'Desktop Weather Alerts' Pop-Ups
Posted: February 3, 2014
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Ranking: | 1,582 |
|---|---|
| Threat Level: | 1/10 |
| Infected PCs: | 449,782 |
| First Seen: | February 3, 2014 |
|---|---|
| Last Seen: | October 17, 2023 |
| OS(es) Affected: | Windows |
'Desktop Weather Alerts' Pop-Ups is adware that may be installed on the PC without the computer user's consent. 'Desktop Weather Alerts' Pop-Ups may be distributed and access the PC through packed free programs that computer users can download from unsafe download websites. 'Desktop Weather Alerts' Pop-Ups is a security infection, but it is not categorized as a malware threat or virus. If 'Desktop Weather Alerts' Pop-Ups appears on the Web browser while the PC user is browsing the Web, this may specify that adware has affected the PC. 'Desktop Weather Alerts' Pop-Ups may seem to be a helpful application but, in reality, it is created to show random pop-up ads and, if clicked on them, forcibly redirect PC users to unwanted websites that may be designed to make money from ad clicks and raised web traffic.
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:C:\Program Files (x86)\WeatherTool\2.0.1.5000028\weather_free.exe
File name: weather_free.exeSize: 1.63 MB (1638000 bytes)
MD5: ee9196447129fe8017f04731e1449068
Detection count: 19,283
File type: Executable File
Mime Type: unknown/exe
Path: C:\Program Files (x86)\WeatherTool\2.0.1.5000028\weather_free.exe
Group: Malware file
Last Updated: September 2, 2023
%PROGRAMFILES%\weathertool\2.0.1.5000028\weatherservice.exe
File name: weatherservice.exeSize: 156.78 KB (156784 bytes)
MD5: f01c68f41994a543693dbc5f9c390c95
Detection count: 16,432
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\weathertool\2.0.1.5000028\weatherservice.exe
Group: Malware file
Last Updated: September 2, 2023
C:\Program Files\WeatherTool\2.0.1.5000028\weather_free.exe
File name: weather_free.exeSize: 1.28 MB (1282160 bytes)
MD5: bdc63594584ae39bec6adbffc3d83316
Detection count: 12,959
File type: Executable File
Mime Type: unknown/exe
Path: C:\Program Files\WeatherTool\2.0.1.5000028\weather_free.exe
Group: Malware file
Last Updated: August 21, 2023
%PROGRAMFILES%\weathertool\2.0.1.11297\weatherservice.exe
File name: weatherservice.exeSize: 141.96 KB (141960 bytes)
MD5: 9e2cc75a344bf54863753173a8e00447
Detection count: 10,097
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\weathertool\2.0.1.11297\weatherservice.exe
Group: Malware file
Last Updated: June 26, 2023
%PROGRAMFILES(x86)%\weathertool\2.0.1.11332\weatherservice.exe
File name: weatherservice.exeSize: 155.78 KB (155784 bytes)
MD5: cbde0dbfe594c079d243ac7ee66ec121
Detection count: 9,605
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES(x86)%\weathertool\2.0.1.11332\weatherservice.exe
Group: Malware file
Last Updated: August 31, 2023
%SYSTEMDRIVE%\AdwCleaner\FileQuarantine\C\Program Files (x86)\WeatherTool\2.0.1.11245\WeatherService.exe.vir
File name: WeatherService.exe.virSize: 141.96 KB (141960 bytes)
MD5: 9beed70943771588f9bf265a5ed1b96a
Detection count: 8,973
Mime Type: unknown/vir
Path: %SYSTEMDRIVE%\AdwCleaner\FileQuarantine\C\Program Files (x86)\WeatherTool\2.0.1.11245\WeatherService.exe.vir
Group: Malware file
Last Updated: January 4, 2023
%PROGRAMFILES(x86)%\weathertool\2.0.1.11332\weatherservice.exe
File name: weatherservice.exeSize: 156.12 KB (156120 bytes)
