Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

3.0.0.9016 8.70%
3.0.0.9015 2.17%
3.0.0.7011 4.35%
3.0.0.7009 2.17%
3.0.0.6005 8.70%
3.0.0.6001 8.70%
3.0.0.4001 4.35%
3.0.0.3001 15.22%
3.0.0.2004 15.22%
3.0.0.0005 2.17%
2.0.0.4003 10.87%
2.0.0.3003 6.52%
1.0.0.5008 4.35%
1.0.0.5006 6.52%

Relationships

Parent process
Related files

PE structurePE file structure

Show functions
Import table
advapi32.dll
RegSetValueExW, RegCloseKey, RegOpenKeyExW, RegDeleteValueW, RegDeleteKeyW, RegQueryValueExW, RegCreateKeyExW, LsaFreeMemory, ConvertSidToStringSidW, LsaNtStatusToWinError, LsaClose, LookupAccountNameW, LsaAddAccountRights, LsaEnumerateAccountRights, LsaOpenPolicy, GetUserNameW, ControlService, RegisterServiceCtrlHandlerW, SetServiceStatus, QueryServiceStatus, StartServiceW, ChangeServiceConfig2W, OpenServiceW, StartServiceCtrlDispatcherW, OpenSCManagerW, DeleteService, CloseServiceHandle, CreateServiceW, GetSecurityDescriptorDacl, GetSecurityDescriptorGroup, GetLengthSid, MakeSelfRelativeSD, GetSecurityDescriptorSacl, InitializeSid, GetSidLengthRequired, IsValidSid, GetSecurityDescriptorOwner, GetNamedSecurityInfoW, LookupAccountSidW, GetSecurityDescriptorLength, GetAce, EqualSid, GetSecurityDescriptorControl, CopySid, GetAclInformation, GetSidSubAuthority
kernel32.dll
GetCurrentDirectoryW, GetModuleFileNameW, ResumeThread, SetThreadPriority, GetProcAddress, OpenProcess, GetModuleHandleW, ExpandEnvironmentStringsW, WaitForMultipleObjects, CreateProcessW, DeleteFileW, GetFileSizeEx, CreateFileW, ReadFile, GetFileAttributesW, WriteFile, SetFilePointerEx, MoveFileExW, SetEndOfFile, SetLastError, GetStdHandle, SetConsoleMode, GetConsoleMode, GetCurrentProcess, LCMapStringW, FormatMessageW, WideCharToMultiByte, DeleteCriticalSection, GetLocalTime, EnterCriticalSection, LeaveCriticalSection, InitializeCriticalSection, Sleep, CloseHandle, FindNextFileW, CreateEventW, FindClose, GetModuleHandleA, SetEvent, WaitForSingleObject, InterlockedDecrement, InterlockedIncrement, FindFirstFileW, LocalFree, GetLastError, LockResource, MultiByteToWideChar, SizeofResource, LoadResource, FindResourceW, FindResourceExW, InitializeCriticalSectionAndSpinCount, GetLocaleInfoW, SetStdHandle, WriteConsoleA, GetConsoleOutputCP, WriteConsoleW, CompareStringA, CompareStringW, SetEnvironmentVariableA, GetDriveTypeA, CreateFileA, LoadLibraryA, RaiseException, HeapDestroy, HeapAlloc, HeapFree, HeapReAlloc, HeapSize, GetProcessHeap, InterlockedCompareExchange, InterlockedExchange, SetConsoleCtrlHandler, GetSystemTimeAsFileTime, GetTimeZoneInformation, FileTimeToSystemTime, FileTimeToLocalFileTime, GetDriveTypeW, ExitThread, GetCurrentThreadId, CreateThread, TerminateProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, IsDebuggerPresent, RtlUnwind, GetCPInfo, LCMapStringA, GetStringTypeW, TlsGetValue, TlsAlloc, TlsSetValue, TlsFree, ExitProcess, HeapCreate, VirtualFree, VirtualAlloc, GetModuleFileNameA, GetACP, GetOEMCP, IsValidCodePage, GetTimeFormatA, GetDateFormatA, FreeEnvironmentStringsW, GetEnvironmentStringsW, GetCommandLineW, SetHandleCount, GetFileType, GetStartupInfoA, QueryPerformanceCounter, GetTickCount, GetCurrentProcessId, GetFullPathNameW, GetFileInformationByHandle, PeekNamedPipe, GetCurrentDirectoryA, GetConsoleCP, FlushFileBuffers, GetStringTypeA, SetFilePointer, GetUserDefaultLCID, GetLocaleInfoA, EnumSystemLocalesA, IsValidLocale, GetFileSize, GetVersionExW, DuplicateHandle
netapi32.dll
NetUserGetLocalGroups, NetApiBufferFree
psapi.dll
GetModuleFileNameExW, EnumProcesses
secur32.dll
GetUserNameExW

