1.exe is a process which is registered as the TROJ_SUA.A worm. This virus is distributed via the Internet through e-mail and comes in the form of an e-mail message, in the hopes that you open its hostile attachment. The worm has its own SMTP engine which means it gathers E-mails from your local computer and re-distributes itself. In worst cases this worm can allow attackers to access your computer, stealing passwords and personal data. This process is a security risk and should be removed from your system.
Note: 1.exe is a process belonging to an advertising program. This process monitors your browsing habits and distributes the data back to the author's servers for analysis. This also prompts advertising popups. This process is a security risk and should be removed from your system.
Please run the Housecall online virus scan located at:
Follow the prompts to scan your hard drive for viruses. Select the "Autoclean" option so that Housecall will remove any viruses from your system.
When the scan is finished, please restart your computer.
Does Housecall come up clean?
We have a number of servers infected with a virus that creates an i.exe process, starts some bogus services and creates folders/logs in temporary internet file folders (for the user who executes the file).
Symantec Corp Edition did not see it until this evening's update and we are not sure if it's getting all of it.
Any help greatly appreciated.