84,488,480 programs installed

Should I remove Weather It Up?

What percent of users and experts removed it?
82% remove it18% keep it
Overall Sentiment
Bad
What do people think about it?
(click star to rate)
How common is it?
Global Rank #28,573
United States Rank #23,036
Reach 0.0053%
Lifespan of installation (until removal)
< 4.19 days
123.65 days >
Average installed length: 64.97 days

Versions

VersionDistribution
1.36.01.22 1.90%
1.35.12.18 0.95%
1.35.3.9 0.95%
1.34.7.1 1.90%
1.34.6.10 3.81%
1.34.5.22 0.95%
1.34.4.10 14.29%
1.34.3.6 54.29%
1.34.2.13 20.00%
1.34.1.29 0.95%

Weather It Up

What is Weather It Up?

Displays advertising within the user's web browser on web pages where advertising would not normally appear. may be distribuited through OpenCandy.

About  (from Phoenix Media)

The Plugin is supported by third-party advertising, and when you download the Plugin you will see various types of advertisements displayed through your browser as you visit locations on the Internet. The Plugin currently displays several basic types of advertising: sponsored links, traditional display advertisements, ...  Read more

Overview

Weather It Up is a software program developed by Phoenix Media. The most common release is 1.34.3.6, with over 98% of all installations currently using this version. During setup, the program registers itself to launch on boot through a Windows Schedule Task in order to automatically start-up (this is typically done to avoid any UAC prompts). It adds a Browser Helper Object (BHO) to Internet Explorer. A scheduled task is added to Windows Task Scheduler in order to launch the program at various scheduled times (the schedule varies depending on the version). In the Google Chrome browser, it will add an extension. The primary executable is named utils.exe. A majority of users end up uninstalling this less than a week of it being installed. The setup package generally installs about 36 files and is usually about 9.7 MB (10,171,918 bytes). The installed file Weather It Up-updater.exe is the auto-update component of the program which is designed to check for software updates and notify and apply them when new versions are discovered. Relative to the overall usage of users who have this installed on their PCs, most are running Windows 7 (SP1) and Windows XP. While about 57% of users of Weather It Up come from the United States, it is also popular in Germany and Brazil.