MD5: 2ad8ea9a42721aa5a7160560cdc65a65
Detection count: 8,258
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES(x86)%\weathertool\2.0.1.11332\weatherservice.exe
Group: Malware file
Last Updated: October 10, 2023
%SYSTEMDRIVE%\Users\<username>\Documents\Program Files (x86)\WeatherTool\2.0.1.11389\WeatherService.exe
File name: WeatherService.exeSize: 150.64 KB (150640 bytes)
MD5: e177a654fe8edba12722140b7360845b
Detection count: 7,483
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\Documents\Program Files (x86)\WeatherTool\2.0.1.11389\WeatherService.exe
Group: Malware file
Last Updated: July 24, 2023
%SYSTEMDRIVE%\Users\<username>\Documents\Program Files (x86)\WeatherTool\2.0.1.11389\weather.exe
File name: weather.exeSize: 1.63 MB (1638000 bytes)
MD5: ef02cedadb5f8f5a984b95e0373bd420
Detection count: 6,855
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\Documents\Program Files (x86)\WeatherTool\2.0.1.11389\weather.exe
Group: Malware file
Last Updated: July 24, 2023
c:\program files (x86)\weathertool\2.0.1.11280\weatherservice.exe
File name: weatherservice.exeSize: 141.96 KB (141960 bytes)
MD5: 34c783be3e2acd9cf0dd0c1e5483677a
Detection count: 6,331
File type: Executable File
Mime Type: unknown/exe
Path: c:\program files (x86)\weathertool\2.0.1.11280\weatherservice.exe
Group: Malware file
Last Updated: May 5, 2023
C:\Program Files (x86)\WeatherTool\2.0.1.11297\WeatherService.exe
File name: WeatherService.exeSize: 142.29 KB (142296 bytes)
MD5: 2f9b5f199f5402bd9769b814cf8d733c
Detection count: 5,872
File type: Executable File
Mime Type: unknown/exe
Path: C:\Program Files (x86)\WeatherTool\2.0.1.11297\WeatherService.exe
Group: Malware file
Last Updated: September 16, 2023
%PROGRAMFILES%\WeatherTool\2.0.1.11244\WeatherService.exe
File name: WeatherService.exeSize: 141.96 KB (141960 bytes)
MD5: fc191a1aebe0ba8427e596bbef91137a
Detection count: 3,295
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\WeatherTool\2.0.1.11244\WeatherService.exe
Group: Malware file
Last Updated: June 21, 2023
C:\Program Files (x86)\WeatherTool\2.0.1.11244\weather.exe
File name: weather.exeSize: 1.63 MB (1638024 bytes)
MD5: 197b1ec68008d7107d07ec7f33e5843f
Detection count: 1,522
File type: Executable File
Mime Type: unknown/exe
Path: C:\Program Files (x86)\WeatherTool\2.0.1.11244\weather.exe
Group: Malware file
Last Updated: August 7, 2022
C:\backup 02-06-17\Program Files (x86)\WeatherTool\2.0.1.11297\weather.exe
File name: weather.exeSize: 1.63 MB (1638024 bytes)
MD5: b6822864a849cbd611a78ea35ded2a0a
Detection count: 869
File type: Executable File
Mime Type: unknown/exe
Path: C:\backup 02-06-17\Program Files (x86)\WeatherTool\2.0.1.11297\weather.exe
Group: Malware file
Last Updated: January 21, 2023
C:\Program Files (x86)\WeatherTool\2.0.1.11245\WeatherService.exe
File name: WeatherService.exeSize: 142.28 KB (142288 bytes)
MD5: 963d0b687465a6c0d23fa3ac73af92d8
Detection count: 190
File type: Executable File
Mime Type: unknown/exe
Path: C:\Program Files (x86)\WeatherTool\2.0.1.11245\WeatherService.exe
Group: Malware file
Last Updated: February 6, 2022
%PROGRAMFILES%\WeatherTool\2.0.1.11280\WeatherService.exe
File name: WeatherService.exeSize: 142.29 KB (142296 bytes)
MD5: 72f805c46f192d0211c88c43475853ff
Detection count: 87
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\WeatherTool\2.0.1.11280
Group: Malware file
Last Updated: August 27, 2019
