Groupy using explorer.exe to connect to Stardock site?

November 7, 2019 2:40 PM from

Hi,

I have noticed my explorer.exe trying to connect to 66.79.209.82:443. When I look up that IP it points to Telnet Worldwide, Inc. which seems to be associated with Stardock and Groupy reporting.

https://any.run/report/03330554e1a0e45907f5b8067f05aede052c4a3ace27fce0727e62837a790182/2be98fc2-5dc4-4e7f-be66-cb8208677ead

install.api.stardock.net [66.79.209.82]

Anyone else having Groupy highjacking explorer.exe to communicate?

groupy

2,698 views 3 replies

Reply #1 November 7, 2019 2:51 PM from

Stardock Forums Top

Hello,

I have forwarded your report to the Stardock support team for their review and recommendations.

Please keep an eye on this thread for any updates.

We really do appreciate your feedback, thanks.

AzDude
Stardock Community Assistant

Reply #2 November 7, 2019 4:04 PM from

Stardock Forums Top

This is normal. Most of the stardock apps use explorer for any license management and update checking.

This is because they usually run processes with higher privilege levels which for good security should not connect to the internet at all and they usually extend explorer so are in that process already.

Object Desktop - Get all of our enhancement utilities in one suite

Reply #3 November 8, 2019 4:40 PM from

Stardock Forums Top

Thanks @AzDude, @Neil

I hope there won't be issues because I won't be allowing explorer.exe outbound connections, but at least I know it's not a virus I picked up.

Welcome Guest! Please take the time to register with us.

Richer content, access to many features that are disabled for guests like commenting and posting on the forums.
Access to a great community, with a massive database of many, many areas of interest.
Access to contests & subscription offers like exclusive emails.
It's simple, and FREE!