This browser extension utilizes Crossrider framework, a cross-browser toolbar/plugin platform used to develop, deploy and monetize web browser toolbars for Internet Explorer, Chrome and Firefox. Crossrider extension provide monetization options, mostly potentially unwanted apps, for toolbars including coupons, search assistant (home page and search hijacking) and in-text contextual advertising. Many adware programs (defined by a number of anti-virus vendors) are built using Crossrider as it provides a quick an easy way to deploy ad-supported features that will assist in browser search hijacking.
  • Malware detected in the program
  • Automatically starts with Windows
  • Integrates into the web browser
  • Uses the Crossrider toolbar framework
  • During install it may hijack/modify the browser's homepage and search provider
  • Runs disconnected from the browser as a background process
  • Known to reinstall itself
  • Typically distributed through a pay-per-install bundle
  • The experts agree, you should remove it!
Warning, multiple anti-virus scanners have detected possible malware in Weather It Up.
utils.exe (7f44d95a3983d98f793820ebdf19c3f4) has been flagged by the following 8 scanners:
Anti-Virus softwareVersionDetection
AhnLab-V3 N PUP/Win32.Adware
Baidu-International 4.0.3.14422 Trojan.Win32.VMDetector.E
Bkav FE 1.3.0.4959 HW32.CDB
Dr.Web 9.0.0.0112 Trojan.Crossrider.4794
ESET-NOD32 8.9662 Win32/Toolbar.CrossRider.AB
G Data 14.4.24 Win32.Trojan.Agent.WUBV2L
Malwarebytes v2014.04.22.11 PUP.Optional.WeatherItUp.A
TrendMicro-HouseCall 7.2.112 TROJ_GEN.F47V0316
Weather It Up-codedownloader.exe (03129871f0bfb98cc31fbeb013a6d711) has been flagged by the following 21 scanners:
Anti-Virus softwareSoftware versionDetection
Lavasoft Ad-Aware 12.0.163.0 Trojan.Generic.11030524
Agnitum Outpost 5.5.1.3 PUA.Toolbar.CrossRider!
AVG 13.0.0.3169 Generic5.APHA
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.40
Bitdefender 7.2 Trojan.Generic.11030524
Dr.Web 7.00.9.04080 Trojan.Crossrider.7193
Emsisoft Anti-Malware 3.0.0.596 Trojan.Generic.11030524 (B)
ESET-NOD32 9704 a variant of Win32/Toolbar.CrossRider.AA
Fortinet FortiGate 4 Riskware/Toolbar_CrossRider
F-Secure 11.0.19100.45 Trojan.Generic.11030524
G Data 24 Trojan.Generic.11030524
IKARUS anti.virus T3.1.6.1.0 Trojan.SuspectCRC
K7 AntiVirus 9.176.11833 Trojan ( 004965ab1 )
K7GW 9.176.11833 Trojan ( 004965ab1 )
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
MicroWorld-eScan 12.0.250.0 Trojan.Generic.11030524
NANO AntiVirus 0.28.0.59492 Trojan.Win32.Crossrider.cwhmph
Norman 7.03.02 Troj_Generic.TEZJT
nProtect 2014-04-21.01 Trojan.Generic.11030524
TrendMicro-HouseCall 9.700-1001 TROJ_GEN.F47V0315
VIPRE Antivirus 28478 Crossrider (fs)
Weather It Up-enabler.exe (979fd2706f4d50c57fe1908872663863) has been flagged by the following 21 scanners:
Anti-Virus softwareSoftware versionDetection
Lavasoft Ad-Aware 12.0.163.0 Adware.Generic.910337
Antiy-AVL 0.1.0.1 Trojan/Win32.SGeneric
AVG 13.0.0.3169 Generic5.ANCJ
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.40
Bitdefender 7.2 Adware.Generic.910337
Dr.Web 7.00.9.04080 Trojan.Crossrider.7519
Emsisoft Anti-Malware 3.0.0.596 Adware.Generic.910337 (B)
ESET-NOD32 9702 a variant of Win32/Toolbar.CrossRider.X
Fortinet FortiGate 4 Riskware/Toolbar_CrossRider
F-Secure 11.0.19100.45 Adware.Generic.910337
G Data 24 Adware.Generic.910337
IKARUS anti.virus T3.1.6.1.0 AdWare.SuspectCRC
K7 AntiVirus 9.176.11806 Trojan ( 00495b741 )
K7GW 9.176.11806 Trojan ( 00495b741 )
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
McAfee 6.0.4.564 Artemis!979FD2706F4D
McAfee-GW-Edition 2013 Artemis!979FD2706F4D
MicroWorld-eScan 12.0.250.0 Adware.Generic.910337
NANO AntiVirus 0.28.0.59288 Trojan.Win32.Crossrider.cwggpx
Symantec 20131.1.5.61 Adware.Crossid
VIPRE Antivirus 28442 Crossrider (fs)
37c55077-63d0-4892-ac8c-90bd8624ed1e-2.exe (9bbfe489ae1e9a08027ea1fcb6469220) has been flagged by the following 21 scanners:
