home

DFUpdateManager.exe

DFUpdateManager

DATAflor AG

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘DATAflor Update-Manager’.
Publisher:
DATAflor AG  (signed and verified)

Product:
DFUpdateManager

Version:
1.0.1.2

MD5:
eff918ae4114636054adb52962fbf374

SHA-1:
ddeb83541772650a3bcdf58ea00a0086d2c27f78

SHA-256:
f700c0d5d2cd5460cf49ebc3e03c8cd88c41fba57b60483330880333141e75fb

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 9:36:15 AM UTC  (today)

File size:
353.1 KB (361,560 bytes)

Product version:
1.0.1.2

Copyright:
Copyright © DATAflor AG 2011

Original file name:
DFUpdateManager.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\dataflor\update-manager\dfupdatemanager.exe

Digital Signature
Signed by:
DATAflor AG

Authority:
COMODO CA Limited

Valid from:
6/1/2012 2:00:00 AM

Valid to:
6/2/2014 1:59:59 AM

Subject:
CN=DATAflor AG, O=DATAflor AG, STREET=August-Spindler-Str. 20, L=Göttingen, S=Niedersachsen, PostalCode=37079, C=DE

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
652AB48E7E0D36F3FF288773349990DF

File PE Metadata
Compilation timestamp:
8/8/2012 10:52:55 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:prYfTQDjvOUXt1TJYUWoGD8L8hrbcBrN1nP6bcBrN1g:piTQPOUL6U4hrbcBrNZ6bcBrNa

Entry address:
0x4ED0E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
307.5 KB (314,880 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
DATAflor Update-Manager

Command:
C:\Program Files\dataflor\update-manager\dfupdatemanager.exe


Scan DFUpdateManager.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.