Well, according to some site that I have never heard of, Netexpro3.exe does the following:
NETEXPRO3.EXE has been seen to perform the following behavior:
- Enables an In Process Object/Server – Common with DLL Injections
- Can communicate with other computer systems using HTTP protocols
- Executes a Process
- This Process Deletes Other Processes From Disk
- This process creates other processes on disk
- The Process is packed and/or encrypted using a software packing process
- The process hooks code into all running processes which could allow it to take control of the system or record keyboard input, mouse activity and screen contents
- Registers a Dynamic Link Library File
- Adds products to the system registry
- Reads your outlook address book
- Enables a COM Object/Server on the Local Machine
- Communicates with other computers using FTP connections
NETEXPRO3.EXE has been the subject of the following behavior:
- Created as a process on disk
- Executed as a Process
- Deleted as a process from disk
- Terminated as a Process
- Has code inserted into its Virtual Memory space by other programs
- Enabled as a COM Object/Server on the Local Machine
My personal experiance is actually pretty close to what this website has to say. I had a user complain that outlook was freezing up and when I reviewed task manager, I noticed netexpro3.exe taking up 100% of the CPU. Once I killed the task, outlook started to respond and the CPU went back down to normal. I am running a malwarebytes scan, and I am hoping that this will find whatever it is and kill it. If I continue to have issues with it, I’ll let you know how I resolved the issue