Anti-Virus softwareSoftware versionDetection
Lavasoft Ad-Aware 12.0.163.0 Trojan.Generic.11250844
Avira AntiVir 7.11.148.44 Adware/CrossRider.A.1708
AVG 14.0.0.3931 Generic5.ARQF
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.AC
Bitdefender 7.2 Trojan.Generic.11250844
Emsisoft Anti-Malware 3.0.0.596 Trojan.Generic.11250844 (B)
ESET-NOD32 9771 a variant of Win32/Toolbar.CrossRider.AC
F-Secure 11.0.19100.45 Trojan.Generic.11250844
G Data 24 Trojan.Generic.11250844
IKARUS anti.virus T3.1.6.1.0 Trojan.SuspectCRC
K7 AntiVirus 9.177.12013 Trojan ( 004985a61 )
K7GW 9.177.12013 Trojan ( 004985a61 )
Kingsoft AntiVirus 2013.04.09.267 Win32.Troj.Generic.a.(kcloud)
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
McAfee 6.0.4.564 Artemis!9BBFE489AE1E
McAfee-GW-Edition 2013 Artemis!9BBFE489AE1E
MicroWorld-eScan 12.0.250.0 Trojan.Generic.11250844
nProtect 2014-05-07.01 Trojan.Generic.11250844
Qihoo-360 1.0.0.1015 HEUR/Malware.QVM10.Gen
TrendMicro-HouseCall 9.700-1001 TROJ_GEN.F47V0427
VIPRE Antivirus 28970 Crossrider (fs)
Weather It Up-bho.dll (826796c81816eaff530971c69ea3522d) has been flagged by the following 19 scanners:
Anti-Virus softwareSoftware versionDetection
Lavasoft Ad-Aware 12.0.163.0 Trojan.Generic.11130994
AVG 13.0.0.3169 Generic5.APDB
Bitdefender 7.2 Trojan.Generic.11130994
Emsisoft Anti-Malware 3.0.0.596 Trojan.Generic.11130994 (B)
ESET-NOD32 9704 a variant of Win32/Toolbar.CrossRider.AA
Fortinet FortiGate 4 Riskware/Toolbar_CrossRider
F-Secure 11.0.19100.45 Trojan.Generic.11130994
G Data 24 Trojan.Generic.11130994
IKARUS anti.virus T3.1.6.1.0 Trojan.SuspectCRC
K7 AntiVirus 9.176.11833 Trojan ( 004965ab1 )
K7GW 9.176.11833 Trojan ( 004965ab1 )
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
McAfee 6.0.4.564 Artemis!826796C81816
McAfee-GW-Edition 2013 Artemis!826796C81816
MicroWorld-eScan 12.0.250.0 Trojan.Generic.11130994
nProtect 2014-04-21.01 Trojan.Generic.11130994
Sophos 4.98.0 AppRider
TrendMicro-HouseCall 9.700-1001 TROJ_GEN.F47V0316
VIPRE Antivirus 28474 Crossrider (fs)
Uninstall.exe (25616f8bf992bd1f8df066fae11579d2) has been flagged by the following 18 scanners:
Anti-Virus softwareSoftware versionDetection
Lavasoft Ad-Aware 12.0.163.0 Gen:Application.Heur.eqW@laH0DWmi
Agnitum Outpost 5.5.1.3 PUA.Toolbar.CrossRider!
AVG 15.0.0.4342 Toolbar.Crossrider.U
AVware 1.5.0.21 Trojan.Win32.Generic!BT
Baidu-International 3.5.1.41473 Adware.Win32.CrossAd.BP
Bitdefender 7.2 Gen:Application.Heur.eqW@laH0DWmi
Clam AntiVirus 0.98.5.0 Win.Trojan.Agent-839129
Dr.Web 7.0.12.3050 Trojan.Crossrider.27207
ESET-NOD32 11617 a variant of Win32/Toolbar.CrossRider.BP potentially unwanted
F-Secure 11.0.19100.45 Gen:Application.Heur.eqW@laH0DWmi
G Data 25 Gen:Application.Heur.eqW@laH0DWmi
MicroWorld-eScan 12.0.250.0 Gen:Application.Heur.eqW@laH0DWmi
NANO AntiVirus 0.30.24.1357 Trojan.Win32.XPACK.cxilnn
SUPERAntiSpyware 5.6.0.1032 Trojan.Agent/Gen-Downloader
Symantec 20141.2.0.56 Adware.Crossid
TrendMicro-HouseCall 9.700.0.1001 TROJ_GEN.R047H05CV15
VIPRE Antivirus 40186 Trojan.Win32.Generic!BT
Zillya 2.0.0.2174 Adware.CroRi.Win32.439
Weather It Up-firefoxinstaller.exe (daaa0c143b5074534f2d3c37311f1901) has been flagged by the following 15 scanners:
Anti-Virus softwareSoftware versionDetection
Lavasoft Ad-Aware 12.0.163.0 Trojan.Generic.11165073
Agnitum Outpost 5.5.1.3 Trojan.Crossrider!
AVG 13.0.0.3169 MultiBundle.V
Baidu-International 3.5.1.41473 Adware.Win32.Lyrics.71
Bitdefender 7.2 Trojan.Generic.11165073
Dr.Web 7.00.9.04080 Trojan.Crossrider.8337
Emsisoft Anti-Malware 3.0.0.596 Trojan.Generic.11165073 (B)
F-Secure 11.0.19100.45 Trojan.Generic.11165073
G Data 24 Trojan.Generic.11165073
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
MicroWorld-eScan 12.0.250.0 Trojan.Generic.11165073
Norman 7.03.02 Suspicious_Gen2.VVXJK
nProtect 2014-04-21.01 Trojan.Generic.11165073