%PROGRAMFILES(x86)%\WeatherTool\2.0.1.11280\WeatherService.exe
File name: WeatherService.exeSize: 141.96 KB (141960 bytes)
MD5: 05c0c495bbf5fdc7d5d08e0fc9081e77
Detection count: 30
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES(x86)%\WeatherTool\2.0.1.11280
Group: Malware file
Last Updated: January 9, 2020
%PROGRAMFILES%\WeatherTool\2.0.1.11244\WeatherService.exe
File name: WeatherService.exeSize: 141.96 KB (141960 bytes)
MD5: 3714ac4d01174958d59c115a5953f3c5
Detection count: 23
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\WeatherTool\2.0.1.11244
Group: Malware file
Last Updated: February 26, 2023
%PROGRAMFILES%\WeatherTool\2.0.1.11263\WeatherService.exe
File name: WeatherService.exeSize: 182.91 KB (182912 bytes)
MD5: a347f9a2352c4d6c060ac7cacfd5869c
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\WeatherTool\2.0.1.11263
Group: Malware file
Last Updated: July 6, 2016
%PROGRAMFILES(x86)%\WeatherTool\2.0.1.11073\WeatherService.exe
File name: WeatherService.exeSize: 193.48 KB (193480 bytes)
MD5: 7ab4eddedf66ad08a20927b9f897971e
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES(x86)%\WeatherTool\2.0.1.11073
Group: Malware file
Last Updated: July 6, 2016
%PROGRAMFILES(x86)%\WeatherTool\2.0.1.11076\WeatherService.exe
File name: WeatherService.exeSize: 229.83 KB (229832 bytes)
MD5: 2f9d853a0bb1dfdf483ae653e876289d
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES(x86)%\WeatherTool\2.0.1.11076
Group: Malware file
Last Updated: July 6, 2016
%PROGRAMFILES(x86)%\WeatherTool\2.0.1.11245\WeatherService.exe
File name: WeatherService.exeSize: 141.96 KB (141960 bytes)
MD5: 6d4a39763609b45ea3070b716aa46136
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES(x86)%\WeatherTool\2.0.1.11245
Group: Malware file
Last Updated: July 6, 2016
%PROGRAMFILES%\WeatherTool\2.0.1.11073\WeatherService.exe
File name: WeatherService.exeSize: 152 KB (152008 bytes)
MD5: 88e92ca895235ef09bc82a6fdec57c51
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\WeatherTool\2.0.1.11073
Group: Malware file
Last Updated: July 6, 2016
More files
Registry Modifications
The following newly produced Registry Values are:
CLSID{353385c3-5be5-7d15-7e24-38a3bbfb4d38}{5914e3cf-e52f-7a1a-4efa-b790328104d9}{ac66a361-74fe-74e2-411c-85b3162ae4f5}File name without pathWeather Widget.lnkWeatherApp.lnkRegexp file mask%WINDIR%\System32\Tasks\HDNINSTSCHD%WINDIR%\System32\Tasks\IE_ERR4WDR%WINDIR%\System32\Tasks\UPDTEXE4_WDRHKEY..\..\..\..{RegistryKeys}Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\WeatherApp.exeSOFTWARE\Microsoft\Tracing\DesktopWeatherAlertsApp_RASAPI32SOFTWARE\Microsoft\Tracing\DesktopWeatherAlertsApp_RASMANCSSOFTWARE\Microsoft\Tracing\hdnInstaller_RASAPI32SOFTWARE\Microsoft\Tracing\hdnInstaller_RASMANCSSOFTWARE\Microsoft\Tracing\WAUpdater_RASAPI32SOFTWARE\Microsoft\Tracing\WAUpdater_RASMANCSSOFTWARE\Microsoft\Tracing\wdrguid_RASAPI32SOFTWARE\Microsoft\Tracing\wdrguid_RASMANCSSOFTWARE\Microsoft\Tracing\WeatherAlerts_RASAPI32SOFTWARE\Microsoft\Tracing\WeatherAlerts_RASMANCSSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HDNINSTSCHDSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IE_ERR4WDRSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\UPDTEXE4_WDRSoftware\Microsoft\Windows\CurrentVersion\App Paths\WeatherApp.exeSoftware\Portable