Software Updater

By Sumo3000 in Potentially Unwanted Programs

Threat Scorecard

Popularity Rank:	2,511
Threat Level:	10 % (Normal)
Infected Computers:	340,421

First Seen:	March 5, 2013
Last Seen:	February 5, 2026
OS(es) Affected:	Windows

There have been many reports involving problems related to the Software Updater, a Potentially Unwanted Program lately. Applications like the Software Updater may be installed on affected computer systems after computer users download free applications from suspicious websites with poorly-regulated content. Although the Software Updater looks like a security application, the Software Updater is designed to expose your computer to unwanted components and various types of PUPs or Potentially Unwanted Programs. The Software Updater is designed to display a large number of bogus notifications in the form of pop-up windows which are used to trick computer users into downloading other PUPs similar to the Software Updater. Security analysts strongly recommend that computer users avoid downloading any content associated with the Software Updater or clicking on the Software Updater's notifications. Instead, they recommend that computer users remove the Software Updater with the help of a reliable security application that is fully up to date.

Table of Contents

Software Updater – An Updater Up to No Good

There are many PUPs that use tactics similar to the Software Updater. Threats such as PUM.Hidden.Desktop, Pup.datamngr and PUM.UserWLoad are also used to trick inexperienced computer users into downloading PUPs through fake software updates. The Software Updater message claims that the affected computer is 'at risk' and tries to trick the computer users into downloading a bogus 'update'. The Software Updater behaves in a way that is very similar to bogus security applications. However, the Software Updater is less threatening than many of these types of bogus security applications because the Software Updater is contained in a Web browser extension rather than as a stand-alone threat.

Removing the Software Updater for Good

The Software Updater should be removed at once. Security researchers recommend uninstalling the Software Updater using the Windows Control Panel. Once the Software Updater has been uninstalled, it is frequently necessary to undo harmful changes the Software Updater makes to your Web browser and computer settings. Scanning the affected computer with a reliable anti-malware application is also something that security researchers strongly recommend.

Aliases

15 security vendors flagged this file as malicious.

Antivirus Vendor	Detection
AVG	Generic6.JVW
McAfee	Artemis!40A561235458
AVG	Generic6.LQM
Sophos	Generic PUA NF
Symantec	Trojan.Gen.2
McAfee	Artemis!1D9A235F7A60
Fortinet	Riskware/AdService
McAfee-GW-Edition	BehavesLike.Win32.FakeAlertWinwebSecurity.ch
K7AntiVirus	Adware ( 004b4f701 )
McAfee	Artemis!E88E34C2B9A4
AVG	Generic6.KIH
McAfee	Artemis!FC495BD821C2
McAfee-GW-Edition	BehavesLike.Win32.BadFile.gh
Symantec	WS.Reputation.1
AVG	Dropper.Generic8.BZVN