TrendMicro-HouseCall 9.700-1001 TROJ_GEN.F47V0314
VIPRE Antivirus 28478 Crossrider (fs)
def30c52-fe80-4b26-8d43-62b3a67cc537-5.exe (334e329d40dce4e83fc6ab0885768d12) has been flagged by the following 14 scanners:
Anti-Virus softwareSoftware versionDetection
Lavasoft Ad-Aware 12.0.163.0 Adware.Generic.950682
Avira AntiVir 7.11.154.44 Adware/CrossRider.A.488
avast! 8.0.1489.320 Win32:Adware-gen [Adw]
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.AA
Bitdefender 7.2 Adware.Generic.950682
Emsisoft Anti-Malware 3.0.0.599 Adware.Generic.950682 (B)
ESET-NOD32 9921 a variant of Win32/Toolbar.CrossRider.AH
F-Secure 11.0.19100.45 Adware.Generic.950682
G Data 24 Adware.Generic.950682
Malwarebytes 1.75.0.1 PUP.Optional.WeatherItUp.A
MicroWorld-eScan 12.0.250.0 Adware.Generic.950682
Qihoo-360 1.0.0.1015 Win32/Virus.Adware.ae5
TrendMicro-HouseCall 9.700.0.1001 TROJ_GEN.F47V0603
VIPRE Antivirus 30146 Crossrider (fs)
def30c52-fe80-4b26-8d43-62b3a67cc537-3.exe (64865cc003157d7a9372bee2bf0ccf98) has been flagged by the following 11 scanners:
Anti-Virus softwareSoftware versionDetection
Avira AntiVir 7.11.152.50 Adware/CrossRider.A.6005
avast! 8.0.1489.320 Win32:Adware-gen [Adw]
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.bAD
ESET-NOD32 9872 a variant of Win32/Toolbar.CrossRider.AD
Fortinet FortiGate 4 Riskware/Toolbar_CrossRider
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
McAfee 6.0.4.564 Artemis!64865CC00315
McAfee-GW-Edition 2013 Artemis!64865CC00315
Qihoo-360 1.0.0.1015 Win32/Virus.Adware.d15
Symantec 20131.1.5.61 WS.Reputation.1
VIPRE Antivirus 29780 Crossrider (fs)
def30c52-fe80-4b26-8d43-62b3a67cc537-2.exe (79085a7a030895ba2430fcd1a91d66eb) has been flagged by the following 10 scanners:
Anti-Virus softwareSoftware versionDetection
Avira AntiVir 7.11.154.44 Adware/CrossRider.A.489
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.BAC
ESET-NOD32 9921 a variant of Win32/Toolbar.CrossRider.AC
Fortinet FortiGate 5.1.152.0 Riskware/Toolbar_CrossRider
K7 AntiVirus 9.179.12348 Trojan ( 004984e91 )
K7GW 9.179.12348 Trojan ( 004984e91 )
Malwarebytes 1.75.0.1 PUP.Optional.WeatherItUp.A
Sophos 4.98.0 AppRider
TrendMicro-HouseCall 9.700.0.1001 TROJ_GEN.F47V0603
VIPRE Antivirus 30146 Crossrider (fs)
def30c52-fe80-4b26-8d43-62b3a67cc537-4.exe (e9ec9c1f994fc7d188e88627af352d04) has been flagged by the following 10 scanners:
Anti-Virus softwareSoftware versionDetection
Avira AntiVir 7.11.152.50 Adware/CrossRider.A.5996
avast! 8.0.1489.320 Win32:Malware-gen
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.BAD
ESET-NOD32 9872 a variant of Win32/Toolbar.CrossRider.AD
Fortinet FortiGate 4 Riskware/Toolbar_CrossRider
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
McAfee 6.0.4.564 Artemis!E9EC9C1F994F
McAfee-GW-Edition 2013 Artemis!E9EC9C1F994F
Qihoo-360 1.0.0.1015 Win32/Virus.Adware.219
VIPRE Antivirus 29780 Crossrider (fs)
Weather It Up-updater.exe (403a07d6eb6e7120f07a765a0d7940f7) has been flagged by the following 9 scanners:
Anti-Virus softwareSoftware versionDetection
AVG 13.0.0.3169 Generic5.ANJA
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.40
ESET-NOD32 9487 a variant of Win32/Toolbar.CrossRider.X
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
McAfee 6.0.4.564 Crossrider-FAJ!403A07D6EB6E
McAfee-GW-Edition 2013 Artemis!403A07D6EB6E
Symantec 20131.1.5.61 Adware.Crossid
TrendMicro-HouseCall 9.700-1001 TROJ_GEN.R0C1H05BP14
VIPRE Antivirus 26956 Crossrider (fs)
cb607470-d07a-4f06-a139-46cad63fe159-4.exe (339aa29983ca634fb361ff95494bb67e) has been flagged by the following 9 scanners:
Anti-Virus softwareSoftware versionDetection
Avira AntiVir 7.11.163.240 ADWARE/CrossRider.Gen2
AVG 14.0.0.3986 Generic.332
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.BAK
ESET-NOD32 10153 a variant of Win32/Toolbar.CrossRider.AK
IKARUS anti.virus T3.1.6.1.0 not-a-virus:WebToolbar.CrossRider