SUA.exe

Secunia Update Agent by Secunia (Signed)

Remove SUA.exe
Version:   3.0.0.3001
MD5:   8b1a72e4fb63a9c068b08e1f9b70482a
SHA1:   a8ef1c94b9fab4997a990eb0e1995bbf580ec49f
SHA256:   32a529b3595c95a4306b7a4c199940f88d56b5563be040478af1963bbded0394

Overview

sua.exe runs as a service under the name Secunia Update Agent with extensive SYSTEM privileges (full administrator access). It is installed with a couple of know programs including Secunia PSI (3.0.0.3001) published by Secunia and Secunia PSI (3.0.0.9016) published by Secunia. The file is digitally signed by Secunia which was issued by the VeriSign certificate authority (CA).

DetailsDetails

File name:sua.exe
Publisher:Secunia
Product name:Secunia Update Agent
Typical file path:C:\Program Files\secunia\psi\sua.exe
File version:3.0.0.3001
Size:665.09 KB (681,056 bytes)
Certificate
Issued to:Secunia
Authority (CA):VeriSign
Effective date:Thursday, May 27, 2010
Expiration date:Monday, May 27, 2013
Digital DNA
File packed:No
.NET CLR:No
More details

ResourcesPrograms

The following programs will install this file
Secunia
12% remove
The Secunia Personal Software Inspector (PSI) works by examining files on your computer (primarily .exe, .dll, and .ocx files). These files contain non-specific meta information provided by the software vendor only. This data is the same for all users, and originates from the installed programs on your computer - never from their configuration. Please read the privacy statement available at the bottom of this page and through the Secuni...

BehaviorsBehaviors

Service
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
  • 'Secunia Update Agent'

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00035714%
0.028634%
Kernel CPU:0.00024570%
0.013761%
User CPU:0.00011144%
0.014873%
Kernel CPU time:12,213 ms/min
100,923,805ms/min
Memory
Private memory:1.88 MB
21.59 MB
Private (maximum):4.4 MB
Private (minimum):2.65 MB
Non-paged memory:1.88 MB
21.59 MB
Virtual memory:21.65 MB
140.96 MB
Virtual memory (peak):25.42 MB
169.69 MB
Working set:2.81 MB
18.61 MB
Working set (peak):4.65 MB
37.95 MB
Page faults:26,782/min
2,039/min
I/O
I/O read transfer:146 Bytes/sec
1.02 MB/min
I/O read operations:2/sec
343/min
I/O write transfer:154 Bytes/sec
274.99 KB/min
I/O write operations:2/sec
227/min
I/O other transfer:2.74 KB/sec
448.09 KB/min
I/O other operations:288/sec
1,671/min
Resource allocations
Threads:5
12
Handles:68
600
GUI GDI count:4
103
GUI USER count:1
49

BehaviorsProcess properties

Integrety level:System
Platform:32-bit
Command line:"C:\Program Files\secunia\psi\sua.exe" --start-service
Owner:SYSTEM
Windows Service
Service name:Secunia Update Agent
Description:“Performs routine updates of selected software on the system, the results of which can be seen in your Secunia PSI”
Type:Win32OwnProcess
Parent process:services.exe (Services and Controller app by Microsoft)

ResourcesThreads

Averages
 
sua.exe (main module)
Total CPU:0.00481665%
0.272967%
Kernel CPU:0.00453487%
0.107585%
User CPU:0.00028178%
0.165382%
CPU cycles:37,947/sec
5,741,424/sec
Memory:676 KB
1.16 MB
ntdll.dll
Total CPU:0.00000092%
Kernel CPU:0.00000000%
User CPU:0.00000092%
CPU cycles:1,243/sec
Memory:1.23 MB

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Home Premium 52.17%
Windows 7 Professional 13.04%
Microsoft Windows XP 10.87%
Windows 7 Ultimate 6.52%
Windows Vista Home Premium 4.35%
Windows 8 Pro with Media Center 4.35%
Windows 8 Pro 4.35%
Windows 8.1 Pro with Media Center 2.17%
Windows 8 2.17%

Distribution by countryDistribution by country

United States installs about 65.22% of Secunia Update Agent.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Dell 31.11%
Hewlett-Packard 22.22%
Toshiba 17.78%
Acer 17.78%
ASUS 4.44%
Intel 4.44%
Samsung 2.22%
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE