macOS.
  • Adobe’s website attempts to load cc.png from detect-ccd.creativecloud.adobe.com via JavaScript to detect installation.
  • Presence of a hosts file DNS entry enables a successful connection, signaling Creative Cloud is installed; absence results in a detectable failure.
  • Previously, the site checked localhost URLs (e.g., http://localhost:<ports>/cc.png) to detect the app.
  • Adobe switched methods after Chrome began blocking Local Network Access from web pages.

Hottest takes

"At what point does a commercial software suite become malware?" — anonymous
"No, it’s not a stupid reason. Reason is OK, the execution is controversial" — cromka
"Honestly a pretty nifty way to detect if it’s installed" — jameskraus

Save News

Made with <3 by @siedrix and @shesho from CDMX. Powered by Forge&Hive.