Malwarebytes 1.75.0.1 PUP.Optional.WeatherItUp.A
Panda Antivirus 10.0.3.5 Trj/Genetic.gen
Symantec 20131.1.5.61 WS.Reputation.1
VIPRE Antivirus 31590 Crossrider (fs)
Weather It Up-bho64.dll (1a85bbdafaa858bbb1bd95f4b0102285) has been flagged by the following 7 scanners:
Anti-Virus softwareSoftware versionDetection
Baidu-International 3.5.1.41473 Adware.Win64.Crossrider.D
ESET-NOD32 9704 a variant of Win64/Toolbar.Crossrider.D
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
McAfee 6.0.4.564 Artemis!1A85BBDAFAA8
McAfee-GW-Edition 2013 Artemis!1A85BBDAFAA8
TrendMicro-HouseCall 9.700-1001 TROJ_GEN.F47V0404
VIPRE Antivirus 28482 Crossrider (fs)
a637664b-e92b-453d-bae4-70682cd68c21-5.exe (40beb59b6a1af4035cba812e3e56652f) has been flagged by the following 7 scanners:
Anti-Virus softwareSoftware versionDetection
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.AC
ESET-NOD32 9704 a variant of Win32/Toolbar.CrossRider.AC
Kingsoft AntiVirus 2013.04.09.267 Win32.Troj.Generic.a.(kcloud)
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
Symantec 20131.1.5.61 WS.Reputation.1
TrendMicro-HouseCall 9.700-1001 TROJ_GEN.F47V0412
VIPRE Antivirus 28482 Crossrider (fs)
37c55077-63d0-4892-ac8c-90bd8624ed1e-4.exe (1cca1df14b96965bfd16f89e092ea9bf) has been flagged by the following 6 scanners:
Anti-Virus softwareSoftware versionDetection
AVG 13.0.0.3169 Generic_s.BA
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.AD
ESET-NOD32 9727 a variant of Win32/Toolbar.CrossRider.AD
Kingsoft AntiVirus 2013.04.09.267 Win32.Troj.Generic.a.(kcloud)
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
VIPRE Antivirus 28622 Crossrider (fs)
a637664b-e92b-453d-bae4-70682cd68c21-4.exe (28f300d3c7ed654010761da6995c7031) has been flagged by the following 6 scanners:
Anti-Virus softwareSoftware versionDetection
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.AD
ESET-NOD32 9704 a variant of Win32/Toolbar.CrossRider.AD
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
Symantec 20131.1.5.61 Adware.BL
TrendMicro-HouseCall 9.700-1001 TROJ_GEN.F47V0412
VIPRE Antivirus 28482 Crossrider (fs)
37c55077-63d0-4892-ac8c-90bd8624ed1e-5.exe (00af96b574774a20f7493feb30a37844) has been flagged by the following 5 scanners:
Anti-Virus softwareSoftware versionDetection
AVG 13.0.0.3169 Generic5.ASJP
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.AC
ESET-NOD32 9727 a variant of Win32/Toolbar.CrossRider.AC
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
VIPRE Antivirus 28606 Crossrider (fs)
37c55077-63d0-4892-ac8c-90bd8624ed1e-3.exe (33228f598da86af0cab83c67d06af2d3) has been flagged by the following 5 scanners:
Anti-Virus softwareSoftware versionDetection
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.AD
Bkav FE 1.3.0.4959 W32.CrossRider.Trojan
ESET-NOD32 9727 a variant of Win32/Toolbar.CrossRider.AD
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
VIPRE Antivirus 28606 Crossrider (fs)
Weather It Up-chromeinstaller.exe (808d1e492a2178d7d4e85c8738e91660) has been flagged by the following 5 scanners:
Anti-Virus softwareSoftware versionDetection
AVG 13.0.0.3169 Generic5.ANIS
Baidu-International 3.5.1.41473 Adware.Win32.Lyrics.71
ESET-NOD32 9489 a variant of Win32/Toolbar.CrossRider.Y
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
VIPRE Antivirus 26980 Crossrider (fs)
a637664b-e92b-453d-bae4-70682cd68c21-2.exe (853b9b7dcece448fbe69b25d88e741c7) has been flagged by the following 5 scanners:
Anti-Virus softwareSoftware versionDetection
Baidu-International 3.5.1.41473 Adware.Win32.CrossRider.AC
ESET-NOD32 9704 a variant of Win32/Toolbar.CrossRider.AC
Malwarebytes 1.75.0001 PUP.Optional.WeatherItUp.A
TrendMicro-HouseCall 9.700-1001 TROJ_GEN.F47V0412
VIPRE Antivirus 28482 Crossrider (fs)
       View all 232 all detections
Weather It Up has been found to be bundled with 3rd party software. If you have not purposefully installed this, you should be safe uninstalling it.

