Hi,
I have noticed my explorer.exe trying to connect to 66.79.209.82:443. When I look up that IP it points to Telnet Worldwide, Inc. which seems to be associated with Stardock and Groupy reporting.
https://any.run/report/03330554e1a0e45907f5b8067f05aede052c4a3ace27fce0727e62837a790182/2be98fc2-5dc4-4e7f-be66-cb8208677ead
install.api.stardock.net [66.79.209.82]
Anyone else having Groupy highjacking explorer.exe to communicate?
Hello,
I have forwarded your report to the Stardock support team for their review and recommendations.
Please keep an eye on this thread for any updates.
We really do appreciate your feedback, thanks.
AzDudeStardock Community Assistant
This is normal. Most of the stardock apps use explorer for any license management and update checking.
This is because they usually run processes with higher privilege levels which for good security should not connect to the internet at all and they usually extend explorer so are in that process already.
Thanks @AzDude, @Neil
I hope there won't be issues because I won't be allowing explorer.exe outbound connections, but at least I know it's not a virus I picked up.
Sign Up or Login and this ad disappears! There are many great features available to you once you register. Sign Up for a free account and browse the forums without ads.
There are many great features available to you once you register, including:
Sign in or Create Account
