Hi, I was wondering how I'd go about tracking down this ip address {144.135.8.167 :http} which my system constantly connects to. I tried looking it up with whois but get an error message stating "Whois lookup error: the requested name is valid and was found in the databse, but it does not have the correct associated data being resolved for."
I tried typing the ip address directly into the browser, which produces this:
Invalid URL
The requested URL "/", is invalid.

Reference #9.a3088790.1174199957.0

Googling the ip shows no results.
I don't think that the connection is due to malware, all scans I've run have consistently come up clean, but I would really like to get to the bottom of this.
Any ideas as to how I can track th pwner of this ip, or a possible reason for my system to want to connect to it would be welcomed. Thanks in advance

Hello argus tuft,

{QUOTE->
Completewhois.Com Whois Server, Version 0.91a33, compiled on May 28, 2006
Please see http://www.completewhois.com/help.htm for command-line options
Use of this server and any information obtained here is allowed only
if you follow our policies at http://www.completewhois.com/policies.htm


[IPv4 whois information for 144.135.8.167 ]

[whois.apnic.net]
% [whois.apnic.net node-2]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

inetnum: 144.135.0.0 - 144.135.255.255
netname: TELSTRAINTERNET28-AU
descr: Telstra Internet
descr: Locked Bag 5744
descr: Canberra
descr: ACT 2601
country: AU
admin-c: TIAR-AP
tech-c: TIAR-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-AU-TIAR-AP
remarks: -----
remarks: All reports regarding SPAM or security breaches
remarks: should be addressed to abuse@telstra.net
remarks: ------
status: ALLOCATED PORTABLE
changed: hostmaster@arin.net 20020327
changed: hm-changed@apnic.net 20040926
changed: hm-changed@apnic.net 20031215
changed: hm-changed@apnic.net 20031224
changed: hm-changed@apnic.net 20041214
source: APNIC

person: Telstra Internet Address Registry
address: Telstra Internet
address: Locked Bag 5744
address: Canberra
address: ACT 2601
country: AU
phone: +61 3 9815 5923
e-mail: addressing@telstra.net
nic-hdl: TIAR-AP
remarks: Telstra Internet Address Registry Role Object
mnt-by: MAINT-AU-TIAR-AP
changed: nobody@aunic.net 19951128
changed: aunic-transfer@apnic.net 20010523
changed: aunic-transfer@apnic.net 20020115
changed: Kushnil@apnic.net 20020813
changed: hm-changed@apnic.net 20050310
source: APNIC
<-QUOTE}

Does this help?

Hey Rickster100,
Thanks! Telstra is my ISP, but I'm still unsure as to why my system would be connecting to it.

Also, can I ask how you managed to find that info out?

Since Telestra is your ISP you probably need to connect to them to log in, DHCP to give you an IP dynamically, do continuous DNS checks of where you are connecting with your browser and possibly a 'keep-alive' connection to show you are still connected.

You can do a Whois search by domain name or IP here: http://www.dnsstuff.com/ or http://www.whois.sc/
There are many other sites and dedicated programs for this.

{QUOTE->
Also, can I ask how you managed to find that info out? <-QUOTE}

Hello argus tuft,

Glad I could help. Mem has given some good information on that. If you happen to use Outpost Firewall, the very useful Blockpost Plugin (http://www.outpostfirewall.com/forum/forumdisplay.php?f=59) (the latest version "2007_11_03" is a beta) available here (http://www.outpostfirewall.com/forum/showthread.php?t=19775) has a Whois functionality now built into it and that is what I used to get you the info. Very handy plugin that, if anyone uses Outpost Firewall Pro they should consider using it. ;)

Richie