Program detailsProgram details

Installation folder: C:\Program Files\weather it up
Uninstaller: C:\Program Files\Weather It Up\Uninstall.exe /fromcontrolpanel=1
Estimated size: 9.7 MB

Program filesFiles installed by Weather It Up

Program executable:utils.exe (Malware detected)
Fdzqdnmfu
Path:C:\Program Files\weather it up\utils.exe
MD5:7f44d95a3983d98f793820ebdf19c3f4
Additional files:
  • (Malware detected) 37c55077-63d0-4892-ac8c-90bd8624ed1e-2.exe - Weather It Up (Weather It Up exe)
  • (Malware detected) 37c55077-63d0-4892-ac8c-90bd8624ed1e-3.exe
  • (Malware detected) 37c55077-63d0-4892-ac8c-90bd8624ed1e-4.exe
  • (Malware detected) 37c55077-63d0-4892-ac8c-90bd8624ed1e-5.exe
  • 8e34e056-95e0-40a0-8d85-7806fbb3872b-64.exe
  • (Malware detected) a637664b-e92b-453d-bae4-70682cd68c21-2.exe
  • a637664b-e92b-453d-bae4-70682cd68c21-3.exe
  • (Malware detected) a637664b-e92b-453d-bae4-70682cd68c21-4.exe
  • (Malware detected) a637664b-e92b-453d-bae4-70682cd68c21-5.exe
  • cb607470-d07a-4f06-a139-46cad63fe159-11.exe
  • cb607470-d07a-4f06-a139-46cad63fe159-2.exe
  • (Malware detected) cb607470-d07a-4f06-a139-46cad63fe159-4.exe
  • cb607470-d07a-4f06-a139-46cad63fe159-5.exe
  • (Malware detected) def30c52-fe80-4b26-8d43-62b3a67cc537-2.exe
  • (Malware detected) def30c52-fe80-4b26-8d43-62b3a67cc537-3.exe
  • (Malware detected) def30c52-fe80-4b26-8d43-62b3a67cc537-4.exe
  • (Malware detected) def30c52-fe80-4b26-8d43-62b3a67cc537-5.exe
  • Weather It Up-bg.exe
  • (Malware detected) Weather It Up-bho.dll - Weather It Up BHO
  • (Malware detected) Weather It Up-bho64.dll
  • Weather It Up-buttonutil.exe
  • Weather It Up-buttonutil64.exe
  • (Malware detected) Weather It Up-chromeinstaller.exe
  • (Malware detected) Weather It Up-codedownloader.exe
  • (Malware detected) Weather It Up-enabler.exe
  • (Malware detected) Weather It Up-firefoxinstaller.exe
  • (Malware detected) Weather It Up-updater.exe
  • 49136.crx
  • (Malware detected) Uninstall.exe
  • Weather It Up-buttonutil.dll
  • Weather It Up-buttonutil64.dll