SpyHunter Detects & Remove Software Updater

File System Details

Software Updater may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	Updater.exe	5185c91d163c09a07636b6e3d9e6352c	4,501
Name: Updater.exe MD5: 5185c91d163c09a07636b6e3d9e6352c Size: 526.33 KB (526336 bytes) Detections: 4,501 Type: Executable File Path: C:\Users\<username>\AppData\Local\28674\Updater.exe Group: Malware file Last Updated: May 12, 2025
2.	SoftwareUpdater.Ui.exe	87e0f79093a22946a9d1ed1df2f284c9	3,052
Name: SoftwareUpdater.Ui.exe MD5: 87e0f79093a22946a9d1ed1df2f284c9 Size: 902.14 KB (902144 bytes) Detections: 3,052 Type: Executable File Path: D:\Desktop Stefan\Bauanleitungen\Festplatten\Intenso 1TB\Programme\SoftwareUpdater\SoftwareUpdater.Ui.exe Group: Malware file Last Updated: August 1, 2024
3.	SoftwareUpdater.Bootstrapper.exe	d1069d5682c123fe4a4f32bd6dc0edf2	2,822
Name: SoftwareUpdater.Bootstrapper.exe MD5: d1069d5682c123fe4a4f32bd6dc0edf2 Size: 107 KB (107008 bytes) Detections: 2,822 Type: Executable File Path: F:\Program Files\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe Group: Malware file Last Updated: July 4, 2023
4.	systemstore.exe	c7a3d0da9a546b9127a88cdfc514a531	2,640
Name: systemstore.exe MD5: c7a3d0da9a546b9127a88cdfc514a531 Size: 297.98 KB (297984 bytes) Detections: 2,640 Type: Executable File Path: %PROGRAMFILES%\softwareupdater\systemstore.exe Group: Malware file Last Updated: July 4, 2023
5.	f7936823_SoftwareUpdater.Bootstrapper.exe	d00591f106c4dfb0a7f609a501353cb4	2,484
Name: f7936823_SoftwareUpdater.Bootstrapper.exe MD5: d00591f106c4dfb0a7f609a501353cb4 Size: 62.97 KB (62976 bytes) Detections: 2,484 Type: Executable File Path: %SYSTEMDRIVE%\Users\<username>\Documents\Eigene Scans\2015-03 (Mrz)\2015-04 (Apr)\Recovery-20131005-133334.79\f7936823_SoftwareUpdater.Bootstrapper.exe Group: Malware file Last Updated: February 4, 2023
6.	SoftwareUpdater.Ui.exe.vir	5805c1547208fd4390ae6fa1e443ff33	2,444
Name: SoftwareUpdater.Ui.exe.vir MD5: 5805c1547208fd4390ae6fa1e443ff33 Size: 903.16 KB (903168 bytes) Detections: 2,444 Path: %SYSTEMDRIVE%\AdwCleaner\Quarantine\C\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Ui.exe.vir Group: Malware file Last Updated: July 4, 2023
7.	nsw3BFA.tmp	cebe3754656967511e48402ccc17df34	1,825
Name: nsw3BFA.tmp MD5: cebe3754656967511e48402ccc17df34 Size: 469.5 KB (469504 bytes) Detections: 1,825 Type: Temporary File Path: C:\Users\<username>\Desktop\backup\ulisses sousa\AppData\Local\Temp\nsw3BFA.tmp Group: Malware file Last Updated: April 24, 2022
8.	tmp7F8A.tmp	d34b1ea249b7dff7fa4f69139da65fed	1,146
Name: tmp7F8A.tmp MD5: d34b1ea249b7dff7fa4f69139da65fed Size: 904.19 KB (904192 bytes) Detections: 1,146 Type: Temporary File Path: C:\windows\Temp\tmp7F8A.tmp Group: Malware file Last Updated: July 5, 2023
