Should I block it?

98%
Yes, 98% block recommendation.
Possible reasons:
Multiple malware detections
Performance resource utilization

Relationships

PE structurePE file structure
Show functions
Import table
advapi32.dll
RegQueryValueExA, RegDeleteKeyA, RegDeleteValueA, RegCloseKey, RegCreateKeyExA, RegOpenKeyExA, RegSetValueExA, RegQueryInfoKeyA, RegEnumKeyExA
gdi32.dll
DeleteObject, DeleteDC, CreateCompatibleBitmap, CreateCompatibleDC, BitBlt, GetDeviceCaps, GetObjectA, GetStockObject, CreateSolidBrush, CreateFontIndirectA, GetTextExtentPoint32A, SetTextColor, SetBkMode, CreatePatternBrush, CreateBitmapIndirect, SelectObject
kernel32.dll
lstrcpyA, GlobalUnlock, GlobalLock, GlobalAlloc, lstrcmpiA, GetLastError, MulDiv, lstrcmpA, WideCharToMultiByte, GetTickCount, SetLastError, GetCurrentProcessId, CloseHandle, ReadFile, GetFileSize, CreateFileA, Sleep, WaitForSingleObject, OpenEventA, CreateThread, CreateEventA, lstrcpynA, lstrcatA, IsDBCSLeadByte, InterlockedIncrement, SetEvent, FreeLibrary, SizeofResource, LoadResource, FindResourceA, LoadLibraryExA, GetModuleHandleA, CreateProcessA, GetCommandLineA, WriteFile, UnmapViewOfFile, MoveFileA, GetSystemTime, SetFilePointer, OutputDebugStringA, FindClose, FindNextFileA, DeleteFileA, FindFirstFileA, SetFileTime, FileTimeToSystemTime, GetFileTime, GetExitCodeThread, ResumeThread, TerminateThread, SetUnhandledExceptionFilter, VirtualQuery, IsBadWritePtr, GetCurrentThread, GetProcAddress, LoadLibraryA, GetVersionExA, GetLocalTime, CreateDirectoryA, HeapAlloc, ReleaseMutex, CreateSemaphoreA, CreateMutexA, GetTempFileNameA, FlushFileBuffers, SetStdHandle, IsBadCodePtr, IsBadReadPtr, GetFileType, SetHandleCount, GetEnvironmentStringsW, FreeEnvironmentStringsW, GetEnvironmentStrings, FreeEnvironmentStringsA, UnhandledExceptionFilter, GetStdHandle, GetStringTypeW, GetStringTypeA, HeapSize, TerminateProcess, VirtualFree, HeapCreate, HeapDestroy, QueryPerformanceCounter, TlsGetValue, TlsSetValue, TlsFree, TlsAlloc, GetCPInfo, GetOEMCP, LCMapStringW, LCMapStringA, GetFileAttributesA, GetStartupInfoA, GetSystemTimeAsFileTime, HeapReAlloc, GetSystemInfo, VirtualAlloc, VirtualProtect, RtlUnwind, ExitProcess, LocalFree, GetThreadLocale, GetLocaleInfoA, GetACP, InterlockedExchange, GetProcessHeap, HeapFree, GetCurrentProcess, FlushInstructionCache, GetCurrentThreadId, lstrlenW, LeaveCriticalSection, EnterCriticalSection, GetModuleFileNameA, MultiByteToWideChar, InterlockedDecrement, FormatMessageA, lstrlenA, LocalAlloc, DeleteCriticalSection, InitializeCriticalSection, ReleaseSemaphore, RaiseException
ole32.dll
CoInitialize, CLSIDFromString, CLSIDFromProgID, CoGetClassObject, OleLockRunning, CoUninitialize, StringFromGUID2, OleUninitialize, OleInitialize, CreateStreamOnHGlobal, CoCreateInstance, CoRevokeClassObject, CoRegisterClassObject, CoTaskMemFree, CoTaskMemRealloc, CoCreateGuid, CoTaskMemAlloc
shell32.dll
Shell_NotifyIconA
shlwapi.dll
StrRChrA, StrToIntA, PathFindExtensionA
user32.dll
UnregisterClassA, wsprintfA, PostMessageA, DispatchMessageA, TranslateMessage, CallNextHookEx, SetWindowsHookExA, UnhookWindowsHookEx, SetWindowLongA, GetWindowLongA, DestroyWindow, SendMessageA, MoveWindow, GetClientRect, BeginPaint, EndPaint, ReleaseDC, InvalidateRect, LoadStringA, SetPropA, GetMessageA, LoadMenuA, GetCursorPos, GetSubMenu, TrackPopupMenu, PostQuitMessage, CharUpperA, PostThreadMessageA, FindWindowA, SendMessageTimeoutA, ReplyMessage, GetSystemMetrics, GetForegroundWindow, LoadIconA, DestroyIcon, CreateIconIndirect, SetForegroundWindow, DrawTextA, EnumChildWindows, CreateAcceleratorTableA, IsWindowVisible, RemovePropA, CharNextA, GetParent, GetClassNameA, SetWindowPos, RedrawWindow, GetDlgItem, IsWindow, GetFocus, IsChild, GetWindow, DestroyAcceleratorTable, InvalidateRgn, GetDC, FillRect, SetCapture, ReleaseCapture, GetSysColor, CreateWindowExA, RegisterWindowMessageA, RegisterClassExA, GetWindowTextLengthA, GetWindowTextA, SetWindowTextA, GetDesktopWindow, GetWindowRect, DefWindowProcA, CallWindowProcA, LoadCursorA, GetClassInfoExA, GetLastActivePopup, SetFocus, KillTimer, SetTimer, ShowWindow, LoadBitmapA
version.dll
VerQueryValueA, GetFileVersionInfoA, GetFileVersionInfoSizeA