Program behaviorsBehaviors exhibited

2 Internet Explorer BHOs
  • Weather It Up-bho.dll is installed in Internet Explorer as a BHO (Browser Helper Object) under the name 'Weather It Up' with the class of {11111111-1111-1111-1111-110411911136} (CrossriderApp0049136).
  • Weather It Up-bho64.dll is installed in Internet Explorer as a BHO (Browser Helper Object) under the name 'Weather It Up' with the class of {11111111-1111-1111-1111-110411911136} (CrossriderApp0049136).
Scheduled Task
  • Uninstall.exe is scheduled as a task with the class '{D73EFAF1-A52C-425B-8333-F71F1A3EC26B}' (runs on registration).
19 Scheduled Tasks (Boot/Login)
  • Weather It Up-codedownloader.exe is automatically launched at startup through a scheduled task named cb607470-d07a-4f06-a139-46cad63fe159-1.
  • cb607470-d07a-4f06-a139-46cad63fe159-5.exe is automatically launched at startup through a scheduled task named cb607470-d07a-4f06-a139-46cad63fe159-5_user.
  • cb607470-d07a-4f06-a139-46cad63fe159-4.exe is automatically launched at startup through a scheduled task named cb607470-d07a-4f06-a139-46cad63fe159-4.
  • cb607470-d07a-4f06-a139-46cad63fe159-2.exe is automatically launched at startup through a scheduled task named cb607470-d07a-4f06-a139-46cad63fe159-2.
  • def30c52-fe80-4b26-8d43-62b3a67cc537-5.exe is automatically launched at startup through a scheduled task named def30c52-fe80-4b26-8d43-62b3a67cc537-5.
  • def30c52-fe80-4b26-8d43-62b3a67cc537-4.exe is automatically launched at startup through a scheduled task named def30c52-fe80-4b26-8d43-62b3a67cc537-4.
    • Plus 13 more

How do I remove Weather It Up?

You can uninstall Weather It Up from your computer by using the Add/Remove Program feature in the Window's Control Panel.
  1. On the Start menu (for Windows 8, right-click the screen's bottom-left corner), click Control Panel, and then, under Programs, do one of the following:
    • Windows Vista/7/8/10: Click Uninstall a Program.
    • Windows XP: Click Add or Remove Programs.
  2. When you find the program Weather It Up, click it, and then do one of the following:
    • Windows Vista/7/8/10: Click Uninstall.
    • Windows XP: Click the Remove or Change/Remove tab (to the right of the program).
  3. Follow the prompts. A progress bar shows you how long it will take to remove Weather It Up.
  4. If for some reason uninstallation fails, please install Microsoft's uninstall fixer utility which will help fix problems with programs that can't be uninstalled at support.microsoft.com.

How do I reset my web browser?

If your web browser homepage and search settings have been modfied by Weather It Up you can restore them to their previous default settings.
Microsoft Internet Explorer
Mozilla Firefox
Google Chrome
OS VERSIONS
Win 7 (SP1) 74%
Win Vista 1%
  
HOW IT STARTS
Scheduled task? Yes
(Runs on Windows boot)
  
USER ACTIONS
Uninstall it 82%
Keep it 18%

Windows OS versionsWindows

Which Windows OS versions does it run on?
Windows 7 81.90%
Windows XP 8.57%
Windows Vista 6.67%
Windows 10 2.86%
Which OS releases does it run on?
Windows 7 Home Premium 53.85%
Windows 7 Ultimate 11.54%
Windows 7 Professional 10.58%
Microsoft Windows XP 8.65%
Windows Vista Home Premiu... 5.77%
Windows 7 Starter 3.85%

Distribution by countryGeography

56.62% of installs come from the United States
Which countries install it?
  United States 56.62%
  Germany 22.79%
  Brazil 9.56%
  France 8.09%
  United Kingdom 2.94%

OEM distributionPC manufacturers

What PC manufacturers (OEMs) have it installed?
Hewlett-Packard 26.03%
Dell 19.18%
Acer 15.07%
Toshiba 15.07%
ASUS 8.22%
GIGABYTE 5.48%
Intel 2.74%
American Megatrends 2.74%
Lenovo 1.37%
Medion 1.37%
Packard Bell 1.37%
Samsung 1.37%
Common models
TOSHIBA Satellite L775D 3.26%
Dell Inspiron N5110 3.26%
TOSHIBA Satellite L755 2.17%
HP 2000 Notebook PC 2.17%
HP Pavilion g7 Notebook P... 2.17%
Positivo Positivo M... 2.17%

commentsComments

user comment
No one has commented yet. Help others learn more about this software, share your comments.
Back to top
Find us on Facebook   Follow us on Twitter   Find us on Google+   View our Pinterests