After reinstalling 2.6.3, Malware Bytes is showing Mezzmo constantly trying to reach 212.117.176.142 port 53347 and ultimately blocking it. Any ideas on what it's doing?

Thanks,

Duane

This is what whois reports for that address:
--> /usr/local/bin/fwhois 212.117.176.142@whois.ripe.net
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf

% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.

% Information related to '212.117.176.0 - 212.117.190.255'

inetnum: 212.117.176.0 - 212.117.190.255
netname: SERVER-NETWORK
descr: root SA
country: LU
admin-c: AB99-RIPE
tech-c: RE655-RIPE
status: ASSIGNED PA
mnt-by: ROOT-MNT
source: RIPE # Filtered

role: root eSolutions
address: 35, rue John F. Kennedy
address: 7327 Steinsel
address: Luxembourg
phone: +352 20.500
fax-no: +352 20.500.500
abuse-mailbox: abuse@as5577.net
remarks:
remarks: +------------------------------------+
remarks: | Operational Issues: |
remarks: | noc@as5577.net |
remarks: +------------------------------------+
remarks: | Abuse and Spam: |
remarks: | abuse@as5577.net |
remarks: +------------------------------------+
remarks:
admin-c: RE655-RIPE
tech-c: AB99-RIPE
nic-hdl: RE655-RIPE
mnt-by: ROOT-MNT
source: RIPE # Filtered

person: Andy BIERLAIR
address: root SA
address: 35, rue John F. Kennedy
address: 7327 Steinsel
address: Luxembourg
phone: +352 20.500
fax-no: +352 20.500.500
nic-hdl: AB99-RIPE
mnt-by: ROOT-MNT
remarks:
remarks: +------------------------------------+
remarks: | I did *NOT* spam your mailbox! |
remarks: | I will *NOT* reply to abuse mails! |
remarks: | |
remarks: | Please contact abuse@as5577.net ! |
remarks: +------------------------------------+
remarks:
source: RIPE # Filtered

% Information related to '212.117.160.0/19AS5577'

route: 212.117.160.0/19
descr: root SA
origin: AS5577
mnt-by: ROOT-MNT
source: RIPE # Filtered

% This query was served by the RIPE Database Query Service version 1.15 (WHOIS3)

What is RIPE? The RIPE NCC is one of five Regional Internet Registries (RIRs) providing Internet resource allocations, registration services and coordination activities that support the operation of the Internet globally. So it is probably just looking up dns info. For instance to find imdb etc.

This is a web host, I would assume it is the update servers for Mezzmo that it is trying to reach, but I would look to the Conceiva staff to reply for a definitive response.

Mezzmo or Mezzmo server will try to get album artwork from web sites when you add files into your Mezzmo library, so my guess is that Mezzmo or Mezzmo server is trying to retrieve album artwork from this web site. In the Status pane in Mezzmo, you should see a "Getting album artwork" task listed and this tells you when Mezzmo is getting album artwork. If you have any further concerns, let us know and we will check this further.

This was when I had to rebuild my library after the uninstall deleted it. I assumed it was something to do with getting artwork, but thought I'd post as a precaution due to Malware Bytes blocking it.

Thanks,

Duane