hbtweatherontray.exe

Hotbar by Hotbar.com

Remove hbtweatherontray.exe
Version:   4.8.0.3010
MD5:   9ab0b7557518d5869c387df8f1758ba4
SHA1:   9e16fbeddaa087028d61a192b35fb368ace5b756
SHA256:   134c67c4cf55c11d4b851ad8567febaa307c624e06b594408b419a1f456c31a1
Warning 31 antivirus scanners has detected malware.

What is hbtweatherontray.exe?

hbtweatherontray.exe is the program that runs in the notification area system tray which is part of the Hotbar Weather program.

About hbtweatherontray.exe (from Hotbar.com)

For this popular advertising format, we don't put ads in front of consumers. We put consumers in front of our advertiser’s website. Here's how it works. An advertiser purchases keyword search terms. T

DetailsDetails

File name:hbtweatherontray.exe
Publisher:Hotbar.com Inc.
Product name:Hotbar
Typical file path:C:\Program Files\hbtools\bin\4.8.0.0\hbtweatherontray.exe
File version:4.8.0.3010
Size:248 KB (253,952 bytes)
Digital DNA
PE subsystem:Windows GUI
File packed:No
.NET CLR:No
More details

BehaviorsBehaviors

Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'WeatherOnTray' → C:\Program Files\HbTools\Bin\4.8.0.0\HbtWeatherOnTray.exe

MalwareMalware detections

Based on 40+ industry antivirus scanners, 31 of them detected the following malware.
Antivirus engineEngine versionDetection
AhnLab V3 Internet Security 2012.05.22 Adware/Win32.Hotbar
Avira AntiVir 7.11.30.162 ADSPY/Hotbar.AN.15
Antiy Labs AVL 2.0.3.7 AdWare/Win32.Hotbar.gen
avast! 6.0.1289.0 Win32:Adware-LA [PUP]
AVG 2014.0.3629 Generic.OWS
BitDefender 7.2 Adware.HotBar.BE
Clam AntiVirus 0.97.3.0 Adware.Hotbar-2
Commtouch 5.3.2.6 W32/HotBar.F.gen!Eldorado
Comodo Internet Security 12370 UnclassifiedMalware
Emsisoft Anti-Malware 5.1.0.11 Riskware.AdWare.Win32.HotBar.an!IK
Fortinet 4.3.398.0 Adware/Hotbar
F-Prot v6.4.6.5.141 W32/HotBar.F.gen!Eldorado
F-Secure 9.0.16440.0 Adware.HotBar.BE
G Data 13.4.22 Adware.HotBar.BE
Ikarus T3.1.1.118.0 not-a-virus:AdWare.Win32.HotBar.an
Jiangmin 13.0.900 Adware/HotBar.hh
K7 AntiVirus 9.139.6914 Unwanted-Program
Kaspersky 9.0.0.837 not-a-virus:AdWare.Win32.Hotbar.an
McAfee 5.400.1158 Adware-HotBar
McAfee Gateway Anti-Malware v2012.1-dat Adware-HotBar
Microsoft Security Essentials 1.8403.0 Adware:Win32/Hotbar
NOD32 7155 probably a variant of Win32/Adware.HotBar
Norman 6.08.06 W32/HotBar.FL
nProtect 2012-05-21.01 Adware.HotBar.BE
PC Tools 8.0.0.5 852
Sophos 4.77.0 Hotbar
Symantec 20121.1.0.298 Adware.Hotbar
The Hacker None Adware/Hotbar.an
Trend Micro 9.500.0.1008 ADW_HOTBAR.DS
Trend Micro HouseCall 9.500.0.1008 ADW_HOTBAR.DS
VirusBuster 14.2.83.0 Adware.Hotbar!e1NJsNJ7Klc

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00398490%
0.028634%
Kernel CPU:0.00199245%
0.013761%
User CPU:0.00199245%
0.014873%
Kernel CPU time:10 ms/min
100,923,805ms/min
Memory
Private memory:1.36 MB
21.59 MB
Private (maximum):4.83 MB
Private (minimum):4.83 MB
Non-paged memory:1.36 MB
21.59 MB
Virtual memory:55.31 MB
140.96 MB
Virtual memory (peak):60.36 MB
169.69 MB
Working set:4.83 MB
18.61 MB
Working set (peak):4.83 MB
37.95 MB
Resource allocations
Threads:1
12
Handles:74
600
GUI GDI count:11
103
GUI GDI peak:13
142
GUI USER count:8
49
GUI USER peak:9
71

BehaviorsProcess properties

Tray notification:Yes
Integrety level:High
Platform:32-bit
Command line:"C:\Program Files\hbtools\bin\4.8.0.0\hbtweatherontray.exe"
Owner:User

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Ultimate N 100.00%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE