LOTTERY.EXE - Dangerous

What you should do about LOTTERY.EXE:

Your PC may be infected. The presence of a file called LOTTERY.EXE is a possible sign of infection.

You should urgently check your PC to make sure it is not infected. The free version of Prevx CSI will scan your PC in less than two minutes and check for millions of spyware and malware infections including LOTTERY.EXE. Don't take the risk, check your PC now.

Download Prevx CSI Now

What we know about LOTTERY.EXE:

The filename LOTTERY.EXE was first seen on Jun 29 2007 in The UNITED KINGDOM. It has also been seen in the following geographical regions of the Prevx community:

  • The UNITED STATES on Jun 29 2007
The filename LOTTERY.EXE refers to many versions of an executable program.

The most common file size is 473,624 bytes. But the following file sizes have also been seen:

  • 516,600 bytes
  • 53,248 bytes
  • 1,339,260 bytes

The unsafe files using this name are associated with the malware group .

 These files have no vendor, product or version information specified in the file header.

LOTTERY.EXE has been seen to perform the following behavior(s):

  • This Process Creates Other Processes On Disk
  • This Process Deletes Other Processes From Disk
  • Adds Products to the system registry
  • Enables an In Process Object/Server - Common with DLL Injections
  • Creates a Toolbar Extention for Internet Explorer
  • Creation and Registration of a Browser Helper Object in Internet Explorer
  • Executes a Process
  • Changes the Internet Explorer Home Page Settings
  • Changes the Internet Explorer Search Page
  • Adds a Registry Key (RUNONCE) to auto start Programs on system start up
  • Creates system tray popups, messages, errors and security warnings
  • Terminates Processes

LOTTERY.EXE has been the subject of the following behavior(s):

  • Created as a process on disk
  • Executed by Internet Explorer
  • Terminated as a Process
  • Executed as a Process
  • Deleted as a process from disk
  • Has code inserted into its Virtual Memory space by other programs
  • Added as a Registry Key (RUNONCE) to auto start Programs on system start up

LOTTERY.EXE can also use the following file names:

  • LOTTERY[1].EXE
  • SETUP.EXE
  • B3AYPWIG.EXE
  • DPTRNRLTUT-233.PMS.EXE
  • 97304856.DAT
  • 17847959.EXE
  • DPTRMENAFT-710.PMS.EXE
  • 37044232.SVD
  • LOTTERY[2].EXE

Virus, Spyware & Malware Center