WeatherAppSoftware\WeatherAlertsSoftware\WeatherAppSoftware\WeatherToolSOFTWARE\Wow6432Node\Microsoft\Tracing\DesktopWeatherAlertsApp_RASAPI32SOFTWARE\Wow6432Node\Microsoft\Tracing\DesktopWeatherAlertsApp_RASMANCSSOFTWARE\Wow6432Node\Microsoft\Tracing\WeatherAlertService_RASAPI32SOFTWARE\Wow6432Node\Microsoft\Tracing\WeatherAlertService_RASMANCSSOFTWARE\Wow6432Node\Portable WeatherAppSOFTWARE\Wow6432Node\WeatherToolSYSTEM\ControlSet001\services\TheDesktopWeatherServiceSYSTEM\ControlSet002\services\TheDesktopWeatherServiceSYSTEM\CurrentControlSet\services\TheDesktopWeatherServiceHKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}DesktopWeatherAlertsWeatherAlertWeatherAppWeatherTool{67E7E216-1173-4B30-BA9B-E737E032EFBB}
CLSID{353385c3-5be5-7d15-7e24-38a3bbfb4d38}{5914e3cf-e52f-7a1a-4efa-b790328104d9}{ac66a361-74fe-74e2-411c-85b3162ae4f5}File name without pathWeather Widget.lnkWeatherApp.lnkRegexp file mask%WINDIR%\System32\Tasks\HDNINSTSCHD%WINDIR%\System32\Tasks\IE_ERR4WDR%WINDIR%\System32\Tasks\UPDTEXE4_WDRHKEY..\..\..\..{RegistryKeys}Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\WeatherApp.exeSOFTWARE\Microsoft\Tracing\DesktopWeatherAlertsApp_RASAPI32SOFTWARE\Microsoft\Tracing\DesktopWeatherAlertsApp_RASMANCSSOFTWARE\Microsoft\Tracing\hdnInstaller_RASAPI32SOFTWARE\Microsoft\Tracing\hdnInstaller_RASMANCSSOFTWARE\Microsoft\Tracing\WAUpdater_RASAPI32SOFTWARE\Microsoft\Tracing\WAUpdater_RASMANCSSOFTWARE\Microsoft\Tracing\wdrguid_RASAPI32SOFTWARE\Microsoft\Tracing\wdrguid_RASMANCSSOFTWARE\Microsoft\Tracing\WeatherAlerts_RASAPI32SOFTWARE\Microsoft\Tracing\WeatherAlerts_RASMANCSSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HDNINSTSCHDSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IE_ERR4WDRSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\UPDTEXE4_WDRSoftware\Microsoft\Windows\CurrentVersion\App Paths\WeatherApp.exeSoftware\Portable WeatherAppSoftware\WeatherAlertsSoftware\WeatherAppSoftware\WeatherToolSOFTWARE\Wow6432Node\Microsoft\Tracing\DesktopWeatherAlertsApp_RASAPI32SOFTWARE\Wow6432Node\Microsoft\Tracing\DesktopWeatherAlertsApp_RASMANCSSOFTWARE\Wow6432Node\Microsoft\Tracing\WeatherAlertService_RASAPI32SOFTWARE\Wow6432Node\Microsoft\Tracing\WeatherAlertService_RASMANCSSOFTWARE\Wow6432Node\Portable WeatherAppSOFTWARE\Wow6432Node\WeatherToolSYSTEM\ControlSet001\services\TheDesktopWeatherServiceSYSTEM\ControlSet002\services\TheDesktopWeatherServiceSYSTEM\CurrentControlSet\services\TheDesktopWeatherServiceHKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}DesktopWeatherAlertsWeatherAlertWeatherAppWeatherTool{67E7E216-1173-4B30-BA9B-E737E032EFBB}
Additional Information
The following directories were created:
%ALLUSERSPROFILE%\WeatherAlert%APPDATA%\Microsoft\Windows\Start Menu\Programs\Weather Alerts%APPDATA%\WeatherTool%HOMEDRIVE%\WeatherAlert%LOCALAPPDATA%\Local_Weather_LLC%LOCALAPPDATA%\WeatherAlert%LOCALAPPDATA%\WeatherAlerts%LOCALAPPDATA%\WeatherApp%PROGRAMFILES%\Portable WeatherApp%PROGRAMFILES%\WeatherTool%PROGRAMFILES(x86)%\Portable WeatherApp%PROGRAMFILES(x86)%\WeatherApp%PROGRAMFILES(x86)%\WeatherTool%USERPROFILE%\Start Menu\Programs\Weather Alerts%WINDIR%\SysWOW64\config\systemprofile\AppData\Roaming\WeatherTool%WINDIR%\system32\config\systemprofile\AppData\Roaming\WeatherTool%appdata%\Microsoft\Windows\Start Menu\Programs\WeatherApp
Do you have a method available for paying by CHECK thru the Postal System or over the telephone. I do not want the Local Weather Alert App to capture and sell my credit card data. Thanks