9.	SUsrv.toc	a79cf8e4e7b87f579840f6b0b9481272	1,009
Name: SUsrv.toc MD5: a79cf8e4e7b87f579840f6b0b9481272 Size: 469.5 KB (469504 bytes) Detections: 1,009 Path: C:\Users\<username>\AppData\Roaming\SoftwareUpdater\SUsrv.toc Group: Malware file Last Updated: September 13, 2022
10.	A0220674.exe	00ce0cff3c9ddcd81453f431e64c8a3c	687
Name: A0220674.exe MD5: 00ce0cff3c9ddcd81453f431e64c8a3c Size: 1.28 MB (1281024 bytes) Detections: 687 Type: Executable File Path: C:\System Volume Information\_restore{5C6C14FD-1904-4D7F-8F6D-6A11E56C8411}\RP1122\A0220674.exe Group: Malware file Last Updated: August 18, 2022
11.	UpdaterService.exe.vir	9d4751ecfa79fba06d90f9410f0d74ee	490
Name: UpdaterService.exe.vir MD5: 9d4751ecfa79fba06d90f9410f0d74ee Size: 29.69 KB (29696 bytes) Detections: 490 Path: L:\AdwCleaner\Quarantine\C\Program Files (x86)\SoftwareUpdater\UpdaterService.exe.vir Group: Malware file Last Updated: October 23, 2023
12.	AppsUpdater.exe.vir	13f738f015381b7d20929fa076d536b2	488
Name: AppsUpdater.exe.vir MD5: 13f738f015381b7d20929fa076d536b2 Size: 104.44 KB (104448 bytes) Detections: 488 Path: C:\v\AdwCleaner\Quarantine\C\Program Files\SoftwareUpdater\AppsUpdater.exe.vir Group: Malware file Last Updated: November 23, 2023
13.	SUsrv.exe	c92e9bef25eae3e29d2147f85c00fa60	257
Name: SUsrv.exe MD5: c92e9bef25eae3e29d2147f85c00fa60 Size: 85.5 KB (85504 bytes) Detections: 257 Type: Executable File Path: %APPDATA%\SoftwareUpdater Group: Malware file Last Updated: August 14, 2020
14.	SUsrv.exe.vir	29c315da0c630e6880b5f283d404ab46	201
Name: SUsrv.exe.vir MD5: 29c315da0c630e6880b5f283d404ab46 Size: 85.5 KB (85504 bytes) Detections: 201 Path: %SYSTEMDRIVE%\AdwCleaner\Quarantine\C\Users\<username>\AppData\Roaming\SoftwareUpdater\SUsrv.exe.vir Group: Malware file Last Updated: November 6, 2020
15.	airBE.exe	ba8414d16ebf05008c7a35b1c09f60d4	160
Name: airBE.exe MD5: ba8414d16ebf05008c7a35b1c09f60d4 Size: 2.14 MB (2141888 bytes) Detections: 160 Type: Executable File Path: C:\Users\<username>\Desktop\12461\Backup\Documents and Settings\User\Configurações locais\Temp\airBE.exe Group: Malware file Last Updated: July 20, 2022
16.	AppsUpdater.exe	181b6ec36db53ae6372230544c7e0427	154
Name: AppsUpdater.exe MD5: 181b6ec36db53ae6372230544c7e0427 Size: 74.24 KB (74240 bytes) Detections: 154 Type: Executable File Path: C:\Program Files (x86)\SoftwareUpdater\AppsUpdater.exe Group: Malware file Last Updated: October 23, 2023
17.	SoftwareUpdate.exe	c31255cafa736dbefdc3bd714b897e2d	60
Name: SoftwareUpdate.exe MD5: c31255cafa736dbefdc3bd714b897e2d Size: 119.4 KB (119408 bytes) Detections: 60 Type: Executable File Path: %PROGRAMFILES(x86)%\Software\Update Group: Malware file Last Updated: December 22, 2016
18.	airB112.exe	f231c326f03d6e2de77db76c6c7f53f7	59
Name: airB112.exe MD5: f231c326f03d6e2de77db76c6c7f53f7 Size: 2.14 MB (2142912 bytes) Detections: 59 Type: Executable File Path: C:\Windows.old.000\Users\<username>\AppData\Local\Temp\airB112.exe Group: Malware file Last Updated: July 20, 2022
19.	SoftwareUpdater.exe.vir	473a0f888943282fba450243885e7649	36
Name: SoftwareUpdater.exe.vir MD5: 473a0f888943282fba450243885e7649 Size: 68.91 KB (68912 bytes) Detections: 36 Path: %SYSTEMDRIVE%\AdwCleaner\Quarantine\C\Users\<username>\AppData\Roaming\SoftwareUpdater\SoftwareUpdater.exe.vir Group: Malware file Last Updated: September 9, 2020
20.	Upd4terSrv.exe	610f92538a0bf48f4908231dd0134366	35
Name: Upd4terSrv.exe MD5: 610f92538a0bf48f4908231dd0134366 Size: 30.72 KB (30720 bytes) Detections: 35 Type: Executable File Path: C:\Program Files (x86)\SoftwareUpdater\Upd4terSrv.exe Group: Malware file Last Updated: December 26, 2025
21.	04_05_15_07_26_50_04_05_15_07_26_501059156308.saf	ba980de88b9151335e039b41f08d0637	34
Name: 04_05_15_07_26_50_04_05_15_07_26_501059156308.saf MD5: ba980de88b9151335e039b41f08d0637 Size: 30.72 KB (30720 bytes) Detections: 34 Path: %SYSTEMDRIVE%\Users\<username>\AppData\Roaming\ReviverSoft\Security Reviver\Quarantine\pua.softwareupdater\04_05_15_07_26_50_04_05_15_07_26_501059156308.saf Group: Malware file Last Updated: October 9, 2022
22.	air42A8.exe	ceee12eb3ebf72f98613ec73890b07fe	26
Name: air42A8.exe MD5: ceee12eb3ebf72f98613ec73890b07fe Size: 2.13 MB (2139328 bytes) Detections: 26 Type: Executable File Path: C:\Windows.old.000\Users\<username>\AppData\Local\Temp\air42A8.exe Group: Malware file Last Updated: October 24, 2025
23.	AppsUpdater.exe_old	43a6cfff1b1be9b5b0e61286a7b58775	16
Name: AppsUpdater.exe_old MD5: 43a6cfff1b1be9b5b0e61286a7b58775 Size: 143.36 KB (143360 bytes) Detections: 16 Path: C:\Program Files\SoftwareUpdater\AppsUpdater.exe_old Group: Malware file Last Updated: November 30, 2020
24.	air4A.exe	26eeaf6bbd20476f9bcf71725fc13099	16
Name: air4A.exe MD5: 26eeaf6bbd20476f9bcf71725fc13099 Size: 2.14 MB (2141888 bytes) Detections: 16 Type: Executable File Path: C:\Users\<username>\Desktop\12461\Backup\Documents and Settings\User\Configurações locais\Temp\air4A.exe Group: Malware file Last Updated: July 20, 2022
25.	SoftwareUpdater.exe	8a69923135b02774cff2f416bdd6a641	16
Name: SoftwareUpdater.exe MD5: 8a69923135b02774cff2f416bdd6a641 Size: 60.71 KB (60719 bytes) Detections: 16 Type: Executable File Path: %APPDATA%\SoftwareUpdater Group: Malware file Last Updated: April 5, 2020
26.	UpdaterService.exe	9bb314518598d378739e807dad1239ff	1
Name: UpdaterService.exe MD5: 9bb314518598d378739e807dad1239ff Size: 40.44 KB (40448 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES%\SoftwareUpdater Group: Malware file Last Updated: February 25, 2016

More files

Registry Details

Software Updater may create the following registry entry or registry entries:

CLSID

{1C46B5B8-9393-4B8F-94C4-D76D3F0BA904}

{1C582E4A-2FAD-4D53-AA31-B1A75006080C}

{21482BA7-5906-4BE1-A2DD-0708314DB107}

{3B96B5D3-4A8D-42DC-9CDE-E9B94B3CFE5D}

{8017EDFD-9702-420C-9520-3D5DDC9054C8}

{809A8E30-7C9D-42BD-813D-1EA80204A19B}

{8B528DF9-1F05-4471-BDED-B03BE4B100B8}

{8C3E60D2-2077-4D06-BF42-51F29A3A9064}

{A4A9A754-2ADD-44FE-A97F-21C393217645}

{ACCC747B-2A59-4F30-BA7C-D26333DE65F5}

{AE2506E3-0F75-44EE-B552-CFF3BFF4D50F}

{BA36CEDF-573D-4796-812D-3DB883CF01A0}

{C24C3824-63D8-42CD-BB5A-77631072FDB2}

{C9BB4826-B9D8-48B1-9C94-E277990D2386}

{CA4E2A45-41DA-4103-8504-2B7FC9EA41E7}

{D239FB8C-932C-4982-8B67-BF837FF779A8}

{DD25ABBF-E2B4-488F-B721-69D4DD819732}

{EAADCB3E-0152-45A0-B732-27B4C0B5C134}

{EB41B92A-3A76-4237-9E6B-A5DDC2EAA771}

{FBBED792-5151-4349-A3D5-5382F6AF1B2C}

{FD061E3B-0841-4351-9B5E-514FEAD8588B}

{FD2436EE-C492-4E99-8328-7485E77B387E}

Regexp file mask

%WinDir%\System32\Tasks\SoftwareUpdateTaskMachineCore

%WinDir%\System32\Tasks\SoftwareUpdateTaskMachineUA

%WinDir%\Tasks\SoftwareUpdateTaskMachineCore.job

%WinDir%\Tasks\SoftwareUpdateTaskMachineUA.job

HKEY..\..\..\..{RegistryKeys}

SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3B96B5D3-4A8D-42DC-9CDE-E9B94B3CFE5D}

SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ACCC747B-2A59-4F30-BA7C-D26333DE65F5}

SOFTWARE\Microsoft\Tracing\SoftwareUpdater_RASAPI32

SOFTWARE\Microsoft\Tracing\SoftwareUpdater_RASMANCS

SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\SoftwareUpdateTaskMachineCore.job

SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\SoftwareUpdateTaskMachineCore.job.fp

SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\SoftwareUpdateTaskMachineUA.job

SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\SoftwareUpdateTaskMachineUA.job.fp

SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SoftwareUpdateTaskMachineCore

SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SoftwareUpdateTaskMachineUA

SOFTWARE\MozillaPlugins\@tools.Software.com/Software Update;version=3

SOFTWARE\MozillaPlugins\@tools.Software.com/Software Update;version=9

SOFTWARE\SoftwareUpdater

SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3B96B5D3-4A8D-42DC-9CDE-E9B94B3CFE5D}

SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ACCC747B-2A59-4F30-BA7C-D26333DE65F5}

SOFTWARE\Wow6432Node\Microsoft\Tracing\softwareupdater_RASAPI32

SOFTWARE\Wow6432Node\Microsoft\Tracing\softwareupdater_RASMANCS

SOFTWARE\Wow6432Node\MozillaPlugins\@tools.Software.com/Software Update;version=3

SOFTWARE\Wow6432Node\MozillaPlugins\@tools.Software.com/Software Update;version=9

SOFTWARE\Wow6432Node\SoftwareUpdater

SYSTEM\ControlSet001\services\eventlog\Application\SrvSwUpd4ter

SYSTEM\ControlSet002\services\eventlog\Application\SrvSwUpd4ter

SYSTEM\CurrentControlSet\services\eventlog\Application\SrvSwUpd4ter

HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}

Software Updater_is1

SoftwareUpdater

Vittalia

Directories

Software Updater may create the following directory or directories:

%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\Software Updater

%APPDATA%\SoftwareUpdater

%PROGRAMFILES%\Software\Update

%PROGRAMFILES(x86)%\Software\Update

%ProgramFiles%\Software Updater

%ProgramFiles%\SoftwareUpdater

%ProgramFiles(x86)%\Software Updater

EnigmaSoft’s Payment Processor Digital River GmbH Filing for Bankruptcy Does Not Impact SpyHunter Customers’ Anti-Malware Protection

Search

Change Region

Software Updater

Threat Scorecard

EnigmaSoft Threat Scorecard

Software Updater – An Updater Up to No Good

Removing the Software Updater for Good

Aliases

SpyHunter Detects & Remove Software Updater

File System Details

Registry Details

Directories

Submit Comment

Related Posts

PUP.IObit Software Updater

PUP.EZ Software Updater

Open Software Updater

Trending

Trojan.Win32.Autoit.aks

Trojan.Gatak.A

WowCoupon

Most Viewed

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen

How to Fix 'macOS cannot verify that this app is...